Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2022-31477 (GCVE-0-2022-31477)
Vulnerability from cvelistv5 – Published: 2023-05-10 13:16 – Updated: 2025-01-27 18:08
VLAI?
EPSS
Summary
Improper initialization for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access.
Severity ?
4 (Medium)
CWE
- information disclosure
- CWE-665 - Improper initialization
Assigner
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| n/a | Intel(R) NUC BIOS firmware |
Affected:
See references
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T07:19:05.694Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html",
"tags": [
"x_transferred"
],
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2022-31477",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-01-27T17:26:57.145288Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-01-27T18:08:25.600Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "Intel(R) NUC BIOS firmware",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "See references"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Improper initialization for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "information disclosure",
"lang": "en"
},
{
"cweId": "CWE-665",
"description": "Improper initialization",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2023-05-10T13:16:49.406Z",
"orgId": "6dda929c-bb53-4a77-a76d-48e79601a1ce",
"shortName": "intel"
},
"references": [
{
"name": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "6dda929c-bb53-4a77-a76d-48e79601a1ce",
"assignerShortName": "intel",
"cveId": "CVE-2022-31477",
"datePublished": "2023-05-10T13:16:49.406Z",
"dateReserved": "2022-06-17T20:54:11.132Z",
"dateUpdated": "2025-01-27T18:08:25.600Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html\", \"name\": \"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-03T07:19:05.694Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2022-31477\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-01-27T17:26:57.145288Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-01-27T17:26:59.169Z\"}}], \"cna\": {\"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 4, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:N/A:N\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"HIGH\", \"confidentialityImpact\": \"HIGH\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"n/a\", \"product\": \"Intel(R) NUC BIOS firmware\", \"versions\": [{\"status\": \"affected\", \"version\": \"See references\"}], \"defaultStatus\": \"unaffected\"}], \"references\": [{\"url\": \"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html\", \"name\": \"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Improper initialization for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"description\": \"information disclosure\"}, {\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-665\", \"description\": \"Improper initialization\"}]}], \"providerMetadata\": {\"orgId\": \"6dda929c-bb53-4a77-a76d-48e79601a1ce\", \"shortName\": \"intel\", \"dateUpdated\": \"2023-05-10T13:16:49.406Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2022-31477\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-01-27T18:08:25.600Z\", \"dateReserved\": \"2022-06-17T20:54:11.132Z\", \"assignerOrgId\": \"6dda929c-bb53-4a77-a76d-48e79601a1ce\", \"datePublished\": \"2023-05-10T13:16:49.406Z\", \"assignerShortName\": \"intel\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
GSD-2022-31477
Vulnerability from gsd - Updated: 2023-12-13 01:19Details
Improper initialization for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2022-31477",
"id": "GSD-2022-31477"
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2022-31477"
],
"details": "Improper initialization for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access.",
"id": "GSD-2022-31477",
"modified": "2023-12-13T01:19:18.385257Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secure@intel.com",
"ID": "CVE-2022-31477",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Intel(R) NUC BIOS firmware",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "See references"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Improper initialization for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access."
