HIGH✓ PATCH🇬🇧 English

CVE-2022-32569

CVSS 7.5v3.1pub. 2022-11-11upd. 2025-02-05

Improper buffer restrictions in BIOS firmware for some Intel(R) NUC M15 Laptop Kits before version BCTGL357.0074 may allow a privileged user to potentially enable escalation of privilege via local access.

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
  • Intel Nuc M15 Laptop Kit Lapbc510

    HW
    Intel
    wszystkie wersje
  • Intel Nuc M15 Laptop Kit Lapbc510 Firmware

    OS
    Intel
    < bctgl357.0074
  • Intel Nuc M15 Laptop Kit Lapbc710

    HW
    Intel
    wszystkie wersje
  • Intel Nuc M15 Laptop Kit Lapbc710 Firmware

    OS
    Intel
    < bctgl357.0074
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
CWE
Referencje

Powiązane podatności

CVE-2023-22312HIGH7.2ten sam produkt

Improper access control for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable ...

CVE-2022-40261HIGH8.2ten sam produkt

An attacker can exploit this vulnerability to elevate privileges from ring 0 to ring -2, execute arbitrary cod...

CVE-2022-26873HIGH8.2ten sam produkt

A potential attacker can execute an arbitrary code at the time of the PEI phase and influence the subsequent b...

CVE-2022-40246HIGH7.2ten sam produkt

A potential attacker can write one byte by arbitrary address at the time of the PEI phase (only during S3 resu...

CVE-2022-40250HIGH8.8ten sam produkt

An attacker can exploit this vulnerability to elevate privileges from ring 0 to ring -2, execute arbitrary cod...