Lucene search
IntelCVE-2022-34345HistoryAug 18, 2022 - 9:15 p.m.
CVE-2022-34345
2022-08-1821:15:08
CWE-20
intel
web.nvd.nist.gov
54
3
cve-2022-34345
intel
nuc
firmware
input validation
privileged user
escalation of privilege
nvd
CVSS3
6.2
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
AI Score
6.4
Confidence
High
EPSS
0
Percentile
12.6%
Improper input validation in the firmware for some Intel® NUC Laptop Kits before version BC0076 may allow a privileged user to potentially enable escalation of privilege via physical access.
Affected configurations
Node
intellapbc510_firmwareRange<bc0076
intellapbc510Match-
Node
intellapbc710_firmwareRange<bc0076
intellapbc710Match-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| intel | lapbc510_firmware | * | cpe:2.3:o:intel:lapbc510_firmware:*:*:*:*:*:*:*:* |
| intel | lapbc510 | - | cpe:2.3:h:intel:lapbc510:-:*:*:*:*:*:*:* |
| intel | lapbc710_firmware | * | cpe:2.3:o:intel:lapbc710_firmware:*:*:*:*:*:*:*:* |
| intel | lapbc710 | - | cpe:2.3:h:intel:lapbc710:-:*:*:*:*:*:*:* |
CNA Affected
[
{
"product": "Intel(R) NUC Laptop Kits",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "before version BC0076"
}
]
}
]Social References
More
Related
cvelist
cvelist
CVE-2022-34345
2022-08-18 20:05:20
prion
prion
Input validation
2022-08-18 21:15:00
nvd
nvd
CVE-2022-34345
2022-08-18 21:15:08
CVE-2022-2154
2022-09-20 18:15:10
cve
cve
CVE-2022-2154
2022-09-20 18:15:10
intel
intel
Intel® NUC Laptop Kit Advisory
2023-07-07 00:00:00
CVSS3
6.2
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
AI Score
6.4
Confidence
High
EPSS
0
Percentile
12.6%
Related for CVE-2022-34345