CVE-2023-29494

EPSS 0.04%
Veröffentlicht 11.08.2023 03:15:30
Zuletzt bearbeitet 21.11.2024 07:57:10
Quelle secure@intel.com
Teams Watchlist Login
Unerledigt Login

Improper input validation in BIOS firmware for some Intel(R) NUCs may allow a privileged user to potentially enable escalation of privilege via local access.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Intel ≫ Nuc 11 Pro Kit Nuc11tnhi70z Firmware Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnhi70z Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnki70z Firmware Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnki70z Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnki30z Firmware Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnki30z Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnhi30z Firmware Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnhi30z Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnki50z Firmware Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnki50z Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnhi50z Firmware Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnhi50z Version-

Intel ≫ Nuc 11 Pro Board Nuc11tnbi30z Firmware Version-

Intel ≫ Nuc 11 Pro Board Nuc11tnbi30z Version-

Intel ≫ Nuc 11 Pro Board Nuc11tnbi50z Firmware Version-

Intel ≫ Nuc 11 Pro Board Nuc11tnbi50z Version-

Intel ≫ Nuc 11 Pro Board Nuc11tnbi70z Firmware Version-

Intel ≫ Nuc 11 Pro Board Nuc11tnbi70z Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnhi3 Firmware Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnhi3 Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnhi5 Firmware Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnhi5 Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnhi7 Firmware Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnhi7 Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnki3 Firmware Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnki3 Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnki5 Firmware Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnki5 Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnki7 Firmware Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnki7 Version-

Intel ≫ Nuc 11 Pro Board Nuc11tnbi3 Firmware Version-

Intel ≫ Nuc 11 Pro Board Nuc11tnbi3 Version-

Intel ≫ Nuc 11 Pro Board Nuc11tnbi5 Firmware Version-

Intel ≫ Nuc 11 Pro Board Nuc11tnbi5 Version-

Intel ≫ Nuc 11 Pro Board Nuc11tnbi7 Firmware Version-

Intel ≫ Nuc 11 Pro Board Nuc11tnbi7 Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnhi50w Firmware Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnhi50w Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnhi50l Firmware Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnhi50l Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnhi30l Firmware Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnhi30l Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnhi70q Firmware Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnhi70q Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnhi30p Firmware Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnhi30p Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnhi70l Firmware Version-

Intel ≫ Nuc 11 Pro Kit Nuc11tnhi70l Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.04%	0.089

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.7	0.8	5.9	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
secure@intel.com	7.5	0.8	6	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00892.html

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-29494

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-29494

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-29494

EUVD