Description

Improper access control in the Intel(R) NUC HDMI Firmware Update Tool for NUC7i3DN, NUC7i5DN and NUC7i7DN before version 1.78.2.0.7 may allow an authenticated user to potentially enable escalation of privilege via local access.

Related CPE's

o

intel

nuc7i3dnbe_firmware

Vulnerable

h

intel

nuc7i3dnbe

-

o

intel

nuc7i3dnhe_firmware

Vulnerable

h

intel

nuc7i3dnhe

-

o

intel

nuc7i3dnhnc_firmware

Vulnerable

h

intel

nuc7i3dnhnc

-

o

intel

nuc7i3dnke_firmware

Vulnerable

h

intel

nuc7i3dnke

-

o

intel

nuc7i3dnktc_firmware

Vulnerable

h

intel

nuc7i3dnktc

-

o

intel

nuc7i5dnbe_firmware

Vulnerable

h

intel

nuc7i5dnbe

-

o

intel

nuc7i5dnhe_firmware

Vulnerable

h

intel

nuc7i5dnhe

-

o

intel

nuc7i5dnke_firmware

Vulnerable

h

intel

nuc7i5dnke

-

o

intel

nuc7i7dnbe_firmware

Vulnerable

h

intel

nuc7i7dnbe

-

o

intel

nuc7i7dnhe_firmware

Vulnerable

h

intel

nuc7i7dnhe

-

o

intel

nuc7i7dnke_firmware

Vulnerable

h

intel

nuc7i7dnke

-

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00689.html

Vendor Advisory

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00689.html

Vendor Advisory

Weaknesses

[email protected]

Primary
NVD-CWE-Other

134c704f-9b21-4f2e-91b3-4a467353bcc0

Secondary
CWE-281

CVSS impact metrics

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

6.7 · Medium

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2022-11-11T16:15:12.053

2 years ago

Last modified

2025-01-29T21:15:13.287

5 months ago