Vulnerabilites related to intel - nuc7i5bnk
CVE-2017-5691 (GCVE-0-2017-5691)
Vulnerability from cvelistv5
Published
2017-07-26 15:00
Modified
2024-09-16 17:58
Severity ?
EPSS score ?
Summary
Incorrect check in Intel processors from 6th and 7th Generation Intel Core Processor Families, Intel Xeon E3-1500M v5 and v6 Product Families, and Intel Xeon E3-1200 v5 and v6 Product Families allows compromised system firmware to impact SGX security via incorrect early system state.
References
| ▼ | URL | Tags |
|---|---|---|
| https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00076&languageid=en-fr | x_refsource_CONFIRM | |
| https://support.lenovo.com/us/en/product_security/LEN-15184 | x_refsource_CONFIRM | |
| https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesb3p03767en_us | x_refsource_CONFIRM |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Intel Corporation | 6th and 7th Generation Intel Core Processor Families, Intel Xeon E3-1500M v5 and v6 Processor Families, and Intel Xeon E3-1200 v5 and v6 Product Families. |
Version: 6th and 7th Generation Intel Core Processor Families, Intel Xeon E3-1500M v5 and v6 Processor Families, and Intel Xeon E3-1200 v5 and v6 Product Families. |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T15:11:48.513Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00076&languageid=en-fr", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.lenovo.com/us/en/product_security/LEN-15184", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesb3p03767en_us", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "6th and 7th Generation Intel Core Processor Families, Intel Xeon E3-1500M v5 and v6 Processor Families, and Intel Xeon E3-1200 v5 and v6 Product Families.", vendor: "Intel Corporation", versions: [ { status: "affected", version: "6th and 7th Generation Intel Core Processor Families, Intel Xeon E3-1500M v5 and v6 Processor Families, and Intel Xeon E3-1200 v5 and v6 Product Families.", }, ], }, ], datePublic: "2017-07-25T00:00:00", descriptions: [ { lang: "en", value: "Incorrect check in Intel processors from 6th and 7th Generation Intel Core Processor Families, Intel Xeon E3-1500M v5 and v6 Product Families, and Intel Xeon E3-1200 v5 and v6 Product Families allows compromised system firmware to impact SGX security via incorrect early system state.", }, ], problemTypes: [ { descriptions: [ { description: "Elevation of Privilege", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-09-15T19:57:01", orgId: "6dda929c-bb53-4a77-a76d-48e79601a1ce", shortName: "intel", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00076&languageid=en-fr", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.lenovo.com/us/en/product_security/LEN-15184", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesb3p03767en_us", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "secure@intel.com", DATE_PUBLIC: "2017-07-25T00:00:00", ID: "CVE-2017-5691", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "6th and 7th Generation Intel Core Processor Families, Intel Xeon E3-1500M v5 and v6 Processor Families, and Intel Xeon E3-1200 v5 and v6 Product Families.", version: { version_data: [ { version_value: "6th and 7th Generation Intel Core Processor Families, Intel Xeon E3-1500M v5 and v6 Processor Families, and Intel Xeon E3-1200 v5 and v6 Product Families.", }, ], }, }, ], }, vendor_name: "Intel Corporation", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Incorrect check in Intel processors from 6th and 7th Generation Intel Core Processor Families, Intel Xeon E3-1500M v5 and v6 Product Families, and Intel Xeon E3-1200 v5 and v6 Product Families allows compromised system firmware to impact SGX security via incorrect early system state.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "Elevation of Privilege", }, ], }, ], }, references: { reference_data: [ { name: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00076&languageid=en-fr", refsource: "CONFIRM", url: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00076&languageid=en-fr", }, { name: "https://support.lenovo.com/us/en/product_security/LEN-15184", refsource: "CONFIRM", url: "https://support.lenovo.com/us/en/product_security/LEN-15184", }, { name: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesb3p03767en_us", refsource: "CONFIRM", url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesb3p03767en_us", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "6dda929c-bb53-4a77-a76d-48e79601a1ce", assignerShortName: "intel", cveId: "CVE-2017-5691", datePublished: "2017-07-26T15:00:00Z", dateReserved: "2017-02-01T00:00:00", dateUpdated: "2024-09-16T17:58:24.342Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
CVE-2017-5700 (GCVE-0-2017-5700)
Vulnerability from cvelistv5
Published
2017-10-11 00:00
Modified
2024-09-16 23:56
Severity ?
