CVE-2022-34147 - Vulnerability Details

Improper input validation in BIOS firmware for some Intel(R) NUC 9 Extreme Laptop Kits, Intel(R) NUC Performance Kits, Intel(R) NUC Performance Mini PC, Intel(R) NUC 8 Compute Element, Intel(R) NUC Pro Kit, Intel(R) NUC Pro Board, and Intel(R) NUC Compute Element may allow a privileged user to potentially enable escalation of privilege via local access.

No CVSS v4.0

Attack Vector Local

Attack Complexity High

Privileges Required High

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00053.

Exploitation none

Automatable no

Technical Impact total

Vendors	Products
Intel Subscribe	Cm8ccb4r Subscribe Cm8ccb4r Firmware Subscribe Cm8i3cb4n Subscribe Cm8i3cb4n Firmware Subscribe Cm8i5cb8n Subscribe Cm8i5cb8n Firmware Subscribe Cm8i7cb8n Subscribe Cm8i7cb8n Firmware Subscribe Cm8pcb4r Subscribe Cm8pcb4r Firmware Subscribe Lapqc71a Subscribe Lapqc71a Firmware Subscribe Lapqc71b Subscribe Lapqc71b Firmware Subscribe Lapqc71c Subscribe Lapqc71c Firmware Subscribe Lapqc71d Subscribe Lapqc71d Firmware Subscribe Nuc10i3fnh Subscribe Nuc10i3fnh Firmware Subscribe Nuc10i3fnhf Subscribe Nuc10i3fnhf Firmware Subscribe Nuc10i3fnhfa Subscribe Nuc10i3fnhfa Firmware Subscribe Nuc10i3fnhja Subscribe Nuc10i3fnhja Firmware Subscribe Nuc10i3fnhn Subscribe Nuc10i3fnhn Firmware Subscribe Nuc10i3fnk Subscribe Nuc10i3fnk Firmware Subscribe Nuc10i3fnkn Subscribe Nuc10i3fnkn Firmware Subscribe Nuc10i5fnh Subscribe Nuc10i5fnh Firmware Subscribe Nuc10i5fnhca Subscribe Nuc10i5fnhca Firmware Subscribe Nuc10i5fnhf Subscribe Nuc10i5fnhf Firmware Subscribe Nuc10i5fnhj Subscribe Nuc10i5fnhj Firmware Subscribe Nuc10i5fnhja Subscribe Nuc10i5fnhja Firmware Subscribe Nuc10i5fnhn Subscribe Nuc10i5fnhn Firmware Subscribe Nuc10i5fnk Subscribe Nuc10i5fnk Firmware Subscribe Nuc10i5fnkn Subscribe Nuc10i5fnkn Firmware Subscribe Nuc10i5fnkp Subscribe Nuc10i5fnkp Firmware Subscribe Nuc10i5fnkpa Subscribe Nuc10i5fnkpa Firmware Subscribe Nuc10i7fnh Subscribe Nuc10i7fnh Firmware Subscribe Nuc10i7fnhaa Subscribe Nuc10i7fnhaa Firmware Subscribe Nuc10i7fnhc Subscribe Nuc10i7fnhc Firmware Subscribe Nuc10i7fnhja Subscribe Nuc10i7fnhja Firmware Subscribe Nuc10i7fnhn Subscribe Nuc10i7fnhn Firmware Subscribe Nuc10i7fnk Subscribe Nuc10i7fnk Firmware Subscribe Nuc10i7fnkn Subscribe Nuc10i7fnkn Firmware Subscribe Nuc10i7fnkp Subscribe Nuc10i7fnkp Firmware Subscribe Nuc10i7fnkpa Subscribe Nuc10i7fnkpa Firmware Subscribe Nuc8i3pnb Subscribe Nuc8i3pnb Firmware Subscribe Nuc8i3pnh Subscribe Nuc8i3pnh Firmware Subscribe Nuc8i3pnk Subscribe Nuc8i3pnk Firmware Subscribe Nuc9i5qn Subscribe Nuc9i5qn Firmware Subscribe Nuc9i7qn Subscribe Nuc9i7qn Firmware Subscribe Nuc9i9qn Subscribe Nuc9i9qn Firmware Subscribe

Configuration 1 [-]

AND

cpe:2.3:o:intel:lapqc71a_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:lapqc71a:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:intel:lapqc71b_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:lapqc71b:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:intel:lapqc71c_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:lapqc71c:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:intel:lapqc71d_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:lapqc71d:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:intel:nuc10i3fnh_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc10i3fnh:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:intel:nuc10i3fnhf_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc10i3fnhf:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:intel:nuc10i3fnhfa_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc10i3fnhfa:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:intel:nuc10i3fnhja_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc10i3fnhja:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:intel:nuc10i3fnhn_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc10i3fnhn:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:intel:nuc10i3fnk_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc10i3fnk:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND

cpe:2.3:o:intel:nuc10i3fnkn_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc10i3fnkn:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND

cpe:2.3:o:intel:nuc10i5fnh_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc10i5fnh:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND

