CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2022-38101
https://notcve.org/view.php?id=CVE-2022-38101
Uncontrolled search path in some Intel(R) NUC Chaco Canyon BIOS update software before version iFlashV Windows 5.13.00.2105 may allow an authenticated user to potentially enable escalation of privilege via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00780.html • CWE-427: Uncontrolled Search Path Element CWE-428: Unquoted Search Path or Element •
CVSS: 6.1EPSS: 0%CPEs: 236EXPL: 0CVE-2022-37327
https://notcve.org/view.php?id=CVE-2022-37327
Improper input validation in BIOS firmware for Intel(R) NUC, Intel(R) NUC Performance Kit, Intel(R) NUC Performance Mini PC, Intel(R) NUC 8 Compute Element, Intel(R) NUC Pro Kit, Intel(R) NUC Pro Board, Intel(R) NUC 11 Compute Element, Intel(R) NUC 12 Compute Element, Intel(R) NUC Extreme, Intel(R) NUC 12 Extreme Compute Element, Intel(R) NUC Laptop Kit, Intel(R) NUC Enthusiast, Intel(R) NUC Essential, Intel(R) NUC Laptop Kit, Intel(R) NUC Extreme Compute Element, Intel(R) NUC Boards, Intel(R) NUC Pro Compute Element, Intel(R) NUC Rugged may allow a privileged user to enable information disclosure via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 82EXPL: 0CVE-2023-22312
https://notcve.org/view.php?id=CVE-2023-22312
Improper access control for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html • CWE-284: Improper Access Control •
CVSS: 7.5EPSS: 0%CPEs: 54EXPL: 0CVE-2022-28699
https://notcve.org/view.php?id=CVE-2022-28699
Improper input validation for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2022-36377
https://notcve.org/view.php?id=CVE-2022-36377
Insecure inherited permissions in some Intel(R) Wireless Adapter Driver installation software for Intel(R) NUC Kits & Mini PCs before version 22.190.0.3 for Windows may allow an authenticated user to potentially enable escalation of privilege via local access. Los permisos predeterminados incorrectos en el software de instalación para Intel(r) NUC Kit Wireless Adapter drivers para Windows 10 antes de la versión 22.40 pueden permitir que un usuario autenticado habilite potencialmente la escalada de privilegios a través del acceso local. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00908.html • CWE-276: Incorrect Default Permissions CWE-277: Insecure Inherited Permissions •