Improper input validation in some Intel NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access.
References
Link | Resource |
---|---|
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01028.html | Vendor Advisory |
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01028.html | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
Configuration 8 (hide)
AND |
|
Configuration 9 (hide)
AND |
|
Configuration 10 (hide)
AND |
|
Configuration 11 (hide)
AND |
|
Configuration 12 (hide)
AND |
|
Configuration 13 (hide)
AND |
|
History
21 Nov 2024, 08:13
Type | Values Removed | Values Added |
---|---|---|
References | () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01028.html - Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
30 Jan 2024, 14:28
Type | Values Removed | Values Added |
---|---|---|
References | () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01028.html - Vendor Advisory | |
CPE | cpe:2.3:o:intel:nuc_8_home_nuc8i5bekpa_firmware:becfl357.0095:*:*:*:*:*:*:* cpe:2.3:h:intel:nuc_kit_nuc8i5behs:-:*:*:*:*:*:*:* cpe:2.3:h:intel:nuc_kit_nuc8i3beh:-:*:*:*:*:*:*:* cpe:2.3:h:intel:nuc_kit_nuc8i5beh:-:*:*:*:*:*:*:* cpe:2.3:o:intel:nuc_kit_nuc8i7bek_firmware:becfl357.0095:*:*:*:*:*:*:* cpe:2.3:o:intel:nuc_kit_nuc8i5beh_firmware:becfl357.0095:*:*:*:*:*:*:* cpe:2.3:h:intel:nuc_kit_nuc8i5bek:-:*:*:*:*:*:*:* cpe:2.3:o:intel:nuc_kit_nuc8i5behs_firmware:becfl357.0095:*:*:*:*:*:*:* cpe:2.3:o:intel:nuc_8_home_nuc8i5behfa_firmware:becfl357.0095:*:*:*:*:*:*:* cpe:2.3:o:intel:nuc_8_enthusiast_nuc8i7bekqa_firmware:becfl357.0095:*:*:*:*:*:*:* cpe:2.3:h:intel:nuc_8_home_nuc8i5bekpa:-:*:*:*:*:*:*:* cpe:2.3:h:intel:nuc_kit_nuc8i7bek:-:*:*:*:*:*:*:* cpe:2.3:h:intel:nuc_8_enthusiast_nuc8i7behga:-:*:*:*:*:*:*:* cpe:2.3:h:intel:nuc_kit_nuc8i3behs:-:*:*:*:*:*:*:* cpe:2.3:h:intel:nuc_kit_nuc8i7beh:-:*:*:*:*:*:*:* cpe:2.3:h:intel:nuc_kit_nuc8i3bek:-:*:*:*:*:*:*:* cpe:2.3:o:intel:nuc_kit_nuc8i3bek_firmware:becfl357.0095:*:*:*:*:*:*:* cpe:2.3:o:intel:nuc_kit_nuc8i3behs_firmware:becfl357.0095:*:*:*:*:*:*:* cpe:2.3:h:intel:nuc_8_home_nuc8i3behfa:-:*:*:*:*:*:*:* cpe:2.3:h:intel:nuc_8_home_nuc8i5behfa:-:*:*:*:*:*:*:* cpe:2.3:o:intel:nuc_kit_nuc8i5bek_firmware:becfl357.0095:*:*:*:*:*:*:* cpe:2.3:h:intel:nuc_8_enthusiast_nuc8i7bekqa:-:*:*:*:*:*:*:* cpe:2.3:o:intel:nuc_kit_nuc8i3beh_firmware:becfl357.0095:*:*:*:*:*:*:* cpe:2.3:o:intel:nuc_kit_nuc8i7beh_firmware:becfl357.0095:*:*:*:*:*:*:* cpe:2.3:o:intel:nuc_8_home_nuc8i3behfa_firmware:becfl357.0095:*:*:*:*:*:*:* cpe:2.3:o:intel:nuc_8_enthusiast_nuc8i7behga_firmware:becfl357.0095:*:*:*:*:*:*:* |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
First Time |
Intel nuc Kit Nuc8i5behs Firmware
Intel nuc Kit Nuc8i7bek Intel nuc 8 Enthusiast Nuc8i7behga Firmware Intel nuc 8 Enthusiast Nuc8i7bekqa Intel nuc 8 Enthusiast Nuc8i7behga Intel nuc Kit Nuc8i3behs Intel nuc 8 Home Nuc8i5bekpa Firmware Intel Intel nuc Kit Nuc8i7beh Intel nuc Kit Nuc8i5beh Firmware Intel nuc Kit Nuc8i3beh Intel nuc Kit Nuc8i5behs Intel nuc 8 Home Nuc8i5behfa Intel nuc 8 Home Nuc8i5bekpa Intel nuc Kit Nuc8i7beh Firmware Intel nuc Kit Nuc8i7bek Firmware Intel nuc 8 Home Nuc8i3behfa Firmware Intel nuc Kit Nuc8i3bek Firmware Intel nuc 8 Home Nuc8i5behfa Firmware Intel nuc 8 Home Nuc8i3behfa Intel nuc 8 Enthusiast Nuc8i7bekqa Firmware Intel nuc Kit Nuc8i5beh Intel nuc Kit Nuc8i5bek Firmware Intel nuc Kit Nuc8i3bek Intel nuc Kit Nuc8i5bek Intel nuc Kit Nuc8i3beh Firmware Intel nuc Kit Nuc8i3behs Firmware |
|
CWE | CWE-20 |
19 Jan 2024, 20:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-01-19 20:15
Updated : 2024-11-21 08:13
NVD link : CVE-2023-38587
Mitre link : CVE-2023-38587
CVE.ORG link : CVE-2023-38587
JSON object : View
Products Affected
intel
- nuc_kit_nuc8i3bek_firmware
- nuc_8_home_nuc8i3behfa_firmware
- nuc_kit_nuc8i3beh
- nuc_8_home_nuc8i3behfa
- nuc_8_enthusiast_nuc8i7behga_firmware
- nuc_kit_nuc8i7bek_firmware
- nuc_8_home_nuc8i5bekpa_firmware
- nuc_8_home_nuc8i5behfa_firmware
- nuc_kit_nuc8i7beh_firmware
- nuc_kit_nuc8i5bek_firmware
- nuc_8_home_nuc8i5behfa
- nuc_8_enthusiast_nuc8i7bekqa_firmware
- nuc_8_home_nuc8i5bekpa
- nuc_kit_nuc8i3beh_firmware
- nuc_kit_nuc8i3bek
- nuc_kit_nuc8i3behs
- nuc_kit_nuc8i5behs_firmware
- nuc_kit_nuc8i5beh
- nuc_kit_nuc8i5beh_firmware
- nuc_8_enthusiast_nuc8i7bekqa
- nuc_kit_nuc8i7beh
- nuc_8_enthusiast_nuc8i7behga
- nuc_kit_nuc8i5behs
- nuc_kit_nuc8i7bek
- nuc_kit_nuc8i3behs_firmware
- nuc_kit_nuc8i5bek
CWE
CWE-20
Improper Input Validation