}
]
},
"impact": {
"cvss": [
{
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "information disclosure"
},
{
"cweId": "CWE-665",
"lang": "eng",
"value": "Improper initialization"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html",
"refsource": "MISC",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:nuc11pahi3_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:nuc11pahi3:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:nuc11pahi30z_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:nuc11pahi30z:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:nuc11paki3_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:nuc11paki3:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:nuc11pahi5_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:nuc11pahi5:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:nuc11pahi50z_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:nuc11pahi50z:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:nuc11paki5_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:nuc11paki5:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:nuc11paqi50wa_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:nuc11paqi50wa:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:nuc11pahi7_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:nuc11pahi7:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:nuc11pahi70z_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:nuc11pahi70z:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:nuc11paki7_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:nuc11paki7:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:nuc11paqi70qa_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:nuc11paqi70qa:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:cm11ebi38w_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:cm11ebi38w:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:cm11ebi58w_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:cm11ebi58w:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:cm11ebi716w_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:cm11ebi716w:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:cm11ebc4w_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:cm11ebc4w:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:lapbc510_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:lapbc510:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:lapbc710_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:lapbc710:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:lapkc51e_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:lapkc51e:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:lapkc71e_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:lapkc71e:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:lapkc71f_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:lapkc71f:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:nuc11btmi7_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:nuc11btmi7:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:nuc11dbbi7_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:nuc11dbbi7:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:nuc11btmi9_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:nuc11btmi9:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:nuc11dbbi9_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:nuc11dbbi9:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:nuc11phki7c_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:nuc11phki7c:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:nuc11phki7caa_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:nuc11phki7caa:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:nuc11tnkv50z_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:nuc11tnkv50z:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:nuc11tnhv70l_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:nuc11tnhv70l:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:nuc11tnhv50l_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:nuc11tnhv50l:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:nuc11tnkv5_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:nuc11tnkv5:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:nuc11tnkv7_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:nuc11tnkv7:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:nuc11tnhv5_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:nuc11tnhv5:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:nuc11tnhv7_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:nuc11tnhv7:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:nuc11tnbv7_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:nuc11tnbv7:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:nuc11tnbv5_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:nuc11tnbv5:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:nuc11tnkv5_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:nuc11tnkv5:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:nuc11tnkv7_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:nuc11tnkv7:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secure@intel.com",
"ID": "CVE-2022-31477"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Improper initialization for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-665"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html",
"refsource": "MISC",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html"
}
]
}
},
"impact": {
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 0.8,
"impactScore": 3.6
}
},
"lastModifiedDate": "2023-06-01T17:15Z",
"publishedDate": "2023-05-10T14:15Z"
}
}
}
CERTFR-2023-AVI-0371
Vulnerability from certfr_avis - Published: 2023-05-10 - Updated: 2023-05-10
De multiples vulnérabilités ont été découvertes dans les produits Intel. Elles permettent à un attaquant de provoquer un déni de service, une atteinte à la confidentialité des données et une élévation de privilèges.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
- 2023.2 IPU – BIOS
- DSP Builder pour Intel FPGAs Pro Edition Software
- Intel NUC BIOS Firmware
- Intel Connect M Android App
- Intel DCM Software
- Intel DCM
- Intel EMA Configuration Tool and Intel MC Software
- Intel EMA Software
- Intel FPGA Firmware
- Intel IPP Cryptography
- Intel MacCPUID Software
- Intel NUC BIOS Update Software
- Intel NUC Laptop Element Software
- Intel NUC Pro Software Suite
- Intel NUC Software Studio Service Installer
- Intel OFU Software
- Intel Pathfinder pour RISC-V
- Intel QAT Driver
- Intel QAT Engine pour OpenSSL
- Intel QAT
- Intel Quartus Prime Pro Software
- Intel Retail Edge Mobile App
- Intel SCS Add-on Software Installer
- Intel SCS Software
- Intel SUR Software
- Intel Server Board BMC Firmware
- Intel Smart Campus Android App
- Intel Trace Analyzer and Collector Software
- Intel Unite Android App
- Intel Unite Client Software
- Intel Unite Plugin SDK
- Intel VROC Software
- Intel VTune™ Profiler
- Intel i915 Graphics Drivers pour Linux
- Intel oneAPI Toolkit and Component Software Installers
- Open CAS
- WULT Software
Pour plus d'informations, veuillez-vous référer aux avis de l'éditeur.
