Vulnerabilities > CVE-2023-29500 - Unspecified vulnerability in Intel products

CVSS 4.4 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

local

low complexity

intel

NVD

Published: 2023-08-11

Updated: 2023-11-07

Summary

Exposure of sensitive information to an unauthorized actor in BIOS firmware for some Intel(R) NUCs may allow a privilege user to potentially enable information disclosure via local access.

Vulnerable Configurations

Part	Description	Count
OS	Intel Intel NUC 11 Performance KIT Nuc11Pahi70Z Firmware - Intel NUC 11 Performance KIT Nuc11Pahi50Z Firmware - Intel NUC 11 Performance KIT Nuc11Pahi30Z Firmware - Intel NUC 11 Performance KIT Nuc11Pahi3 Firmware - Intel NUC 11 Performance KIT Nuc11Pahi5 Firmware - Intel NUC 11 Performance KIT Nuc11Pahi7 Firmware - Intel NUC 11 Performance KIT Nuc11Paki3 Firmware - Intel NUC 11 Performance KIT Nuc11Paki5 Firmware - Intel NUC 11 Performance KIT Nuc11Paki7 Firmware - Intel NUC 11 Performance Mini PC Nuc11Paqi50Wa Firmware - Intel NUC 11 Performance Mini PC Nuc11Paqi70Qa Firmware -	11
Hardware	Intel Intel NUC 11 Performance KIT Nuc11Pahi70Z - Intel NUC 11 Performance KIT Nuc11Pahi50Z - Intel NUC 11 Performance KIT Nuc11Pahi30Z - Intel NUC 11 Performance KIT Nuc11Pahi3 - Intel NUC 11 Performance KIT Nuc11Pahi5 - Intel NUC 11 Performance KIT Nuc11Pahi7 - Intel NUC 11 Performance KIT Nuc11Paki3 - Intel NUC 11 Performance KIT Nuc11Paki5 - Intel NUC 11 Performance KIT Nuc11Paki7 - Intel NUC 11 Performance Mini PC Nuc11Paqi50Wa - Intel NUC 11 Performance Mini PC Nuc11Paqi70Qa -	11

References

http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00892.html