Vulnerability Description
Improper input validation in BIOS firmware for some Intel(R) NUC may allow a privileged user to potentially enable escalation of privilege via local access.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Intel | Nuc 10 Performance Kit Nuc10I7Fnhn Firmware | - |
| Intel | Nuc 10 Performance Kit Nuc10I7Fnhn | - |
| Intel | Nuc 10 Performance Kit Nuc10I5Fnkn Firmware | - |
| Intel | Nuc 10 Performance Kit Nuc10I5Fnkn | - |
| Intel | Nuc 10 Performance Kit Nuc10I5Fnhn Firmware | - |
| Intel | Nuc 10 Performance Kit Nuc10I5Fnhn | - |
| Intel | Nuc 10 Performance Kit Nuc10I7Fnkn Firmware | - |
| Intel | Nuc 10 Performance Kit Nuc10I7Fnkn | - |
| Intel | Nuc 10 Performance Kit Nuc10I3Fnhn Firmware | - |
| Intel | Nuc 10 Performance Kit Nuc10I3Fnhn | - |
| Intel | Nuc 10 Performance Kit Nuc10I3Fnkn Firmware | - |
| Intel | Nuc 10 Performance Kit Nuc10I3Fnkn | - |
| Intel | Nuc 10 Performance Mini Pc Nuc10I5Fnhja Firmware | - |
| Intel | Nuc 10 Performance Mini Pc Nuc10I5Fnhja | - |
| Intel | Nuc 10 Performance Kit Nuc10I3Fnhf Firmware | - |
| Intel | Nuc 10 Performance Kit Nuc10I3Fnhf | - |
| Intel | Nuc 10 Performance Mini Pc Nuc10I7Fnkpa Firmware | - |
| Intel | Nuc 10 Performance Mini Pc Nuc10I7Fnkpa | - |
| Intel | Nuc 10 Performance Mini Pc Nuc10I5Fnhca Firmware | - |
| Intel | Nuc 10 Performance Mini Pc Nuc10I5Fnhca | - |
Related Weaknesses (CWE)
References
- http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00892.hVendor Advisory
- http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00892.hVendor Advisory
FAQ
What is CVE-2022-37336?
CVE-2022-37336 is a vulnerability with a CVSS score of 7.9 (HIGH). Improper input validation in BIOS firmware for some Intel(R) NUC may allow a privileged user to potentially enable escalation of privilege via local access.
How severe is CVE-2022-37336?
CVE-2022-37336 has been rated HIGH with a CVSS base score of 7.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-37336?
Check the references section above for vendor advisories and patch information. Affected products include: Intel Nuc 10 Performance Kit Nuc10I7Fnhn Firmware, Intel Nuc 10 Performance Kit Nuc10I7Fnhn, Intel Nuc 10 Performance Kit Nuc10I5Fnkn Firmware, Intel Nuc 10 Performance Kit Nuc10I5Fnkn, Intel Nuc 10 Performance Kit Nuc10I5Fnhn Firmware.