ГлавнаяУязвимости → CVE-2023-38587
7.5высокая

CVE-2023-38587

Описание

Improper input validation in some Intel NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access.

Затрагиваемое ПО
Intel Nuc 8 home nuc8i3behfa firmwareIntel Nuc 8 home nuc8i3behfaIntel Nuc 8 home nuc8i5behfa firmwareIntel Nuc 8 home nuc8i5behfaIntel Nuc 8 home nuc8i5bekpa firmwareIntel Nuc 8 home nuc8i5bekpaIntel Nuc 8 enthusiast nuc8i7behga firmwareIntel Nuc 8 enthusiast nuc8i7behgaIntel Nuc 8 enthusiast nuc8i7bekqa firmwareIntel Nuc 8 enthusiast nuc8i7bekqaIntel Nuc kit nuc8i3beh firmwareIntel Nuc kit nuc8i3behIntel Nuc kit nuc8i3bek firmwareIntel Nuc kit nuc8i3bekIntel Nuc kit nuc8i5beh firmwareIntel Nuc kit nuc8i5behIntel Nuc kit nuc8i5bek firmwareIntel Nuc kit nuc8i5bekIntel Nuc kit nuc8i7beh firmwareIntel Nuc kit nuc8i7behIntel Nuc kit nuc8i3behs firmwareIntel Nuc kit nuc8i3behsIntel Nuc kit nuc8i5behs firmwareIntel Nuc kit nuc8i5behsIntel Nuc kit nuc8i7bek firmware
CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Источники
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01028.htmlhttps://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01028.html