7.8
CVE-2022-26124
- EPSS 0.06%
- Veröffentlicht 11.11.2022 16:15:12
- Zuletzt bearbeitet 05.02.2025 16:15:32
- Quelle secure@intel.com
- Teams Watchlist Login
- Unerledigt Login
Improper buffer restrictions in BIOS firmware for some Intel(R) NUC Boards, Intel(R) NUC 8 Boards, Intel(R) NUC 8 Rugged Boards and Intel(R) NUC 8 Rugged Kits before version CHAPLCEL.0059 may allow a privileged user to potentially enable escalation of privilege via local access.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Intel ≫ Nuc 8 Rugged Kit Nuc8cchkrn Firmware Version < chaplcel.0059
Intel ≫ Nuc 8 Rugged Kit Nuc8cchkr Firmware Version < chaplcel.0059
Intel ≫ Nuc 8 Rugged Board Nuc8cchbn Firmware Version < chaplcel.0059
Intel ≫ Nuc Board Nuc8cchb Firmware Version < chaplcel.0059
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.06% | 0.173 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
| secure@intel.com | 7.5 | 0.8 | 6 |
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
|
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.