CVE-2022-37336

Description

Improper input validation in BIOS firmware for some Intel(R) NUC may allow a privileged user to potentially enable escalation of privilege via local access.

Related CPE's

ointelnuc_10_performance_kit_nuc10i7fnhn_firmware-*******

hintelnuc_10_performance_kit_nuc10i7fnhn-*******

ointelnuc_10_performance_kit_nuc10i5fnkn_firmware-*******

hintelnuc_10_performance_kit_nuc10i5fnkn-*******

ointelnuc_10_performance_kit_nuc10i5fnhn_firmware-*******

hintelnuc_10_performance_kit_nuc10i5fnhn-*******

ointelnuc_10_performance_kit_nuc10i7fnkn_firmware-*******

hintelnuc_10_performance_kit_nuc10i7fnkn-*******

ointelnuc_10_performance_kit_nuc10i3fnhn_firmware-*******

hintelnuc_10_performance_kit_nuc10i3fnhn-*******

References

http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00892.html

Vendor Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics
Created by Yello
About Severity.io