CVSS: 4.4EPSS: 0%CPEs: 112EXPL: 0CVE-2023-40540
https://notcve.org/view.php?id=CVE-2023-40540
14 Nov 2023 — Non-Transparent Sharing of Microarchitectural Resources in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access. Non-Transparent Sharing of Microarchitectural Resources en algunos firmware de BIOS Intel(R) NUC puede permitir que un usuario privilegiado habilite potencialmente la divulgación de información a través del acceso local. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01001.html • CWE-1303: Non-Transparent Sharing of Microarchitectural Resources •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2023-28377
https://notcve.org/view.php?id=CVE-2023-28377
14 Nov 2023 — Improper authentication in some Intel(R) NUC Kit NUC11PH USB firmware installation software before version 1.1 for Windows may allow an authenticated user to potentially enable escalation of privilege via local access. La autenticación incorrecta en algunos software de instalación firmware Intel(R) NUC Kit NUC11PH USB anteriores a la versión 1.1 para Windows puede permitir que un usuario autenticado habilite potencialmente la escalada de privilegios a través del acceso local. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00908.html • CWE-287: Improper Authentication •
CVSS: 6.4EPSS: 0%CPEs: 362EXPL: 0CVE-2023-34349
https://notcve.org/view.php?id=CVE-2023-34349
11 Aug 2023 — Race condition in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access. • http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00917.html • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-421: Race Condition During Access to Alternate Channel •
CVSS: 6.0EPSS: 0%CPEs: 188EXPL: 0CVE-2023-22330
https://notcve.org/view.php?id=CVE-2023-22330
11 Aug 2023 — Use of uninitialized resource in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access. El uso de recursos no inicializados en algunos firmware de BIOS de Intel(R) NUC puede permitir que un usuario con privilegios permita potencialmente la divulgación de información mediante acceso local. • http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00917.html • CWE-908: Use of Uninitialized Resource •
CVSS: 6.0EPSS: 0%CPEs: 436EXPL: 0CVE-2023-22356
https://notcve.org/view.php?id=CVE-2023-22356
11 Aug 2023 — Improper initialization in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access. La inicialización incorrecta en Intel(R) NUC BIOS firmware pueden permitir que un usuario privilegiado habilite potencialmente la divulgación de información a través del acceso local. • http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00917.html • CWE-665: Improper Initialization •
CVSS: 6.0EPSS: 0%CPEs: 222EXPL: 0CVE-2023-22444
https://notcve.org/view.php?id=CVE-2023-22444
11 Aug 2023 — Improper initialization in some Intel(R) NUC 13 Extreme Compute Element, Intel(R) NUC 13 Extreme Kit, Intel(R) NUC 11 Performance Kit, Intel(R) NUC 11 Performance Mini PC, Intel(R) NUC Compute Element, Intel(R) NUC Laptop Kit, Intel(R) NUC Pro Kit, Intel(R) NUC Pro Board and Intel(R) NUC Pro Mini PC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access. • http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00917.html • CWE-665: Improper Initialization •
CVSS: 7.5EPSS: 0%CPEs: 324EXPL: 0CVE-2023-22449
https://notcve.org/view.php?id=CVE-2023-22449
11 Aug 2023 — Improper input validation in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access. • http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00917.html • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 82EXPL: 0CVE-2023-22312
https://notcve.org/view.php?id=CVE-2023-22312
10 May 2023 — Improper access control for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html • CWE-284: Improper Access Control •
CVSS: 6.7EPSS: 0%CPEs: 118EXPL: 0CVE-2022-21237
https://notcve.org/view.php?id=CVE-2022-21237
12 May 2022 — Improper buffer access in firmware for some Intel(R) NUCs may allow a privileged user to potentially enable escalation of privilege via local access. Un acceso inapropiado al búfer en el firmware de algunos NUCs de Intel(R) puede permitir a un usuario privilegiado activar potencialmente una escalada de privilegios por medio del acceso local • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00654.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.7EPSS: 0%CPEs: 118EXPL: 0CVE-2022-24297
https://notcve.org/view.php?id=CVE-2022-24297
12 May 2022 — Improper buffer restrictions in firmware for some Intel(R) NUCs may allow a privileged user to potentially enable escalation of privilege via local access. Unas restricciones de búfer inapropiadas en el firmware de algunas NUC de Intel(R) pueden permitir que un usuario privilegiado permita potencialmente una escalada de privilegios por medio del acceso local • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00654.html •