CVSS: 7.5EPSS: 0%CPEs: 55EXPL: 1CVE-2017-5721
https://notcve.org/view.php?id=CVE-2017-5721
11 Oct 2017 — Insufficient input validation in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows local attackers to execute arbitrary code via manipulation of memory. Insuficiente validación de entradas en el firmware del sistema para Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH en versiones BN0049 e inferiores permite que atacantes locales ejecuten código arbitrario mediante la manipulación de la memoria. • https://github.com/embedi/smm_usbrt_poc • CWE-20: Improper Input Validation •
CVSS: 8.4EPSS: 0%CPEs: 55EXPL: 0CVE-2017-5700
https://notcve.org/view.php?id=CVE-2017-5700
11 Oct 2017 — Insufficient protection of password storage in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows local attackers to bypass Administrator and User passwords via access to password storage. Insuficiente protección del almacenamiento de contraseñas en el firmware del sistema para Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH en versiones BN0049 e inferiores permite que atacantes locales omitan las contraseñas Administrator y User medi... • http://www.securityfocus.com/bid/101241 • CWE-522: Insufficiently Protected Credentials •