7.8
CVE-2023-42429
- EPSS 0.05%
- Published 19.01.2024 20:15:11
- Last modified 21.11.2024 08:22:31
- Source secure@intel.com
- Teams watchlist Login
- Open Login
Improper buffer restrictions in some Intel NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access.
Data is provided by the National Vulnerability Database (NVD)
Intel ≫ Nuc 7 Essential Pc Nuc7cjysal Firmware Versionjyglkcpx.0071
Intel ≫ Nuc 7 Essential Nuc7cjysamn Firmware Versionjyglkcpx.0071
Intel ≫ Nuc Kit Nuc7cjyhn Firmware Versionjyglkcpx.0071
Intel ≫ Nuc Kit Nuc7cjyh Firmware Versionjyglkcpx.0071
Intel ≫ Nuc Kit Nuc7pjyhn Firmware Versionjyglkcpx.0071
Intel ≫ Nuc Kit Nuc7pjyh Firmware Versionjyglkcpx.0071
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.05% | 0.153 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
| secure@intel.com | 7.5 | 0.8 | 6 |
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
|
CWE-92 DEPRECATED: Improper Sanitization of Custom Special Characters
This entry has been deprecated. It originally came from PLOVER, which sometimes defined "other" and "miscellaneous" categories in order to satisfy exhaustiveness requirements for taxonomies. Within the context of CWE, the use of a more abstract entry is preferred in mapping situations. CWE-75 is a more appropriate mapping.