Vulnerability Description
SMM call out in all Intel Branded NUC Kits allows a local privileged user to access the System Management Mode and take full control of the platform.
CVSS Score
6.7
MEDIUM
CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Intel | City Bios | <= ccsklm5v.86a |
| Intel | Stk2M3W64Cc | - |
| Intel | Canyon Bios | <= kyskli70.86a |
| Intel | Nuc6I7Kyb | - |
| Intel | Nuc5Cpyh | - |
| Intel | Nuc5Pgyh | - |
| Intel | Nuc5Ppyh | - |
| Intel | Stk2Mv64Cc | - |
| Intel | Dn2820Fyb | - |
| Intel | Swift Canyon Bios | <= syskli35.86a |
| Intel | Nuc6I3Syb | - |
| Intel | Nuc6I5Syb | - |
| Intel | Citry Bios | <= scchtax5.86a |
| Intel | Stk1Aw32Sc | - |
| Intel | Nuc5I3Mybe | - |
| Intel | Stk1A32Sc | - |
| Intel | Nuc5I3Ryb | - |
| Intel | Nuc5I5Ryb | - |
| Intel | Nuc5I7Rykh | - |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/95012Third Party AdvisoryVDB Entry
- https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00057&languageiVendor Advisory
- http://www.securityfocus.com/bid/95012Third Party AdvisoryVDB Entry
- https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00057&languageiVendor Advisory
FAQ
What is CVE-2016-8103?
CVE-2016-8103 is a vulnerability with a CVSS score of 6.7 (MEDIUM). SMM call out in all Intel Branded NUC Kits allows a local privileged user to access the System Management Mode and take full control of the platform.
How severe is CVE-2016-8103?
CVE-2016-8103 has been rated MEDIUM with a CVSS base score of 6.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-8103?
Check the references section above for vendor advisories and patch information. Affected products include: Intel City Bios, Intel Stk2M3W64Cc, Intel Canyon Bios, Intel Nuc6I7Kyb, Intel Nuc5Cpyh.