Lucene search
IntelCVE-2023-40220HistoryNov 14, 2023 - 7:15 p.m.
CVE-2023-40220
2023-11-1419:15:30
CWE-92
intel
web.nvd.nist.gov
33
cve-2023-40220
intel
nuc
bios
firmware
buffer restrictions
information disclosure
security vulnerability
CVSS3
5.3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
AI Score
4.4
Confidence
High
EPSS
0
Percentile
9.0%
Improper buffer restrictions in some Intelยฎ NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access.
Affected configurations
Node
intelnuc6cayhMatch-
intelnuc6cayh_firmwareRange<ayaplcel.86a.0076
Node
intelnuc6caysMatch-
intelnuc6cays_firmwareRange<ayaplcel.86a.0076
| Vendor | Product | Version | CPE |
|---|---|---|---|
| intel | nuc6cayh | - | cpe:2.3:h:intel:nuc6cayh:-:*:*:*:*:*:*:* |
| intel | nuc6cayh_firmware | * | cpe:2.3:o:intel:nuc6cayh_firmware:*:*:*:*:*:*:*:* |
| intel | nuc6cays | - | cpe:2.3:h:intel:nuc6cays:-:*:*:*:*:*:*:* |
| intel | nuc6cays_firmware | * | cpe:2.3:o:intel:nuc6cays_firmware:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "n/a",
"product": "Intel(R) NUC BIOS firmware",
"versions": [
{
"version": "See references",
"status": "affected"
}
],
"defaultStatus": "unaffected"
}
]Related
cvelist
cvelist
CVE-2023-40220
2023-11-14 19:05:05
prion
prion
Buffer overflow
2023-11-14 19:15:00
nvd
nvd
CVE-2023-40220
2023-11-14 19:15:30
vulnrichment
vulnrichment
CVE-2023-40220
2023-11-14 19:05:05
intel
intel
Intelยฎ NUC Firmware Advisory
2023-11-14 00:00:00
CVSS3
5.3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
AI Score
4.4
Confidence
High
EPSS
0
Percentile
9.0%
Related for CVE-2023-40220