Impacted products
| Vendor | Product | Description |
|---|
References
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cul\u003e \u003cli\u003e2023.2 IPU \u2013 BIOS\u003c/li\u003e \u003cli\u003eDSP Builder pour Intel FPGAs Pro Edition Software\u003c/li\u003e \u003cli\u003eIntel NUC BIOS Firmware\u003c/li\u003e \u003cli\u003eIntel Connect M Android App\u003c/li\u003e \u003cli\u003eIntel DCM Software\u003c/li\u003e \u003cli\u003eIntel DCM\u003c/li\u003e \u003cli\u003eIntel EMA Configuration Tool and Intel MC Software\u003c/li\u003e \u003cli\u003eIntel EMA Software\u003c/li\u003e \u003cli\u003eIntel FPGA Firmware\u003c/li\u003e \u003cli\u003eIntel IPP Cryptography\u003c/li\u003e \u003cli\u003eIntel MacCPUID Software\u003c/li\u003e \u003cli\u003eIntel NUC BIOS Update Software\u003c/li\u003e \u003cli\u003eIntel NUC Laptop Element Software\u003c/li\u003e \u003cli\u003eIntel NUC Pro Software Suite\u003c/li\u003e \u003cli\u003eIntel NUC Software Studio Service Installer\u003c/li\u003e \u003cli\u003eIntel OFU Software\u003c/li\u003e \u003cli\u003eIntel Pathfinder pour RISC-V\u003c/li\u003e \u003cli\u003eIntel QAT Driver\u003c/li\u003e \u003cli\u003eIntel QAT Engine pour OpenSSL\u003c/li\u003e \u003cli\u003eIntel QAT\u003c/li\u003e \u003cli\u003eIntel Quartus Prime Pro Software\u003c/li\u003e \u003cli\u003eIntel Retail Edge Mobile App\u003c/li\u003e \u003cli\u003eIntel SCS Add-on Software Installer\u003c/li\u003e \u003cli\u003eIntel SCS Software\u003c/li\u003e \u003cli\u003eIntel SUR Software\u003c/li\u003e \u003cli\u003eIntel Server Board BMC Firmware\u003c/li\u003e \u003cli\u003eIntel Smart Campus Android App\u003c/li\u003e \u003cli\u003eIntel Trace Analyzer and Collector Software\u003c/li\u003e \u003cli\u003eIntel Unite Android App\u003c/li\u003e \u003cli\u003eIntel Unite Client Software\u003c/li\u003e \u003cli\u003eIntel Unite Plugin SDK\u003c/li\u003e \u003cli\u003eIntel VROC Software\u003c/li\u003e \u003cli\u003eIntel VTune\u2122 Profiler\u003c/li\u003e \u003cli\u003eIntel i915 Graphics Drivers pour Linux\u003c/li\u003e \u003cli\u003eIntel oneAPI Toolkit and Component Software Installers\u003c/li\u003e \u003cli\u003eOpen CAS\u003c/li\u003e \u003cli\u003eWULT Software\u003c/li\u003e \u003c/ul\u003e \u003cp\u003ePour plus d\u0027informations, veuillez-vous r\u00e9f\u00e9rer aux avis de l\u0027\u00e9diteur.\u003c/p\u003e ",
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2023-23910",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23910"
},
{
"name": "CVE-2023-22443",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22443"
},
{
"name": "CVE-2022-40974",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40974"
},
{
"name": "CVE-2022-41628",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41628"
},
{
"name": "CVE-2022-43465",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43465"
},
{
"name": "CVE-2022-43475",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43475"
},
{
"name": "CVE-2022-25976",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-25976"
},
{
"name": "CVE-2022-21239",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21239"
},
{
"name": "CVE-2022-40972",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40972"
},
{
"name": "CVE-2023-27382",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-27382"
},
{
"name": "CVE-2022-37409",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-37409"
},
{
"name": "CVE-2023-22355",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22355"
},
{
"name": "CVE-2022-44619",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-44619"
},
{
"name": "CVE-2022-34855",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-34855"
},
{
"name": "CVE-2022-41801",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41801"
},
{
"name": "CVE-2022-36391",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-36391"
},
{
"name": "CVE-2023-25175",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-25175"
},
{
"name": "CVE-2022-41699",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41699"
},
{
"name": "CVE-2023-22312",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22312"
},
{
"name": "CVE-2022-34848",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-34848"
},
{
"name": "CVE-2022-46279",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-46279"
},
{
"name": "CVE-2022-46645",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-46645"
},
{
"name": "CVE-2023-25771",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-25771"
},
{
"name": "CVE-2023-22440",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22440"
},
{
"name": "CVE-2022-38087",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-38087"
},
{
"name": "CVE-2022-43507",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43507"
},
{
"name": "CVE-2022-32578",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32578"
},
{
"name": "CVE-2023-22297",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22297"
},
{
"name": "CVE-2023-22447",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22447"
},
{
"name": "CVE-2022-45128",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-45128"
},
{
"name": "CVE-2022-30338",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-30338"
},
{
"name": "CVE-2023-25776",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-25776"
},
{
"name": "CVE-2023-22379",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22379"
},
{
"name": "CVE-2022-42465",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42465"
},
{
"name": "CVE-2022-42878",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42878"
},
{
"name": "CVE-2023-23573",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23573"
},
{
"name": "CVE-2022-36339",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-36339"
},
{
"name": "CVE-2022-41982",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41982"
},
{
"name": "CVE-2023-27298",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-27298"
},
{
"name": "CVE-2022-41771",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41771"
},
{
"name": "CVE-2023-28410",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28410"
},
{
"name": "CVE-2023-25179",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-25179"
},
{
"name": "CVE-2023-23909",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23909"
},
{
"name": "CVE-2022-38787",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-38787"
},
{
"name": "CVE-2023-27386",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-27386"
},
{
"name": "CVE-2023-23569",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23569"
},
{
"name": "CVE-2022-41769",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41769"
},
{
"name": "CVE-2022-38103",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-38103"
},
{
"name": "CVE-2022-31477",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-31477"
},
{
"name": "CVE-2022-33894",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-33894"
},
{
"name": "CVE-2022-28699",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-28699"
},
{
"name": "CVE-2022-46656",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-46656"
},
{
"name": "CVE-2022-43474",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43474"
},
{
"name": "CVE-2022-41784",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41784"
},
{
"name": "CVE-2022-40685",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40685"
},
{
"name": "CVE-2023-28411",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28411"
},
{
"name": "CVE-2022-41658",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41658"
},
{
"name": "CVE-2022-32766",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32766"
