Vulnerabilities > CVE-2023-28722 - Unspecified vulnerability in Intel products

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

intel

NVD

Published: 2024-01-19

Updated: 2024-01-30

Summary

Improper buffer restrictions for some Intel NUC BIOS firmware before version IN0048 may allow a privileged user to potentially enable escalation of privilege via local access.

Vulnerable Configurations

Part	Description	Count
OS	Intel Intel NUC 8 Mainstream G KIT Nuc8I5Inh Firmware Inwhl357.0049 Intel NUC 8 Mainstream G KIT Nuc8I7Inh Firmware Inwhl357.0049	2
Hardware	Intel Intel NUC 8 Mainstream G KIT Nuc8I5Inh - Intel NUC 8 Mainstream G KIT Nuc8I7Inh -	2

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01009.html