CVSS: 7.3EPSS: 0%CPEs: 11EXPL: 0CVE-2023-32658
https://notcve.org/view.php?id=CVE-2023-32658
14 Nov 2023 — Unquoted search path in some Intel(R) NUC Kits NUC7i3DN, NUC7i5DN, NUC7i7DN HDMI firmware update tool software before version 1.79.1.1 may allow an authenticated user to potentially enable escalation of privilege via local access. La ruta de búsqueda sin comillas en Intel(R) NUC Kits NUC7i3DN, NUC7i5DN, NUC7i7DN software de herramienta de actualización de firmware HDMI anteriores a la versión 1.79.1.1 puede permitir que un usuario autenticado habilite potencialmente la escalada de privilegios a través del a... • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00908.html • CWE-428: Unquoted Search Path or Element •
CVSS: 7.8EPSS: 0%CPEs: 11EXPL: 0CVE-2022-27229
https://notcve.org/view.php?id=CVE-2022-27229
14 Nov 2023 — Path transversal in some Intel(R) NUC Kits NUC7i3DN, NUC7i5DN, NUC7i7DN HDMI firmware update tool software before version 1.79.1.1 may allow an authenticated user to potentially enable escalation of privilege via local access. Path transversal en Intel(R) NUC Kits NUC7i3DN, NUC7i5DN, NUC7i7DN Software de herramienta de actualización de firmware HDMI anteriores a la versión 1.79.1.1 puede permitir que un usuario autenticado habilite potencialmente la escalada de privilegios a través del acceso local. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00908.html • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') CWE-249: DEPRECATED: Often Misused: Path Manipulation •
CVSS: 7.3EPSS: 0%CPEs: 1EXPL: 0CVE-2022-21162
https://notcve.org/view.php?id=CVE-2022-21162
10 May 2023 — Uncontrolled search path for the Intel(R) HDMI Firmware Update tool for NUC before version 1.79.1.1 may allow an authenticated user to potentially enable escalation of privilege via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00833.html • CWE-427: Uncontrolled Search Path Element •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-40971
https://notcve.org/view.php?id=CVE-2022-40971
10 May 2023 — Incorrect default permissions for the Intel(R) HDMI Firmware Update Tool for NUC before version 1.79.1.1 may allow an authenticated user to potentially enable escalation of privilege via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00833.html • CWE-276: Incorrect Default Permissions •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2021-33090
https://notcve.org/view.php?id=CVE-2021-33090
17 Nov 2021 — Incorrect default permissionsin the software installer for the Intel(R) NUC HDMI Firmware Update Tool for NUC10i3FN, NUC10i5FN, NUC10i7FN before version 1.78.2.0.7 may allow an authenticated user to potentially enable escalation of privilege via local access. Unos permisos predeterminados incorrectos en el instalador de software para la Herramienta de Actualización de Firmware Intel(R) NUC HDMI para NUC10i3FN, NUC10i5FN, NUC10i7FN versiones anteriores a 1.78.2.0.7, pueden permitir a un usuario autenticado h... • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00568.html • CWE-276: Incorrect Default Permissions •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2021-33089
https://notcve.org/view.php?id=CVE-2021-33089
17 Nov 2021 — Improper access control in the software installer for the Intel(R) NUC HDMI Firmware Update Tool for NUC8i3BE, NUC8i5BE, NUC8i7BE before version 1.78.4.0.4 may allow an authenticated user to potentially enable escalation of privilege via local access. Un control de acceso inapropiado en el instalador de software para la Herramienta de Actualización de Firmware Intel(R) NUC HDMI para NUC8i3BE, NUC8i5BE, NUC8i7BE versiones anteriores a 1.78.4.0.4, puede permitir a un usuario autenticado habilitar potencialmen... • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00568.html •
CVSS: 7.8EPSS: 0%CPEs: 402EXPL: 0CVE-2017-5711
https://notcve.org/view.php?id=CVE-2017-5711
21 Nov 2017 — Multiple buffer overflows in Active Management Technology (AMT) in Intel Manageability Engine Firmware 8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20 allow attacker with local access to the system to execute arbitrary code with AMT execution privilege. Múltiples desbordamientos de búfer en el kernel en Active Management Technology (AMT) en Intel Manageability Engine Firmware 8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20 permiten que un atacante con acceso local al sistema ejecute código arbitrario con el privi... • http://www.securityfocus.com/bid/101918 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.0EPSS: 1%CPEs: 402EXPL: 0CVE-2017-5712
https://notcve.org/view.php?id=CVE-2017-5712
21 Nov 2017 — Buffer overflow in Active Management Technology (AMT) in Intel Manageability Engine Firmware 8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20 allows attacker with remote Admin access to the system to execute arbitrary code with AMT execution privilege. Desbordamiento de búfer en el kernel en Active Management Technology (AMT) en Intel Manageability Engine Firmware 8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20 permite que un atacante con acceso local al sistema ejecute código arbitrario con el privilegio de ejecu... • http://www.securityfocus.com/bid/101920 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •