CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
5.1%
Intel NUC kits with insufficient input validation in system firmware, potentially allows a local attacker to elevate privileges to System Management Mode (SMM).
Vendor | Product | Version | CPE |
---|---|---|---|
intel | bios | ayaplcel.86a | cpe:2.3:o:intel:bios:ayaplcel.86a:*:*:*:*:*:*:* |
intel | bios | bnkbl357.86a | cpe:2.3:o:intel:bios:bnkbl357.86a:*:*:*:*:*:*:* |
intel | bios | ccsklm5v.86a | cpe:2.3:o:intel:bios:ccsklm5v.86a:*:*:*:*:*:*:* |
intel | bios | ccsklm30.86a | cpe:2.3:o:intel:bios:ccsklm30.86a:*:*:*:*:*:*:* |
intel | bios | dnkbli5v.86a | cpe:2.3:o:intel:bios:dnkbli5v.86a:*:*:*:*:*:*:* |
intel | bios | dnkbli7v.86a | cpe:2.3:o:intel:bios:dnkbli7v.86a:*:*:*:*:*:*:* |
intel | bios | dnkbli30.86a | cpe:2.3:o:intel:bios:dnkbli30.86a:*:*:*:*:*:*:* |
intel | bios | fybyt10h.86a | cpe:2.3:o:intel:bios:fybyt10h.86a:*:*:*:*:*:*:* |
intel | bios | gkaplcpx.86a | cpe:2.3:o:intel:bios:gkaplcpx.86a:*:*:*:*:*:*:* |
intel | bios | kyskli70.86a | cpe:2.3:o:intel:bios:kyskli70.86a:*:*:*:*:*:*:* |
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
5.1%