6.7

CVE-2021-0054

Improper buffer restrictions in system firmware for some Intel(R) NUCs may allow a privileged user to potentially enable escalation of privilege via local access.

Data is provided by the National Vulnerability Database (NVD)
IntelNuc M15 Laptop Kit Lapbc510 Firmware Version < bctgl357.0051
IntelNuc M15 Laptop Kit Lapbc710 Firmware Version < bctgl357.0051
IntelNuc 11 Pro Board Nuc11tnbi3 Firmware Version < tntgl357.0052
IntelNuc 11 Pro Board Nuc11tnbi5 Firmware Version < tntgl357.0052
IntelNuc 11 Pro Board Nuc11tnbi7 Firmware Version < tntgl357.0052
IntelNuc 11 Pro Kit Nuc11tnhi3 Firmware Version < tntgl357.0052
   IntelNuc 11 Pro Kit Nuc11tnhi3 Version-
IntelNuc 11 Pro Kit Nuc11tnhi30l Firmware Version < tntgl357.0052
IntelNuc 11 Pro Kit Nuc11tnhi30p Firmware Version < tntgl357.0052
IntelNuc 11 Pro Kit Nuc11tnhi5 Firmware Version < tntgl357.0052
   IntelNuc 11 Pro Kit Nuc11tnhi5 Version-
IntelNuc 11 Pro Kit Nuc11tnhi50l Firmware Version < tntgl357.0052
IntelNuc 11 Pro Kit Nuc11tnhi50w Firmware Version < tntgl357.0052
IntelNuc 11 Pro Kit Nuc11tnhi7 Firmware Version < tntgl357.0052
   IntelNuc 11 Pro Kit Nuc11tnhi7 Version-
IntelNuc 11 Pro Kit Nuc11tnhi70l Firmware Version < tntgl357.0052
IntelNuc 11 Pro Kit Nuc11tnhi70q Firmware Version < tntgl357.0052
IntelNuc 11 Pro Kit Nuc11tnki3 Firmware Version < tntgl357.0052
   IntelNuc 11 Pro Kit Nuc11tnki3 Version-
IntelNuc 11 Pro Kit Nuc11tnki5 Firmware Version < tntgl357.0052
   IntelNuc 11 Pro Kit Nuc11tnki5 Version-
IntelNuc 11 Pro Kit Nuc11tnki7 Firmware Version < tntgl357.0052
   IntelNuc 11 Pro Kit Nuc11tnki7 Version-
IntelNuc 9 Pro Kit Nuc9v7qnx Firmware Version < qncflx70.0059
   IntelNuc 9 Pro Kit Nuc9v7qnx Version-
IntelNuc 9 Pro Kit Nuc9vxqnx Firmware Version < qncflx70.0059
   IntelNuc 9 Pro Kit Nuc9vxqnx Version-
IntelNuc Kit Nuc8i7hnk Firmware Version < hnkbli70.86a.0065
   IntelNuc Kit Nuc8i7hnk Version-
IntelNuc Kit Nuc8i7hvk Firmware Version < hnkbli70.86a.0065
   IntelNuc Kit Nuc8i7hvk Version-
IntelNuc 8 Rugged Kit Nuc8cchkr Firmware Version < chaplcel.0051
   IntelNuc 8 Rugged Kit Nuc8cchkr Version-
IntelNuc Board Nuc8cchb Firmware Version < chaplcel.0051
   IntelNuc Board Nuc8cchb Version-
IntelNuc 8 Pro Board Nuc8i3pnb Firmware Version < pnwhl357.0039
   IntelNuc 8 Pro Board Nuc8i3pnb Version-
IntelNuc 8 Pro Kit Nuc8i3pnh Firmware Version < pnwhl357.0039
   IntelNuc 8 Pro Kit Nuc8i3pnh Version-
IntelNuc 8 Pro Kit Nuc8i3pnk Firmware Version < pnwhl357.0039
   IntelNuc 8 Pro Kit Nuc8i3pnk Version-
IntelNuc Kit Nuc7cjyh Firmware Version < jyglkcpx.86a.0057
   IntelNuc Kit Nuc7cjyh Version-
IntelNuc Kit Nuc7pjyh Firmware Version < jyglkcpx.86a.0057
   IntelNuc Kit Nuc7pjyh Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.06% 0.142
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 6.7 0.8 5.9
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 4.6 3.9 6.4
AV:L/AC:L/Au:N/C:P/I:P/A:P
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.