},
{
"name": "CVE-2022-29919",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-29919"
},
{
"name": "CVE-2022-38101",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-38101"
},
{
"name": "CVE-2023-25545",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-25545"
},
{
"name": "CVE-2022-29508",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-29508"
},
{
"name": "CVE-2023-22661",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22661"
},
{
"name": "CVE-2022-34147",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-34147"
},
{
"name": "CVE-2022-41690",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41690"
},
{
"name": "CVE-2023-22442",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22442"
},
{
"name": "CVE-2022-41979",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41979"
},
{
"name": "CVE-2022-41693",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41693"
},
{
"name": "CVE-2022-25772",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-25772"
},
{
"name": "CVE-2022-27180",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-27180"
},
{
"name": "CVE-2022-33963",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-33963"
},
{
"name": "CVE-2023-24475",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24475"
},
{
"name": "CVE-2022-41646",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41646"
},
{
"name": "CVE-2022-40207",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40207"
},
{
"name": "CVE-2022-32577",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32577"
},
{
"name": "CVE-2022-40210",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40210"
},
{
"name": "CVE-2022-21804",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21804"
},
{
"name": "CVE-2022-44610",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-44610"
},
{
"name": "CVE-2022-41621",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41621"
},
{
"name": "CVE-2022-41610",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41610"
},
{
"name": "CVE-2023-23580",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23580"
},
{
"name": "CVE-2022-41687",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41687"
},
{
"name": "CVE-2022-32576",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32576"
},
{
"name": "CVE-2022-37327",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-37327"
},
{
"name": "CVE-2022-41998",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41998"
},
{
"name": "CVE-2022-41808",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41808"
},
{
"name": "CVE-2022-32582",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32582"
}
],
"initial_release_date": "2023-05-10T00:00:00",
"last_revision_date": "2023-05-10T00:00:00",
"links": [],
"reference": "CERTFR-2023-AVI-0371",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2023-05-10T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Intel.\nElles permettent \u00e0 un attaquant de provoquer un d\u00e9ni de service, une\natteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et une \u00e9l\u00e9vation de\nprivil\u00e8ges.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Intel",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00809 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00809.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00816 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00816.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00886 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00886.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00797 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00797.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00819 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00819.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00798 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00798.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00796 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00796.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00853 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00853.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00825 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00825.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00771 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00771.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00807 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00807.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00805 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00805.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00855 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00855.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00847 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00847.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00802 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00802.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00692 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00692.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00854 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00854.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00799 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00799.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00785 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00785.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00784 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00784.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00834 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00834.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00792 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00792.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00824 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00824.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00782 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00782.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00778 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00778.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00839 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00839.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00806 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00806.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00772 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00772.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00780 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00780.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00779 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00779.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00788 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00788.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00808 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00808.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00777 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00832 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00832.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00723 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00723.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00827 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00827.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel intel-sa-00815 du 09 mai 2023",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00815.html"
}
]
}
FKIE_CVE-2022-31477
Vulnerability from fkie_nvd - Published: 2023-05-10 14:15 - Updated: 2024-11-21 07:04
Severity ?
