CVE-2022-38099

Description

Improper input validation in BIOS firmware for some Intel(R) NUC 11 Compute Elements before version EBTGL357.0065 may allow a privileged user to potentially enable escalation of privilege via local access.

Related CPE's

ointelnuc_11_compute_element_cm11ebi38w_firmware********

hintelnuc_11_compute_element_cm11ebi38w-*******

ointelnuc_11_compute_element_cm11ebc4w_firmware********

hintelnuc_11_compute_element_cm11ebc4w-*******

ointelnuc_11_compute_element_cm11ebi58w_firmware********

hintelnuc_11_compute_element_cm11ebi58w-*******

ointelnuc_11_compute_element_cm11ebv58w_firmware********

hintelnuc_11_compute_element_cm11ebv58w-*******

ointelnuc_11_compute_element_cm11ebi716w_firmware********

hintelnuc_11_compute_element_cm11ebi716w-*******

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00752.html

Vendor Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics
Created by Yello
About Severity.io