Lucene search

[email protected]NVD:CVE-2016-8103

HistoryDec 08, 2016 - 5:59 p.m.

CVE-2016-8103

2016-12-0817:59:01

CWE-264

[email protected]

web.nvd.nist.gov

CVSS2

6.8

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:S/C:C/I:C/A:C

CVSS3

6.7

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

AI Score

6.4

Confidence

High

EPSS

Percentile

5.1%

JSON

SMM call out in all Intel Branded NUC Kits allows a local privileged user to access the System Management Mode and take full control of the platform.

Affected configurations

Nvd

Node

intelcity_biosRange≤ccsklm5v.86a

AND

intelstk2m3w64ccMatch-

Node

intelcanyon_biosRange≤kyskli70.86a

AND

intelnuc6i7kybMatch-

Node

intelcanyon_biosRange≤pybwcel.86a

AND

intelnuc5cpyhMatch-

intelnuc5pgyhMatch-

intelnuc5ppyhMatch-

Node

intelcity_biosMatchccsklm30.86a

AND

intelstk2mv64ccMatch-

Node

intelcanyon_biosRange≤fybyt10h.86a

AND

inteldn2820fybMatch-

Node

intelcity_biosRange≤ccsklm30.86a

AND

intelstk2m3w64ccMatch-

Node

intelswift_canyon_biosRange≤syskli35.86a

AND

intelnuc6i3sybMatch-

intelnuc6i5sybMatch-

Node

intelcitry_biosRange≤scchtax5.86a

AND

intelstk1aw32scMatch-

Node

intelcanyon_biosRange≤mybdwi5v.86a

AND

intelnuc5i3mybeMatch-

Node

intelcanyon_biosRange≤mybdwi30.86a

AND

intelnuc5i3mybeMatch-

Node

intelcity_biosRange≤scchtax5.86a

AND

intelstk1a32scMatch-

intelstk1aw32scMatch-

Node

intelcanyon_biosRange≤rybdwi35.86a

AND

intelnuc5i3rybMatch-

intelnuc5i5rybMatch-

intelnuc5i7rykhMatch-

VendorProductVersionCPE
intelcity_bios*cpe:2.3:o:intel:city_bios:*:*:*:*:*:*:*:*
intelstk2m3w64cc-cpe:2.3:h:intel:stk2m3w64cc:-:*:*:*:*:*:*:*
intelcanyon_bios*cpe:2.3:o:intel:canyon_bios:*:*:*:*:*:*:*:*
intelnuc6i7kyb-cpe:2.3:h:intel:nuc6i7kyb:-:*:*:*:*:*:*:*
intelnuc5cpyh-cpe:2.3:h:intel:nuc5cpyh:-:*:*:*:*:*:*:*
intelnuc5pgyh-cpe:2.3:h:intel:nuc5pgyh:-:*:*:*:*:*:*:*
intelnuc5ppyh-cpe:2.3:h:intel:nuc5ppyh:-:*:*:*:*:*:*:*
intelcity_biosccsklm30.86acpe:2.3:o:intel:city_bios:ccsklm30.86a:*:*:*:*:*:*:*
intelstk2mv64cc-cpe:2.3:h:intel:stk2mv64cc:-:*:*:*:*:*:*:*
inteldn2820fyb-cpe:2.3:h:intel:dn2820fyb:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
intel	city_bios	*	cpe:2.3:o:intel:city_bios::::::::
intel	stk2m3w64cc	-	cpe:2.3:h:intel:stk2m3w64cc:-:::::::*
intel	canyon_bios	*	cpe:2.3:o:intel:canyon_bios::::::::
intel	nuc6i7kyb	-	cpe:2.3:h:intel:nuc6i7kyb:-:::::::*
intel	nuc5cpyh	-	cpe:2.3:h:intel:nuc5cpyh:-:::::::*
intel	nuc5pgyh	-	cpe:2.3:h:intel:nuc5pgyh:-:::::::*
intel	nuc5ppyh	-	cpe:2.3:h:intel:nuc5ppyh:-:::::::*
intel	city_bios	ccsklm30.86a	cpe:2.3:o:intel:city_bios:ccsklm30.86a:::::::*
intel	stk2mv64cc	-	cpe:2.3:h:intel:stk2mv64cc:-:::::::*
intel	dn2820fyb	-	cpe:2.3:h:intel:dn2820fyb:-:::::::*

Rows per page:

1-10 of 201

References

www.securityfocus.com/bid/95012

security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00057&languageid=en-fr

CVSS2

6.8

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:S/C:C/I:C/A:C

CVSS3

6.7

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

AI Score

6.4

Confidence

High

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2016-8103

cve1 prion1 cvelist1