Improper input validation in firmware for some Intel(R) NUC may allow a privileged user to potentially enableescalation of privilege via local access.

Metrics

Attack Vector Local

Attack Complexity High

Privileges Required High

Attack Requirements Present

User Interaction None

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact High

Subsequent System Integrity Impact High

Subsequent System Availability Impact High

Attack Vector Local

Attack Complexity High

Privileges Required High

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact total

Affected Vendors & Products

Vendors Products
Intel
  • Lapac71g Firmware
  • Lapac71h Firmware
  • Lapbc510 Firmware
  • Lapbc710 Firmware
  • Lapkc51e Firmware
  • Lapkc71e Firmware
  • Lapkc71f Firmware
  • Laprc510 Firmware
  • Laprc710 Firmware
  • Nuc X15 Laptop Kit Lapac71g
  • Nuc X15 Laptop Kit Lapac71g Firmware
  • Nuc X15 Laptop Kit Lapac71h
  • Nuc X15 Laptop Kit Lapac71h Firmware
  • Nuc X15 Laptop Kit Lapbc510
  • Nuc X15 Laptop Kit Lapbc510 Firmware
  • Nuc X15 Laptop Kit Lapbc710
  • Nuc X15 Laptop Kit Lapbc710 Firmware
  • Nuc X15 Laptop Kit Lapkc51e
  • Nuc X15 Laptop Kit Lapkc51e Firmware
  • Nuc X15 Laptop Kit Lapkc71e
  • Nuc X15 Laptop Kit Lapkc71e Firmware
  • Nuc X15 Laptop Kit Lapkc71f
  • Nuc X15 Laptop Kit Lapkc71f Firmware
  • Nuc X15 Laptop Kit Laprc510
  • Nuc X15 Laptop Kit Laprc510 Firmware
  • Nuc X15 Laptop Kit Laprc710
  • Nuc X15 Laptop Kit Laprc710 Firmware

Configuration 1 [-]

AND
cpe:2.3:o:intel:nuc_x15_laptop_kit_lapbc510_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_x15_laptop_kit_lapbc510:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND
cpe:2.3:o:intel:nuc_x15_laptop_kit_lapbc710_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_x15_laptop_kit_lapbc710:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND
cpe:2.3:o:intel:nuc_x15_laptop_kit_lapac71g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_x15_laptop_kit_lapac71g:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND
cpe:2.3:o:intel:nuc_x15_laptop_kit_lapac71h_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_x15_laptop_kit_lapac71h:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND
cpe:2.3:o:intel:nuc_x15_laptop_kit_lapkc51e_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_x15_laptop_kit_lapkc51e:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND
cpe:2.3:o:intel:nuc_x15_laptop_kit_lapkc71e_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_x15_laptop_kit_lapkc71e:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND
cpe:2.3:o:intel:nuc_x15_laptop_kit_lapkc71f_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_x15_laptop_kit_lapkc71f:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND
cpe:2.3:o:intel:nuc_x15_laptop_kit_laprc510_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_x15_laptop_kit_laprc510:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND
cpe:2.3:o:intel:nuc_x15_laptop_kit_laprc710_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_x15_laptop_kit_laprc710:-:*:*:*:*:*:*:*

No data.

References
Link Providers
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01022.html cve-icon cve-icon
History

