HIGH✓ PATCH🇵🇱 Wersja polska

CVE-2023-28743

CVSS 7.5v3.1pub. 2024-01-19upd. 2024-11-21

Improper input validation for some Intel NUC BIOS firmware before version QN0073 may allow a privileged user to potentially enable escalation of privilege via local access.

CVSS Vector
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
  • Intel Nuc 9 Pro Compute Element Nuc9v7qnb

    HW
    Intel
    wszystkie wersje
  • Intel Nuc 9 Pro Compute Element Nuc9v7qnb Firmware

    OS
    Intel
    qncflx70.0073
  • Intel Nuc 9 Pro Compute Element Nuc9v7qnx

    HW
    Intel
    wszystkie wersje
  • Intel Nuc 9 Pro Kit Nuc9v7qnb

    HW
    Intel
    wszystkie wersje
  • Intel Nuc 9 Pro Kit Nuc9v7qnb Firmware

    OS
    Intel
    qncflx70.0073
  • Intel Nuc 9 Pro Kit Nuc9v7qnx

    HW
    Intel
    wszystkie wersje
  • Intel Nuc 9 Pro Kit Nuc9v7qnx Firmware

    OS
    Intel
    qncflx70.0073
  • Intel Nuc Pro Compute Element Nuc9v7qnx Firmware

    OS
    Intel
    qncflx70.0073
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
CWE
References

Related vulnerabilities

CVE-2022-36372HIGH7.5ten sam produkt

Improper buffer restrictions in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially ena...

CVE-2020-12336HIGH7.8ten sam produkt

Insecure default variable initialization in firmware for some Intel(R) NUCs may allow an authenticated user to...

CVE-2020-24525HIGH7.8ten sam produkt

Insecure inherited permissions in firmware update tool for some Intel(R) NUCs may allow an authenticated user ...

CVE-2023-25771MEDIUM5.8ten sam produkt

Improper access control for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable ...

CVE-2022-32582MEDIUM5.3ten sam produkt

Improper access control in firmware for some Intel(R) NUC Boards, Intel(R) NUC 11 Performance Kit, Intel(R) NU...