4.0 (Medium) - CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:N/A:N
4.4 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
4.4 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Summary
Improper initialization for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| intel | nuc11pahi3_firmware | - | |
| intel | nuc11pahi3 | - | |
| intel | nuc11pahi30z_firmware | - | |
| intel | nuc11pahi30z | - | |
| intel | nuc11paki3_firmware | - | |
| intel | nuc11paki3 | - | |
| intel | nuc11pahi5_firmware | - | |
| intel | nuc11pahi5 | - | |
| intel | nuc11pahi50z_firmware | - | |
| intel | nuc11pahi50z | - | |
| intel | nuc11paki5_firmware | - | |
| intel | nuc11paki5 | - | |
| intel | nuc11paqi50wa_firmware | - | |
| intel | nuc11paqi50wa | - | |
| intel | nuc11pahi7_firmware | - | |
| intel | nuc11pahi7 | - | |
| intel | nuc11pahi70z_firmware | - | |
| intel | nuc11pahi70z | - | |
| intel | nuc11paki7_firmware | - | |
| intel | nuc11paki7 | - | |
| intel | nuc11paqi70qa_firmware | - | |
| intel | nuc11paqi70qa | - | |
| intel | cm11ebi38w_firmware | - | |
| intel | cm11ebi38w | - | |
| intel | cm11ebi58w_firmware | - | |
| intel | cm11ebi58w | - | |
| intel | cm11ebi716w_firmware | - | |
| intel | cm11ebi716w | - | |
| intel | cm11ebc4w_firmware | - | |
| intel | cm11ebc4w | - | |
| intel | lapbc510_firmware | - | |
| intel | lapbc510 | - | |
| intel | lapbc710_firmware | - | |
| intel | lapbc710 | - | |
| intel | lapkc51e_firmware | - | |
| intel | lapkc51e | - | |
| intel | lapkc71e_firmware | - | |
| intel | lapkc71e | - | |
| intel | lapkc71f_firmware | - | |
| intel | lapkc71f | - | |
| intel | nuc11btmi7_firmware | - | |
| intel | nuc11btmi7 | - | |
| intel | nuc11dbbi7_firmware | - | |
| intel | nuc11dbbi7 | - | |
| intel | nuc11btmi9_firmware | - | |
| intel | nuc11btmi9 | - | |
| intel | nuc11dbbi9_firmware | - | |
| intel | nuc11dbbi9 | - | |
| intel | nuc11phki7c_firmware | - | |
| intel | nuc11phki7c | - | |
| intel | nuc11phki7caa_firmware | - | |
| intel | nuc11phki7caa | - | |
| intel | nuc11tnkv50z_firmware | - | |
| intel | nuc11tnkv50z | - | |
| intel | nuc11tnhv70l_firmware | - | |
| intel | nuc11tnhv70l | - | |
| intel | nuc11tnhv50l_firmware | - | |
| intel | nuc11tnhv50l | - | |
| intel | nuc11tnkv5_firmware | - | |
| intel | nuc11tnkv5 | - | |
| intel | nuc11tnkv7_firmware | - | |
| intel | nuc11tnkv7 | - | |
| intel | nuc11tnhv5_firmware | - | |
| intel | nuc11tnhv5 | - | |
| intel | nuc11tnhv7_firmware | - | |
| intel | nuc11tnhv7 | - | |
| intel | nuc11tnbv7_firmware | - | |
| intel | nuc11tnbv7 | - | |
| intel | nuc11tnbv5_firmware | - | |
| intel | nuc11tnbv5 | - | |
| intel | nuc11tnkv5_firmware | - | |
| intel | nuc11tnkv5 | - | |
| intel | nuc11tnkv7_firmware | - | |
| intel | nuc11tnkv7 | - |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:nuc11pahi3_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "85CDF558-C7D3-41CE-A94C-41F36E658D1A",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:nuc11pahi3:-:*:*:*:*:*:*:*",
"matchCriteriaId": "834C882D-E59E-4130-A837-27650EDF768A",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:nuc11pahi30z_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B3C9B204-EF7E-430B-B6BF-A1A0F04754C6",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:nuc11pahi30z:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F7C0914E-69EA-4F50-B14B-C8456FF04935",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:nuc11paki3_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7CBCAC26-9751-4D84-B9DD-5008A64D1D31",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:nuc11paki3:-:*:*:*:*:*:*:*",
"matchCriteriaId": "90728142-27C1-421D-9094-4BB07CE001FE",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:nuc11pahi5_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6BE3FA72-7424-4561-9516-7F09D87CEC93",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:nuc11pahi5:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F0BFDEA8-6525-4814-B4EA-DC42F333D01B",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:nuc11pahi50z_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2B708A70-30D9-4B60-980E-E768B0C3DEE4",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:nuc11pahi50z:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FD611344-D700-4624-8025-BE32EF0EBCF2",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:nuc11paki5_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FD97228A-91BF-420E-8004-C2BFD50D8693",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:nuc11paki5:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F2EE9C54-D4CE-448A-88F2-4C7FEFE5F9ED",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:nuc11paqi50wa_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1E8F9203-6801-4BD9-8991-C4DB2AF87B37",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:nuc11paqi50wa:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E27E6370-3BB8-459C-933F-C89C3B290114",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:nuc11pahi7_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C5FEE7BF-584B-44FF-8828-30B325B6E74C",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:nuc11pahi7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B3E064F4-04B6-4E7D-B1FE-9F706AEC3933",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:nuc11pahi70z_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3D65F327-5927-43D1-A736-5F55DCFDC8A6",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:nuc11pahi70z:-:*:*:*:*:*:*:*",
