CVSS: 6.0EPSS: 0%CPEs: 134EXPL: 0CVE-2023-32285
https://notcve.org/view.php?id=CVE-2023-32285
11 Aug 2023 — Improper access control in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable denial of service via local access. • http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00917.html • CWE-284: Improper Access Control •
CVSS: 7.8EPSS: 0%CPEs: 142EXPL: 0CVE-2023-34438
https://notcve.org/view.php?id=CVE-2023-34438
11 Aug 2023 — Race condition in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access. • http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00917.html • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-421: Race Condition During Access to Alternate Channel •
CVSS: 8.2EPSS: 0%CPEs: 142EXPL: 0CVE-2023-34086
https://notcve.org/view.php?id=CVE-2023-34086
11 Aug 2023 — Improper input validation in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access. • http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00917.html • CWE-20: Improper Input Validation •
CVSS: 8.2EPSS: 0%CPEs: 46EXPL: 0CVE-2023-32617
https://notcve.org/view.php?id=CVE-2023-32617
11 Aug 2023 — Improper input validation in some Intel(R) NUC Rugged Kit, Intel(R) NUC Kit and Intel(R) Compute Element BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access. • http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00917.html • CWE-20: Improper Input Validation •
CVSS: 5.8EPSS: 0%CPEs: 130EXPL: 0CVE-2023-25771
https://notcve.org/view.php?id=CVE-2023-25771
10 May 2023 — Improper access control for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable denial of service via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html • CWE-284: Improper Access Control •
CVSS: 6.7EPSS: 0%CPEs: 150EXPL: 0CVE-2020-8742
https://notcve.org/view.php?id=CVE-2020-8742
13 Aug 2020 — Improper input validation in the firmware for Intel(R) NUCs may allow a privileged user to potentially enable escalation of privilege via local access. Una comprobación de entrada inapropiada en el firmware para Intel® NUCs puede permitir a un usuario privilegiado habilitar potencialmente una escalada de privilegios por medio de un acceso local • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00392.html • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 142EXPL: 0CVE-2020-0530
https://notcve.org/view.php?id=CVE-2020-0530
12 Mar 2020 — Improper buffer restrictions in firmware for Intel(R) NUC may allow an authenticated user to potentially enable escalation of privilege via local access. The list of affected products is provided in intel-sa-00343: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00343.html Unas restricciones de búfer inapropiadas en el firmware para Intel(R) NUC, pueden permitir a un usuario autentificado habilitar potencialmente una escalada de privilegios por medio de un acceso local. La lista de... • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00343.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 6.7EPSS: 0%CPEs: 142EXPL: 0CVE-2020-0526
https://notcve.org/view.php?id=CVE-2020-0526
12 Mar 2020 — Improper input validation in firmware for Intel(R) NUC may allow a privileged user to potentially enable escalation of privilege via local access. The list of affected products is provided in intel-sa-00343: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00343.html Una comprobación de entrada inapropiada en el firmware para Intel(R) NUC, puede permitir a un usuario privilegiado habilitar potencialmente una escalada de privilegios por medio de un acceso local. La lista de productos... • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00343.html • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 55EXPL: 0CVE-2017-5722
https://notcve.org/view.php?id=CVE-2017-5722
11 Oct 2017 — Incorrect policy enforcement in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows attackers with local or physical access to bypass enforcement of integrity protections via manipulation of firmware storage. Cumplimiento incorrecto de políticas en el firmware del sistema para Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH en versiones BN0049 e inferiores permite que atacantes con acceso local o físico omitan el cumplimiento de protec... • http://www.securityfocus.com/bid/101236 • CWE-269: Improper Privilege Management •
CVSS: 7.1EPSS: 0%CPEs: 55EXPL: 0CVE-2017-5701
https://notcve.org/view.php?id=CVE-2017-5701
11 Oct 2017 — Insecure platform configuration in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows an attacker with physical presence to run arbitrary code via unauthorized firmware modification during BIOS Recovery. Configuración de la plataforma insegura en el firmware del sistema para Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH en versiones BN0049 e inferiores permite que un atacante con presencia física ejecute código arbitrario mediante l... • http://www.securityfocus.com/bid/101257 •