cpe:2.3:o:intel:nuc10i5fnhca_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc10i5fnhca:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND

cpe:2.3:o:intel:nuc10i5fnhf_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc10i5fnhf:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND

cpe:2.3:o:intel:nuc10i5fnhja_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc10i5fnhja:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND

cpe:2.3:o:intel:nuc10i5fnhj_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc10i5fnhj:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND

cpe:2.3:o:intel:nuc10i5fnhn_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc10i5fnhn:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND

cpe:2.3:o:intel:nuc10i5fnk_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc10i5fnk:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND

cpe:2.3:o:intel:nuc10i5fnkn_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc10i5fnkn:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND

cpe:2.3:o:intel:nuc10i5fnkpa_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc10i5fnkpa:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND

cpe:2.3:o:intel:nuc10i5fnkp_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc10i5fnkp:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND

cpe:2.3:o:intel:nuc10i7fnh_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc10i7fnh:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND

cpe:2.3:o:intel:nuc10i7fnhaa_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc10i7fnhaa:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND

cpe:2.3:o:intel:nuc10i7fnhc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc10i7fnhc:-:*:*:*:*:*:*:*

Configuration 25 [-]

AND

cpe:2.3:o:intel:nuc10i7fnhja_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc10i7fnhja:-:*:*:*:*:*:*:*

Configuration 26 [-]

AND

cpe:2.3:o:intel:nuc10i7fnhn_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc10i7fnhn:-:*:*:*:*:*:*:*

Configuration 27 [-]

AND

cpe:2.3:o:intel:nuc10i7fnk_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc10i7fnk:-:*:*:*:*:*:*:*

Configuration 28 [-]

AND

cpe:2.3:o:intel:nuc10i7fnkn_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc10i7fnkn:-:*:*:*:*:*:*:*

Configuration 29 [-]

AND

cpe:2.3:o:intel:nuc10i7fnkp_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc10i7fnkp:-:*:*:*:*:*:*:*

Configuration 30 [-]

AND

cpe:2.3:o:intel:nuc10i7fnkpa_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc10i7fnkpa:-:*:*:*:*:*:*:*

Configuration 31 [-]

AND

cpe:2.3:o:intel:cm8i3cb4n_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:cm8i3cb4n:-:*:*:*:*:*:*:*

Configuration 32 [-]

AND

cpe:2.3:o:intel:cm8i5cb8n_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:cm8i5cb8n:-:*:*:*:*:*:*:*

Configuration 33 [-]

AND

cpe:2.3:o:intel:cm8i7cb8n_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:cm8i7cb8n:-:*:*:*:*:*:*:*

Configuration 34 [-]

AND

cpe:2.3:o:intel:cm8ccb4r_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:cm8ccb4r:-:*:*:*:*:*:*:*

Configuration 35 [-]

AND

cpe:2.3:o:intel:cm8pcb4r_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:cm8pcb4r:-:*:*:*:*:*:*:*

Configuration 36 [-]

AND

cpe:2.3:o:intel:nuc8i3pnb_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc8i3pnb:-:*:*:*:*:*:*:*

Configuration 37 [-]

AND

cpe:2.3:o:intel:nuc8i3pnh_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc8i3pnh:-:*:*:*:*:*:*:*

Configuration 38 [-]

AND

cpe:2.3:o:intel:nuc8i3pnk_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc8i3pnk:-:*:*:*:*:*:*:*

Configuration 39 [-]

AND

cpe:2.3:o:intel:nuc9i5qn_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc9i5qn:-:*:*:*:*:*:*:*

Configuration 40 [-]

AND

cpe:2.3:o:intel:nuc9i7qn_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc9i7qn:-:*:*:*:*:*:*:*

Configuration 41 [-]

AND

cpe:2.3:o:intel:nuc9i9qn_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc9i9qn:-:*:*:*:*:*:*:*

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2022-37162	Improper input validation in BIOS firmware for some Intel(R) NUC 9 Extreme Laptop Kits, Intel(R) NUC Performance Kits, Intel(R) NUC Performance Mini PC, Intel(R) NUC 8 Compute Element, Intel(R) NUC Pro Kit, Intel(R) NUC Pro Board, and Intel(R) NUC Compute Element may allow a privileged user to potentially enable escalation of privilege via local access.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html

History

Mon, 27 Jan 2025 18:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: intel

Published: 2023-05-10T13:16:45.539Z

Updated: 2025-01-27T18:09:40.337Z

Reserved: 2022-07-23T03:00:19.870Z

Link: CVE-2022-34147

Vulnrichment

Updated: 2024-08-03T08:16:17.178Z

NVD

Status : Modified

Published: 2023-05-10T14:15:12.977

Modified: 2024-11-21T07:08:56.750

Link: CVE-2022-34147

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

Metrics

Attack Vector Local

Attack Complexity High

Privileges Required High

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact total

Affected Vendors & Products

Projects

JSON object

JSON object

JSON object

JSON object

JSON object