Lucene search

[email protected]NVD:CVE-2022-35276

HistoryNov 11, 2022 - 4:15 p.m.

CVE-2022-35276

2022-11-1116:15:15

[email protected]

web.nvd.nist.gov

intel nuc 8

bios firmware

access control

privilege escalation

CVSS3

6.7

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

EPSS

Percentile

12.6%

JSON

Improper access control in BIOS firmware for some Intel® NUC 8 Compute Elements before version CBWHL357.0096 may allow a privileged user to potentially enable escalation of privilege via local access.

Affected configurations

Nvd

Node

intelnuc_8_compute_element_cm8i7cb_firmwareRange<cbwhl357.0096

AND

intelnuc_8_compute_element_cm8i7cbMatch-

Node

intelnuc_8_compute_element_cm8i3cb_firmwareRange<cbwhl357.0096

AND

intelnuc_8_compute_element_cm8i3cbMatch-

Node

intelnuc_8_compute_element_cm8ccb_firmwareRange<cbwhl357.0096

AND

intelnuc_8_compute_element_cm8ccbMatch-

Node

intelnuc_8_compute_element_cm8i5cb_firmwareRange<cbwhl357.0096

AND

intelnuc_8_compute_element_cm8i5cbMatch-

Node

intelnuc_8_compute_element_cm8pcb_firmwareRange<cbwhl357.0096

AND

intelnuc_8_compute_element_cm8pcbMatch-

VendorProductVersionCPE
intelnuc_8_compute_element_cm8i7cb_firmware*cpe:2.3:o:intel:nuc_8_compute_element_cm8i7cb_firmware:*:*:*:*:*:*:*:*
intelnuc_8_compute_element_cm8i7cb-cpe:2.3:h:intel:nuc_8_compute_element_cm8i7cb:-:*:*:*:*:*:*:*
intelnuc_8_compute_element_cm8i3cb_firmware*cpe:2.3:o:intel:nuc_8_compute_element_cm8i3cb_firmware:*:*:*:*:*:*:*:*
intelnuc_8_compute_element_cm8i3cb-cpe:2.3:h:intel:nuc_8_compute_element_cm8i3cb:-:*:*:*:*:*:*:*
intelnuc_8_compute_element_cm8ccb_firmware*cpe:2.3:o:intel:nuc_8_compute_element_cm8ccb_firmware:*:*:*:*:*:*:*:*
intelnuc_8_compute_element_cm8ccb-cpe:2.3:h:intel:nuc_8_compute_element_cm8ccb:-:*:*:*:*:*:*:*
intelnuc_8_compute_element_cm8i5cb_firmware*cpe:2.3:o:intel:nuc_8_compute_element_cm8i5cb_firmware:*:*:*:*:*:*:*:*
intelnuc_8_compute_element_cm8i5cb-cpe:2.3:h:intel:nuc_8_compute_element_cm8i5cb:-:*:*:*:*:*:*:*
intelnuc_8_compute_element_cm8pcb_firmware*cpe:2.3:o:intel:nuc_8_compute_element_cm8pcb_firmware:*:*:*:*:*:*:*:*
intelnuc_8_compute_element_cm8pcb-cpe:2.3:h:intel:nuc_8_compute_element_cm8pcb:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
intel	nuc_8_compute_element_cm8i7cb_firmware	*	cpe:2.3:o:intel:nuc_8_compute_element_cm8i7cb_firmware::::::::
intel	nuc_8_compute_element_cm8i7cb	-	cpe:2.3:h:intel:nuc_8_compute_element_cm8i7cb:-:::::::*
intel	nuc_8_compute_element_cm8i3cb_firmware	*	cpe:2.3:o:intel:nuc_8_compute_element_cm8i3cb_firmware::::::::
intel	nuc_8_compute_element_cm8i3cb	-	cpe:2.3:h:intel:nuc_8_compute_element_cm8i3cb:-:::::::*
intel	nuc_8_compute_element_cm8ccb_firmware	*	cpe:2.3:o:intel:nuc_8_compute_element_cm8ccb_firmware::::::::
intel	nuc_8_compute_element_cm8ccb	-	cpe:2.3:h:intel:nuc_8_compute_element_cm8ccb:-:::::::*
intel	nuc_8_compute_element_cm8i5cb_firmware	*	cpe:2.3:o:intel:nuc_8_compute_element_cm8i5cb_firmware::::::::
intel	nuc_8_compute_element_cm8i5cb	-	cpe:2.3:h:intel:nuc_8_compute_element_cm8i5cb:-:::::::*
intel	nuc_8_compute_element_cm8pcb_firmware	*	cpe:2.3:o:intel:nuc_8_compute_element_cm8pcb_firmware::::::::
intel	nuc_8_compute_element_cm8pcb	-	cpe:2.3:h:intel:nuc_8_compute_element_cm8pcb:-:::::::*