Unknown
CVE-2022-34147
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
CVE-2022-34147
MITRE ATT&CK
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Topic Tags
Description
Improper input validation in BIOS firmware for some Intel® NUC 9 Extreme Laptop Kits, Intel® NUC Performance Kits, Intel® NUC Performance Mini PC, Intel® NUC 8 Compute Element, Intel® NUC Pro Kit, Intel® NUC Pro Board, and Intel® NUC Compute Element may allow a privileged user to potentially enable escalation of privilege via local access.
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
General Information
Vendors
Products
- cm8ccb4r firmware,
- cm8i3cb4n firmware,
- cm8i5cb8n firmware,
- cm8i7cb8n firmware,
- cm8pcb4r firmware,
- lapqc71a firmware,
- lapqc71b firmware,
- lapqc71c firmware,
- lapqc71d firmware,
- nuc10i3fnh firmware,
- nuc10i3fnhf firmware,
- nuc10i3fnhfa firmware,
- nuc10i3fnhja firmware,
- nuc10i3fnhn firmware,
- nuc10i3fnk firmware,
- nuc10i3fnkn firmware,
- nuc10i5fnh firmware,
- nuc10i5fnhca firmware,
- nuc10i5fnhf firmware,
- nuc10i5fnhj firmware,
- nuc10i5fnhja firmware,
- nuc10i5fnhn firmware,
- nuc10i5fnk firmware,
- nuc10i5fnkn firmware,
- nuc10i5fnkp firmware,
- nuc10i5fnkpa firmware,
- nuc10i7fnh firmware,
- nuc10i7fnhaa firmware,
- nuc10i7fnhc firmware,
- nuc10i7fnhja firmware,
- nuc10i7fnhn firmware,
- nuc10i7fnk firmware,
- nuc10i7fnkn firmware,
- nuc10i7fnkp firmware,
- nuc10i7fnkpa firmware,
- nuc8i3pnb firmware,
- nuc8i3pnh firmware,
- nuc8i3pnk firmware,
- nuc9i5qn firmware,
- nuc9i7qn firmware,
- nuc9i9qn firmware
References
Additional Info
Technical Analysis
Report as Emergent Threat Response
Report as Zero-day Exploit
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
