CVE-2023-32655
https://notcve.org/view.php?id=CVE-2023-32655
Path transversal in some Intel(R) NUC Kits & Mini PCs - NUC8i7HVK & NUC8HNK USB Type C power delivery controller installatio software before version 1.0.10.3 for Windows may allow an authenticated user to potentially enable escalation of privilege via local access. Path Transversal en algunos software de instalación del controlador Intel(R) NUC Kits & Mini PCs - NUC8i7HVK & NUC8HNK USB Type C de suministro de energía antes de la versión 1.0.10.3 para Windows puede permitir que un usuario autenticado habilite potencialmente la escalada de privilegios a través del acceso local. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00908.html • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') CWE-249: DEPRECATED: Often Misused: Path Manipulation •
CVE-2023-22356
https://notcve.org/view.php?id=CVE-2023-22356
Improper initialization in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access. La inicialización incorrecta en Intel(R) NUC BIOS firmware pueden permitir que un usuario privilegiado habilite potencialmente la divulgación de información a través del acceso local. • http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00917.html • CWE-665: Improper Initialization •
CVE-2022-36372
https://notcve.org/view.php?id=CVE-2022-36372
Improper buffer restrictions in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access. Las restricciones de búfer inadecuadas en algunos firmware de BIOS de Intel(R) NUC pueden permitir que un usuario con privilegios habilite potencialmente la escalada de privilegios a través del acceso local. • http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00917.html • CWE-92: DEPRECATED: Improper Sanitization of Custom Special Characters CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2023-25771
https://notcve.org/view.php?id=CVE-2023-25771
Improper access control for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable denial of service via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html • CWE-284: Improper Access Control •
CVE-2022-21794
https://notcve.org/view.php?id=CVE-2022-21794
Improper authentication in BIOS firmware for some Intel(R) NUC Boards, Intel(R) NUC Business, Intel(R) NUC Enthusiast, Intel(R) NUC Kits before version HN0067 may allow a privileged user to potentially enable escalation of privilege via local access. La autenticación incorrecta en el firmware del BIOS para algunas placas Intel(R) NUC, Intel(R) NUC Business, Intel(R) NUC Enthusiast, kits Intel(R) NUC anteriores a la versión HN0067 puede permitir que un usuario con privilegios habilite la escalada de privilegios a través de acceso local. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00752.html • CWE-287: Improper Authentication •