EPSS score ?
Summary
Insufficient protection of password storage in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows local attackers to bypass Administrator and User passwords via access to password storage.
References
| ▼ | URL | Tags |
|---|---|---|
| https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr | x_refsource_CONFIRM | |
| http://www.securityfocus.com/bid/101241 | vdb-entry, x_refsource_BID |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Intel Corporation | NUC Kits |
Version: BN0049 and below |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T15:11:48.736Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr", }, { name: "101241", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/101241", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "NUC Kits", vendor: "Intel Corporation", versions: [ { status: "affected", version: "BN0049 and below", }, ], }, ], datePublic: "2017-10-06T00:00:00", descriptions: [ { lang: "en", value: "Insufficient protection of password storage in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows local attackers to bypass Administrator and User passwords via access to password storage.", }, ], problemTypes: [ { descriptions: [ { description: "Elevation of Privilege", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-10-13T09:57:01", orgId: "6dda929c-bb53-4a77-a76d-48e79601a1ce", shortName: "intel", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr", }, { name: "101241", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/101241", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "secure@intel.com", DATE_PUBLIC: "2017-10-06T00:00:00", ID: "CVE-2017-5700", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "NUC Kits", version: { version_data: [ { version_value: "BN0049 and below", }, ], }, }, ], }, vendor_name: "Intel Corporation", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Insufficient protection of password storage in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows local attackers to bypass Administrator and User passwords via access to password storage.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "Elevation of Privilege", }, ], }, ], }, references: { reference_data: [ { name: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr", refsource: "CONFIRM", url: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr", }, { name: "101241", refsource: "BID", url: "http://www.securityfocus.com/bid/101241", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "6dda929c-bb53-4a77-a76d-48e79601a1ce", assignerShortName: "intel", cveId: "CVE-2017-5700", datePublished: "2017-10-11T00:00:00Z", dateReserved: "2017-02-01T00:00:00", dateUpdated: "2024-09-16T23:56:27.076Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
CVE-2017-5722 (GCVE-0-2017-5722)
Vulnerability from cvelistv5
Published
2017-10-11 00:00
Modified
2024-09-16 22:35
Severity ?
EPSS score ?
Summary
Incorrect policy enforcement in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows attackers with local or physical access to bypass enforcement of integrity protections via manipulation of firmware storage.
References
| ▼ | URL | Tags |
|---|---|---|
| https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr | x_refsource_CONFIRM | |
| http://www.securityfocus.com/bid/101236 | vdb-entry, x_refsource_BID |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Intel Corporation | NUC Kits |
Version: BN0049 and below |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T15:11:48.306Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr", }, { name: "101236", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/101236", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "NUC Kits", vendor: "Intel Corporation", versions: [ { status: "affected", version: "BN0049 and below", }, ], }, ], datePublic: "2017-10-06T00:00:00", descriptions: [ { lang: "en", value: "Incorrect policy enforcement in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows attackers with local or physical access to bypass enforcement of integrity protections via manipulation of firmware storage.", }, ], problemTypes: [ { descriptions: [ { description: "Elevation of Privilege", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-10-13T09:57:01", orgId: "6dda929c-bb53-4a77-a76d-48e79601a1ce", shortName: "intel", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr", }, { name: "101236", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/101236", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "secure@intel.com", DATE_PUBLIC: "2017-10-06T00:00:00", ID: "CVE-2017-5722", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "NUC Kits", version: { version_data: [ { version_value: "BN0049 and below", }, ], }, }, ], }, vendor_name: "Intel Corporation", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Incorrect policy enforcement in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows attackers with local or physical access to bypass enforcement of integrity protections via manipulation of firmware storage.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "Elevation of Privilege", }, ], }, ], }, references: { reference_data: [ { name: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr", refsource: "CONFIRM", url: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr", }, { name: "101236", refsource: "BID", url: "http://www.securityfocus.com/bid/101236", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "6dda929c-bb53-4a77-a76d-48e79601a1ce", assignerShortName: "intel", cveId: "CVE-2017-5722", datePublished: "2017-10-11T00:00:00Z", dateReserved: "2017-02-01T00:00:00", dateUpdated: "2024-09-16T22:35:55.343Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
CVE-2017-5721 (GCVE-0-2017-5721)
Vulnerability from cvelistv5
Published
2017-10-11 00:00
Modified
2024-09-16 23:11
Severity ?
