Lucene search
HistoryAug 18, 2022 - 9:15 p.m.
CVE-2022-33209
cve-2022-33209
intel
nuc
firmware
input validation
privilege escalation
security vulnerability
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.7 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
12.7%
Improper input validation in the firmware for some Intel® NUC Laptop Kits before version BC0076 may allow a privileged user to potentially enable escalation of privilege via local access.
Affected configurations
Node
intellapbc510_firmwareRange<bc0076
intellapbc510Match-
Node
intellapbc710_firmwareRange<bc0076
intellapbc710Match-
| CPE | Name | Operator | Version |
|---|---|---|---|
| intel:lapbc510_firmware | intel lapbc510 firmware | lt | bc0076 |
CNA Affected
[
{
"product": "Intel(R) NUC Laptop Kits",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "before version BC0076"
}
]
}
]Social References
More
Related
nvd
nvd
CVE-2022-33209
2022-08-18 21:15:08
cvelist
cvelist
CVE-2022-33209
2022-08-18 20:03:35
prion
prion
Input validation
2022-08-18 21:15:00
intel
intel
Intel® NUC Laptop Kit Advisory
2023-07-07 00:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.7 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
12.7%
Related for CVE-2022-33209