"matchCriteriaId": "86F0C8DE-C22D-4D38-9421-D3C6D48F4ABE",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:nuc11paki7_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4E4A7B0A-BE87-4577-92BF-C2F6A2769237",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:nuc11paki7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2E601D53-77BB-4055-BB71-AE52C877E16C",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:nuc11paqi70qa_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F2029DAF-4A71-4E65-97A4-6F58AFE882FB",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:nuc11paqi70qa:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4E561018-DD29-4268-9F57-1CBCAFCEB696",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:cm11ebi38w_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "557527AB-EA43-48BF-A0DC-D978DA99C93D",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:cm11ebi38w:-:*:*:*:*:*:*:*",
"matchCriteriaId": "44B7FCD6-B55E-4A7A-A241-1D5C8A2DD094",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:cm11ebi58w_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DFEF30E9-089C-4AB2-A0F7-9BC673EB1EDE",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:cm11ebi58w:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B538720E-ABEC-4F35-B644-D0B7CECA25E7",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:cm11ebi716w_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "55135955-C655-41A1-B093-A2A6872DF569",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:cm11ebi716w:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2B22F068-6F55-4A6C-B594-9111432D42F7",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:cm11ebc4w_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FE171F69-4D85-457E-A1AA-BB7FE324B494",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:cm11ebc4w:-:*:*:*:*:*:*:*",
"matchCriteriaId": "043A987B-5BF2-4A7B-BC0E-8076EC801E9D",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:lapbc510_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B515E644-0177-450C-A263-E664772DABB2",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:lapbc510:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4BD6D818-ACF0-43B7-961C-5B3D2F816930",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:lapbc710_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1073A75A-81B9-4B87-8106-DA01CD925EF3",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:lapbc710:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F4A7817D-E26D-4825-B3BF-2BC48CF30688",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:lapkc51e_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "086A0EBD-E6D8-4142-A886-F728E398ED84",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:lapkc51e:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CE3E9D7F-0D8B-4280-8A9F-7AA4D252DAE7",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:lapkc71e_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DE031604-677D-4357-A39F-DCA3D04125B1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:lapkc71e:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2EDE2B4A-41A9-4589-BA27-C97A535AE75F",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:lapkc71f_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "14C3180D-384D-426B-8BB6-1F545362A175",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:lapkc71f:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4746844A-4F96-4866-B9E2-BB4FCA3312F5",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:nuc11btmi7_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "38ED8601-661E-43E1-8E45-CE8145FB249F",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:nuc11btmi7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "09A302AE-67BC-48AD-A093-2BC98A8C3716",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:nuc11dbbi7_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B0D40679-3A7E-453F-97D1-097E5C02806D",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:nuc11dbbi7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "747BFD86-BFA0-4C28-9949-CD7E264583F0",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:nuc11btmi9_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "68C1C366-8579-4612-8900-44DDC52C7F9E",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:nuc11btmi9:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FB6761DE-7D65-44E1-A1B3-6B6AC1E2A719",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:nuc11dbbi9_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8F3BE574-5E5B-4E0A-84C0-7AAC962EDF18",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:nuc11dbbi9:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AA398B86-473B-4BB9-8355-E72C227B9B21",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:nuc11phki7c_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2D0423B6-ACA7-4217-B5FD-37DA8F0DD33A",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:nuc11phki7c:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F932DB93-29E2-4FF0-8E2D-1DEF13C87069",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