Path transversal in some Intel(R) NUC Kits NUC7i3DN, NUC7i5DN, NUC7i7DN HDMI firmware update tool software before version 1.79.1.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
References
Link | Resource |
---|---|
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00908.html | Patch Vendor Advisory |
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00908.html | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 06:55
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.7 |
References | () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00908.html - Patch, Vendor Advisory |
20 Nov 2023, 20:53
Type | Values Removed | Values Added |
---|---|---|
References | () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00908.html - Patch, Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
First Time |
Intel nuc Kit Nuc7i7dnke
Intel nuc Kit Nuc7i5dnhe Intel nuc 7 Business Nuc7i3dnhnc Intel Intel nuc Kit Nuc7i5dnke Intel nuc 7 Business Nuc7i5dnkpc Intel nuc Kit Nuc7i3dnhe Intel nuc Kit Nuc7i3dnke Intel nuc Kit Nuc7i7dnhe Intel nuc 7 Business Nuc7i3dnktc Intel nuc 7 Business Nuc7i5dnkpu Intel hdmi Firmware |
|
CPE | cpe:2.3:h:intel:nuc_7_business_nuc7i5dnkpu:-:*:*:*:*:*:*:* cpe:2.3:h:intel:nuc_kit_nuc7i3dnke:-:*:*:*:*:*:*:* cpe:2.3:h:intel:nuc_7_business_nuc7i3dnktc:-:*:*:*:*:*:*:* cpe:2.3:o:intel:hdmi_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:intel:nuc_kit_nuc7i5dnke:-:*:*:*:*:*:*:* cpe:2.3:h:intel:nuc_kit_nuc7i7dnke:-:*:*:*:*:*:*:* cpe:2.3:h:intel:nuc_kit_nuc7i5dnhe:-:*:*:*:*:*:*:* cpe:2.3:h:intel:nuc_7_business_nuc7i5dnkpc:-:*:*:*:*:*:*:* cpe:2.3:h:intel:nuc_kit_nuc7i7dnhe:-:*:*:*:*:*:*:* cpe:2.3:h:intel:nuc_7_business_nuc7i3dnhnc:-:*:*:*:*:*:*:* cpe:2.3:h:intel:nuc_kit_nuc7i3dnhe:-:*:*:*:*:*:*:* |
|
CWE | CWE-22 |
14 Nov 2023, 19:30
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-11-14 19:15
Updated : 2024-11-21 06:55
NVD link : CVE-2022-27229
Mitre link : CVE-2022-27229
CVE.ORG link : CVE-2022-27229
JSON object : View
Products Affected
intel
- nuc_kit_nuc7i7dnhe
- nuc_7_business_nuc7i5dnkpu
- nuc_kit_nuc7i5dnke
- nuc_kit_nuc7i3dnke
- nuc_kit_nuc7i5dnhe
- hdmi_firmware
- nuc_7_business_nuc7i5dnkpc
- nuc_7_business_nuc7i3dnktc
- nuc_7_business_nuc7i3dnhnc
- nuc_kit_nuc7i3dnhe
- nuc_kit_nuc7i7dnke