CVE-2018-12176

Improper input validation in firmware for Intel NUC Kits may allow a privileged user to potentially execute arbitrary code resulting in information disclosure, escalation of privilege and/or denial of service via local access.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:intel:nuc_kit_firmware:-:*:*:*:*:*:*:*
OR cpe:2.3:h:intel:nuc_kit_d33217gke:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_d53427rke:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_d54250wyb:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_de3815tybe:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_dn2820fykh:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_nuc5cpyh:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_nuc5i3myhe:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_nuc5i5myhe:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_nuc5i7ryh:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_nuc5pgyh:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_nuc6cays:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_nuc6i5syh:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_nuc6i7kyk:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_nuc7cjyh:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_nuc7i3dnhe:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_nuc7i5dnke:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_nuc7i7bnh:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_nuc7i7dnke:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_nuc8i7hnk:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:intel:compute_card_firmware:-:*:*:*:*:*:*:*
OR cpe:2.3:h:intel:compute_card_cd1iv128mk:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_card_cd1m3128mk:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_card_cd1p64gk:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:intel:compute_stick_firmware:-:*:*:*:*:*:*:*
OR cpe:2.3:h:intel:compute_stick_stck1a32wfc:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_stick_stk1aw32sc:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_stick_stk2m3w64cc:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_stick_stk2mv64cc:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2018-09-12 19:29

Updated : 2024-02-28 16:48


NVD link : CVE-2018-12176

Mitre link : CVE-2018-12176

CVE.ORG link : CVE-2018-12176


JSON object : View

Products Affected

intel

  • nuc_kit_de3815tybe
  • nuc_kit_nuc7i3dnhe
  • compute_card_cd1p64gk
  • nuc_kit_nuc5i3myhe
  • nuc_kit_nuc6cays
  • nuc_kit_nuc7i7bnh
  • nuc_kit_d53427rke
  • nuc_kit_nuc5i5myhe
  • nuc_kit_nuc5cpyh
  • nuc_kit_d54250wyb
  • compute_stick_stk2mv64cc
  • nuc_kit_nuc5i7ryh
  • nuc_kit_dn2820fykh
  • compute_stick_stck1a32wfc
  • nuc_kit_nuc7cjyh
  • compute_stick_stk1aw32sc
  • nuc_kit_nuc6i7kyk
  • nuc_kit_nuc7i7dnke
  • nuc_kit_d33217gke
  • compute_card_cd1iv128mk
  • compute_card_firmware
  • compute_card_cd1m3128mk
  • nuc_kit_nuc5pgyh
  • nuc_kit_nuc8i7hnk
  • nuc_kit_nuc6i5syh
  • compute_stick_firmware
  • nuc_kit_firmware
  • nuc_kit_nuc7i5dnke
  • compute_stick_stk2m3w64cc
CWE
CWE-20

Improper Input Validation