:nuc11phki7caa_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9D951360-D445-44F5-A108-D4AAE00CDAF8",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:nuc11phki7caa:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5C8EBC7F-3514-457A-9A00-9279AF4B39B8",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:nuc11tnkv50z_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "447C268A-65E7-4485-8E51-8F6F5F8A3C45",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:nuc11tnkv50z:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7B67B919-842C-4E83-8B16-22FF790E2BD1",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:nuc11tnhv70l_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "275E017A-254D-4071-8790-81EB9B21DD46",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:nuc11tnhv70l:-:*:*:*:*:*:*:*",
"matchCriteriaId": "77C602C7-7889-4306-8179-1B9F5E89AE36",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:nuc11tnhv50l_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "80DD001B-BA60-4E70-B90F-0A2738A7F0B4",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:nuc11tnhv50l:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8E3D173C-8421-4816-A473-66D5345AD773",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:nuc11tnkv5_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F1A8CE65-CB68-46CA-8CCB-4B899A2328CE",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:nuc11tnkv5:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0BAC30F5-025F-45D6-BC7C-B0C9A14883F6",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:nuc11tnkv7_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7A35967F-BA30-4420-BE89-A64AAF19D04D",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:nuc11tnkv7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4F5272B5-3A47-4455-B532-4EC019D1BA1A",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:nuc11tnhv5_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "26CD97A9-9365-4854-977D-708DF4C13C22",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:nuc11tnhv5:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6055A92C-0591-499E-9D5C-E860533669BB",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:nuc11tnhv7_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8AED22C5-CAC2-429C-937F-1C88F4200875",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:nuc11tnhv7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7C763DBB-EB5C-4F48-97AC-48CC625C1785",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:nuc11tnbv7_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9487A34C-C7EF-4177-9400-F9C05247A8B7",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:nuc11tnbv7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0DF899C8-27D4-4CE3-8507-84E831159D27",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:nuc11tnbv5_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E5AB4D47-F9EE-4377-A60B-625322BCC158",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:nuc11tnbv5:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6F8E229E-9487-46C7-9696-44166ED56923",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:nuc11tnkv5_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F1A8CE65-CB68-46CA-8CCB-4B899A2328CE",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:nuc11tnkv5:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0BAC30F5-025F-45D6-BC7C-B0C9A14883F6",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:nuc11tnkv7_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7A35967F-BA30-4420-BE89-A64AAF19D04D",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:nuc11tnkv7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4F5272B5-3A47-4455-B532-4EC019D1BA1A",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Improper initialization for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access."
}
],
"id": "CVE-2022-31477",
"lastModified": "2024-11-21T07:04:32.190",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 0.3,
"impactScore": 3.6,
"source": "secure@intel.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 0.8,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2023-05-10T14:15:11.667",
"references": [
{
"source": "secure@intel.com",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html"
}
],
"sourceIdentifier": "secure@intel.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-665"
}
],
"source": "secure@intel.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-665"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-Q7R2-C6MW-RGWR
Vulnerability from github – Published: 2023-05-10 15:30 – Updated: 2024-04-04 03:58
VLAI?
Details
Improper initialization for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access.
Severity ?
4.0 (Medium)
{
"affected": [],
"aliases": [
"CVE-2022-31477"
],
"database_specific": {
"cwe_ids": [
"CWE-665"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2023-05-10T14:15:11Z",
"severity": "MODERATE"
},
"details": "Improper initialization for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access.",
"id": "GHSA-q7r2-c6mw-rgwr",
"modified": "2024-04-04T03:58:57Z",
"published": "2023-05-10T15:30:20Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-31477"
},
{
"type": "WEB",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…