Thu, 12 Sep 2024 19:15:00 +0000

Type Values Removed Values Added
First Time appeared Intel nuc X15 Laptop Kit Lapac71g
Intel nuc X15 Laptop Kit Lapac71g Firmware
Intel nuc X15 Laptop Kit Lapac71h
Intel nuc X15 Laptop Kit Lapac71h Firmware
Intel nuc X15 Laptop Kit Lapbc510
Intel nuc X15 Laptop Kit Lapbc510 Firmware
Intel nuc X15 Laptop Kit Lapbc710
Intel nuc X15 Laptop Kit Lapbc710 Firmware
Intel nuc X15 Laptop Kit Lapkc51e
Intel nuc X15 Laptop Kit Lapkc51e Firmware
Intel nuc X15 Laptop Kit Lapkc71e
Intel nuc X15 Laptop Kit Lapkc71e Firmware
Intel nuc X15 Laptop Kit Lapkc71f
Intel nuc X15 Laptop Kit Lapkc71f Firmware
Intel nuc X15 Laptop Kit Laprc510
Intel nuc X15 Laptop Kit Laprc510 Firmware
Intel nuc X15 Laptop Kit Laprc710
Intel nuc X15 Laptop Kit Laprc710 Firmware
Weaknesses NVD-CWE-noinfo
CPEs cpe:2.3:h:intel:nuc_x15_laptop_kit_lapac71g:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_x15_laptop_kit_lapac71h:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_x15_laptop_kit_lapbc510:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_x15_laptop_kit_lapbc710:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_x15_laptop_kit_lapkc51e:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_x15_laptop_kit_lapkc71e:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_x15_laptop_kit_lapkc71f:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_x15_laptop_kit_laprc510:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_x15_laptop_kit_laprc710:-:*:*:*:*:*:*:*
cpe:2.3:o:intel:nuc_x15_laptop_kit_lapac71g_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:intel:nuc_x15_laptop_kit_lapac71h_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:intel:nuc_x15_laptop_kit_lapbc510_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:intel:nuc_x15_laptop_kit_lapbc710_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:intel:nuc_x15_laptop_kit_lapkc51e_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:intel:nuc_x15_laptop_kit_lapkc71e_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:intel:nuc_x15_laptop_kit_lapkc71f_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:intel:nuc_x15_laptop_kit_laprc510_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:intel:nuc_x15_laptop_kit_laprc710_firmware:*:*:*:*:*:*:*:*
Vendors & Products Intel nuc X15 Laptop Kit Lapac71g
Intel nuc X15 Laptop Kit Lapac71g Firmware
Intel nuc X15 Laptop Kit Lapac71h
Intel nuc X15 Laptop Kit Lapac71h Firmware
Intel nuc X15 Laptop Kit Lapbc510
Intel nuc X15 Laptop Kit Lapbc510 Firmware
Intel nuc X15 Laptop Kit Lapbc710
Intel nuc X15 Laptop Kit Lapbc710 Firmware
Intel nuc X15 Laptop Kit Lapkc51e
Intel nuc X15 Laptop Kit Lapkc51e Firmware
Intel nuc X15 Laptop Kit Lapkc71e
Intel nuc X15 Laptop Kit Lapkc71e Firmware
Intel nuc X15 Laptop Kit Lapkc71f
Intel nuc X15 Laptop Kit Lapkc71f Firmware
Intel nuc X15 Laptop Kit Laprc510
Intel nuc X15 Laptop Kit Laprc510 Firmware
Intel nuc X15 Laptop Kit Laprc710
Intel nuc X15 Laptop Kit Laprc710 Firmware

Fri, 16 Aug 2024 14:30:00 +0000

Type Values Removed Values Added
First Time appeared Intel
Intel lapac71g Firmware
Intel lapac71h Firmware
Intel lapbc510 Firmware
Intel lapbc710 Firmware
Intel lapkc51e Firmware
Intel lapkc71e Firmware
Intel lapkc71f Firmware
Intel laprc510 Firmware
Intel laprc710 Firmware
CPEs cpe:2.3:o:intel:lapac71g_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:intel:lapac71h_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:intel:lapbc510_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:intel:lapbc710_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:intel:lapkc51e_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:intel:lapkc71e_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:intel:lapkc71f_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:intel:laprc510_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:intel:laprc710_firmware:-:*:*:*:*:*:*:*
Vendors & Products Intel
Intel lapac71g Firmware
Intel lapac71h Firmware
Intel lapbc510 Firmware
Intel lapbc710 Firmware
Intel lapkc51e Firmware
Intel lapkc71e Firmware
Intel lapkc71f Firmware
Intel laprc510 Firmware
Intel laprc710 Firmware
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Wed, 14 Aug 2024 14:00:00 +0000

Type Values Removed Values Added
Description Improper input validation in firmware for some Intel(R) NUC may allow a privileged user to potentially enableescalation of privilege via local access.
Weaknesses CWE-20
References
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H'}

cvssV4_0

{'score': 8.7, 'vector': 'CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H'}
cve-icon MITRE

Status: PUBLISHED

Assigner: intel

Published: 2024-08-14T13:45:38.963Z

Updated: 2024-08-16T14:08:31.790Z

Reserved: 2024-05-23T17:14:54.807Z

Link: CVE-2024-34163

cve-icon Vulnrichment

Updated: 2024-08-16T14:08:20.820Z

cve-icon NVD

Status : Analyzed

Published: 2024-08-14T14:15:26.713

Modified: 2024-09-12T18:59:30.753

Link: CVE-2024-34163

cve-icon Redhat

No data.