PT-2023-13084 · Intel · Intel Nuc Boards+3
Published
2023-05-10
·
Updated
2023-05-19
·
CVE-2022-32582
CVSS v3.1
5.3
Medium
| Vector | AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Intel(R) NUC Boards (affected versions not specified)
Intel(R) NUC 11 Performance Kit (affected versions not specified)
Intel(R) NUC 11 Performance Mini PC (affected versions not specified)
Intel(R) NUC Pro Compute Element (affected versions not specified)
Description
The issue is related to improper access control in the firmware of certain Intel products, which may allow a privileged user to potentially enable denial of service via local access. This could lead to disruptions in service.
Recommendations
For Intel(R) NUC Boards, update the firmware to a version that addresses the improper access control issue.
For Intel(R) NUC 11 Performance Kit, update the firmware to a version that addresses the improper access control issue.
For Intel(R) NUC 11 Performance Mini PC, update the firmware to a version that addresses the improper access control issue.
For Intel(R) NUC Pro Compute Element, update the firmware to a version that addresses the improper access control issue.
As a temporary workaround, consider restricting local access to the firmware until a patch is available.
Fix
Improper Access Control
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Intel Nuc 11 Performance Kit
Intel Nuc 11 Performance Mini Pc
Intel Nuc Boards
Intel Nuc Pro Compute Element