CVE-2022-36789

Description

Improper access control in BIOS firmware for some Intel(R) NUC 10 Performance Kits and Intel(R) NUC 10 Performance Mini PCs before version FNCML357.0053 may allow a privileged user to potentially enable escalation of privilege via local access.

Related CPE's

ointelnuc_10_performance_kit_nuc10i7fnhn_firmware********

hintelnuc_10_performance_kit_nuc10i7fnhn-*******

ointelnuc_10_performance_kit_nuc10i5fnkn_firmware********

hintelnuc_10_performance_kit_nuc10i5fnkn-*******

ointelnuc_10_performance_kit_nuc10i5fnhn_firmware********

hintelnuc_10_performance_kit_nuc10i5fnhn-*******

ointelnuc_10_performance_kit_nuc10i7fnkn_firmware********

hintelnuc_10_performance_kit_nuc10i7fnkn-*******

ointelnuc_10_performance_kit_nuc10i3fnhn_firmware********

hintelnuc_10_performance_kit_nuc10i3fnhn-*******

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00752.html

Vendor Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics
Created by Yello
About Severity.io