Insecure default variable initialization in BIOS firmware for some Intel(R) NUC Boards and Intel(R) NUC Kits before version MYi30060 may allow an authenticated user to potentially enable denial of service via local access.
References
Link | Resource |
---|---|
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00752.html | Patch Vendor Advisory |
Configurations
History
16 Nov 2022, 16:57
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:intel:nuc_kit_nuc5i3myhe_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:intel:nuc_board_nuc5i3mybe_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:intel:nuc_board_nuc5i3mybe:-:*:*:*:*:*:*:* cpe:2.3:h:intel:nuc_kit_nuc5i3myhe:-:*:*:*:*:*:*:* |
|
First Time |
Intel nuc Board Nuc5i3mybe Firmware
Intel nuc Kit Nuc5i3myhe Firmware Intel Intel nuc Board Nuc5i3mybe Intel nuc Kit Nuc5i3myhe |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.5 |
CWE | CWE-1188 | |
References | (MISC) https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00752.html - Patch, Vendor Advisory |
11 Nov 2022, 16:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-11-11 16:15
Updated : 2024-02-09 00:12
NVD link : CVE-2022-36349
Mitre link : CVE-2022-36349
CVE.ORG link : CVE-2022-36349
JSON object : View
Products Affected
intel
- nuc_board_nuc5i3mybe
- nuc_kit_nuc5i3myhe
- nuc_kit_nuc5i3myhe_firmware
- nuc_board_nuc5i3mybe_firmware
CWE
CWE-1188
Insecure Default Initialization of Resource