ГлавнаяУязвимости → CVE-2023-28738
7.5высокая

CVE-2023-28738

Описание

Improper input validation for some Intel NUC BIOS firmware before version JY0070 may allow a privileged user to potentially enable escalation of privilege via local access.

Затрагиваемое ПО
Intel Nuc 7 essential nuc7cjysamn firmwareIntel Nuc 7 essential nuc7cjysamnIntel Nuc kit nuc7cjyhn firmwareIntel Nuc kit nuc7cjyhnIntel Nuc kit nuc7pjyhn firmwareIntel Nuc kit nuc7pjyhnIntel Nuc kit nuc7pjyh firmwareIntel Nuc kit nuc7pjyhIntel Nuc kit nuc7cjysal firmwareIntel Nuc kit nuc7cjysalIntel Nuc kit nuc7cjyh firmwareIntel Nuc kit nuc7cjyh
CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Источники
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01009.htmlhttps://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01009.html