CVE-2023-32617

Improper input validation in some Intel(R) NUC Rugged Kit, Intel(R) NUC Kit and Intel(R) Compute Element BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
8.2 HIGH
LOCAL
LOW
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
intelCNA
8.2 HIGH
LOCAL
LOW
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 8%
VendorProductVersion
intelnuc_kit_nuc7i7bnhx1_firmware
-
intelnuc_7_home_nuc7i5bnkp_firmware
-
intelnuc_7_home_nuc7i3bnhxf_firmware
-
intelnuc_7_enthusiast_nuc7i7bnkq_firmware
-
intelnuc_kit_nuc7i3bnhx1_firmware
-
intelnuc_7_enthusiast_nuc7i7bnhxg_firmware
-
intelnuc_7_home_nuc7i5bnhxf_firmware
-
intelnuc_kit_nuc7i5bnhx1_firmware
-
intelnuc_board_nuc7i7bnb_firmware
-
intelnuc_board_nuc7i5bnb_firmware
-
intelnuc_board_nuc7i3bnb_firmware
-
intelnuc_kit_nuc7i5bnh_firmware
-
intelnuc_kit_nuc7i3bnk_firmware
-
intelnuc_kit_nuc7i5bnk_firmware
-
intelnuc_kit_nuc7i7bnh_firmware
-
intelnuc_kit_nuc7i3bnh_firmware
-
intelnuc_8_rugged_kit_nuc8cchkrn_firmware
-
intelnuc_8_rugged_board_nuc8cchbn_firmware
-
intelnuc_8_rugged_kit_nuc8cchkr_firmware
-
intelnuc_board_nuc8cchb_firmware
-
intelnuc_kit_nuc6cayh_firmware
-
intelnuc_kit_nuc6cays_firmware
-
intelcompute_stick_stk2mv64cc_firmware
-
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00917.html
http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00917.html