8.2
CVE-2023-32617
- EPSS 0.04%
- Published 11.08.2023 03:15:32
- Last modified 21.11.2024 08:03:42
- Source secure@intel.com
- Teams watchlist Login
- Open Login
Improper input validation in some Intel(R) NUC Rugged Kit, Intel(R) NUC Kit and Intel(R) Compute Element BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access.
Data is provided by the National Vulnerability Database (NVD)
Intel ≫ Nuc Kit Nuc7i7bnhx1 Firmware Version-
Intel ≫ Nuc 7 Home Nuc7i5bnkp Firmware Version-
Intel ≫ Nuc 7 Home Nuc7i3bnhxf Firmware Version-
Intel ≫ Nuc 7 Enthusiast Nuc7i7bnkq Firmware Version-
Intel ≫ Nuc Kit Nuc7i3bnhx1 Firmware Version-
Intel ≫ Nuc 7 Enthusiast Nuc7i7bnhxg Firmware Version-
Intel ≫ Nuc 7 Home Nuc7i5bnhxf Firmware Version-
Intel ≫ Nuc Kit Nuc7i5bnhx1 Firmware Version-
Intel ≫ Nuc Board Nuc7i7bnb Firmware Version-
Intel ≫ Nuc Board Nuc7i5bnb Firmware Version-
Intel ≫ Nuc Board Nuc7i3bnb Firmware Version-
Intel ≫ Nuc Kit Nuc7i5bnh Firmware Version-
Intel ≫ Nuc Kit Nuc7i3bnk Firmware Version-
Intel ≫ Nuc Kit Nuc7i5bnk Firmware Version-
Intel ≫ Nuc Kit Nuc7i7bnh Firmware Version-
Intel ≫ Nuc Kit Nuc7i3bnh Firmware Version-
Intel ≫ Nuc 8 Rugged Kit Nuc8cchkrn Firmware Version-
Intel ≫ Nuc 8 Rugged Board Nuc8cchbn Firmware Version-
Intel ≫ Nuc 8 Rugged Kit Nuc8cchkr Firmware Version-
Intel ≫ Nuc Board Nuc8cchb Firmware Version-
Intel ≫ Nuc Kit Nuc6cayh Firmware Version-
Intel ≫ Nuc Kit Nuc6cays Firmware Version-
Intel ≫ Compute Stick Stk2mv64cc Firmware Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
Type | Source | Score | Percentile |
---|---|---|---|
EPSS | FIRST.org | 0.04% | 0.088 |
Source | Base Score | Exploit Score | Impact Score | Vector string |
---|---|---|---|---|
nvd@nist.gov | 6.7 | 0.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
|
secure@intel.com | 8.2 | 1.5 | 6 |
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.