CVE-2022-36349
Severity Score
5.5
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Insecure default variable initialization in BIOS firmware for some Intel(R) NUC Boards and Intel(R) NUC Kits before version MYi30060 may allow an authenticated user to potentially enable denial of service via local access.
La inicialización variable predeterminada insegura en el firmware del BIOS para Intel(R) NUC Boards y Intel(R) NUC Kits anteriores a la versión MYi30060 puede permitir que un usuario autenticado habilite potencialmente la Denegación de Servicio (DoS) a través del acceso local.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2022-07-28 CVE Reserved
- 2022-11-11 CVE Published
- 2024-06-03 EPSS Updated
- 2024-08-03 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-1188: Initialization of a Resource with an Insecure Default
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00752.html | 2024-02-09 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Intel Search vendor "Intel" | Nuc Board Nuc5i3mybe Firmware Search vendor "Intel" for product "Nuc Board Nuc5i3mybe Firmware" | < myi30060 Search vendor "Intel" for product "Nuc Board Nuc5i3mybe Firmware" and version " < myi30060" | - |
Affected
| in | Intel Search vendor "Intel" | Nuc Board Nuc5i3mybe Search vendor "Intel" for product "Nuc Board Nuc5i3mybe" | - | - |
Safe
|
| Intel Search vendor "Intel" | Nuc Kit Nuc5i3myhe Firmware Search vendor "Intel" for product "Nuc Kit Nuc5i3myhe Firmware" | < myi30060 Search vendor "Intel" for product "Nuc Kit Nuc5i3myhe Firmware" and version " < myi30060" | - |
Affected
| in | Intel Search vendor "Intel" | Nuc Kit Nuc5i3myhe Search vendor "Intel" for product "Nuc Kit Nuc5i3myhe" | - | - |
Safe
|