NUC Kits
by Intel
CVEs (7)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2016-8103 | Med | 0.44 | 6.7 | 0.00 | Dec 8, 2016 | SMM call out in all Intel Branded NUC Kits allows a local privileged user to access the System Management Mode and take full control of the platform. | ||
| CVE-2022-32577 | 0.00 | — | 0.00 | May 10, 2023 | Improper input validation in BIOS Firmware for some Intel(R) NUC Kits before version PY0081 may allow a privileged user to potentially enable information disclosure or denial of service via local access | |||
| CVE-2022-36370 | 0.00 | — | 0.00 | Nov 11, 2022 | Improper authentication in BIOS firmware for some Intel(R) NUC Boards and Intel(R) NUC Kits before version MYi30060 may allow a privileged user to potentially enable escalation of privilege via local access. | |||
| CVE-2022-34152 | 0.00 | — | 0.00 | Nov 11, 2022 | Improper input validation in BIOS firmware for some Intel(R) NUC Boards, Intel(R) NUC Kits before version TY0070 may allow a privileged user to potentially enable escalation of privilege via local access. | |||
| CVE-2022-37345 | 0.00 | — | 0.00 | Nov 11, 2022 | Improper authentication in BIOS firmware[A1] for some Intel(R) NUC Kits before version RY0386 may allow an authenticated user to potentially enable escalation of privilege via local access. | |||
| CVE-2017-3718 | 0.00 | — | 0.00 | Jan 10, 2019 | Improper setting of device configuration in system firmware for Intel(R) NUC kits may allow a privileged user to potentially enable escalation of privilege via physical access. | |||
| CVE-2018-12158 | 0.00 | — | 0.00 | Oct 10, 2018 | Insufficient input validation in BIOS update utility in Intel NUC FW kits downloaded before May 24, 2018 may allow a privileged user to potentially trigger a denial of service or information disclosure via local access. |
- risk 0.44cvss 6.7epss 0.00
SMM call out in all Intel Branded NUC Kits allows a local privileged user to access the System Management Mode and take full control of the platform.
- CVE-2022-32577May 10, 2023risk 0.00cvss —epss 0.00
Improper input validation in BIOS Firmware for some Intel(R) NUC Kits before version PY0081 may allow a privileged user to potentially enable information disclosure or denial of service via local access
- CVE-2022-36370Nov 11, 2022risk 0.00cvss —epss 0.00
Improper authentication in BIOS firmware for some Intel(R) NUC Boards and Intel(R) NUC Kits before version MYi30060 may allow a privileged user to potentially enable escalation of privilege via local access.
- CVE-2022-34152Nov 11, 2022risk 0.00cvss —epss 0.00
Improper input validation in BIOS firmware for some Intel(R) NUC Boards, Intel(R) NUC Kits before version TY0070 may allow a privileged user to potentially enable escalation of privilege via local access.
- CVE-2022-37345Nov 11, 2022risk 0.00cvss —epss 0.00
Improper authentication in BIOS firmware[A1] for some Intel(R) NUC Kits before version RY0386 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2017-3718Jan 10, 2019risk 0.00cvss —epss 0.00
Improper setting of device configuration in system firmware for Intel(R) NUC kits may allow a privileged user to potentially enable escalation of privilege via physical access.
- CVE-2018-12158Oct 10, 2018risk 0.00cvss —epss 0.00
Insufficient input validation in BIOS update utility in Intel NUC FW kits downloaded before May 24, 2018 may allow a privileged user to potentially trigger a denial of service or information disclosure via local access.