EPSS score ?
Summary
Insufficient input validation in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows local attackers to execute arbitrary code via manipulation of memory.
References
| ▼ | URL | Tags |
|---|---|---|
| https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr | x_refsource_CONFIRM |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Intel Corporation | NUC Kits |
Version: BN0049 and below |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T15:11:48.486Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "NUC Kits", vendor: "Intel Corporation", versions: [ { status: "affected", version: "BN0049 and below", }, ], }, ], datePublic: "2017-10-06T00:00:00", descriptions: [ { lang: "en", value: "Insufficient input validation in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows local attackers to execute arbitrary code via manipulation of memory.", }, ], problemTypes: [ { descriptions: [ { description: "Elevation of Privilege", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-10-10T23:57:01", orgId: "6dda929c-bb53-4a77-a76d-48e79601a1ce", shortName: "intel", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "secure@intel.com", DATE_PUBLIC: "2017-10-06T00:00:00", ID: "CVE-2017-5721", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "NUC Kits", version: { version_data: [ { version_value: "BN0049 and below", }, ], }, }, ], }, vendor_name: "Intel Corporation", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Insufficient input validation in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows local attackers to execute arbitrary code via manipulation of memory.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "Elevation of Privilege", }, ], }, ], }, references: { reference_data: [ { name: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr", refsource: "CONFIRM", url: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "6dda929c-bb53-4a77-a76d-48e79601a1ce", assignerShortName: "intel", cveId: "CVE-2017-5721", datePublished: "2017-10-11T00:00:00Z", dateReserved: "2017-02-01T00:00:00", dateUpdated: "2024-09-16T23:11:28.459Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
CVE-2020-8742 (GCVE-0-2020-8742)
Vulnerability from cvelistv5
Published
2020-08-13 02:15
Modified
2024-08-04 10:12
Severity ?
EPSS score ?
Summary
Improper input validation in the firmware for Intel(R) NUCs may allow a privileged user to potentially enable escalation of privilege via local access.
References
| ▼ | URL | Tags |
|---|---|---|
| https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00392.html | x_refsource_MISC |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| n/a | Intel(R) NUCs Advisory |
Version: See provided reference |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-04T10:12:09.646Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00392.html", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Intel(R) NUCs Advisory", vendor: "n/a", versions: [ { status: "affected", version: "See provided reference", }, ], }, ], descriptions: [ { lang: "en", value: "Improper input validation in the firmware for Intel(R) NUCs may allow a privileged user to potentially enable escalation of privilege via local access.", }, ], problemTypes: [ { descriptions: [ { description: "Escalation of Privilege", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2020-08-13T02:15:45", orgId: "6dda929c-bb53-4a77-a76d-48e79601a1ce", shortName: "intel", }, references: [ { tags: [ "x_refsource_MISC", ], url: "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00392.html", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "secure@intel.com", ID: "CVE-2020-8742", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Intel(R) NUCs Advisory", version: { version_data: [ { version_value: "See provided reference", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Improper input validation in the firmware for Intel(R) NUCs may allow a privileged user to potentially enable escalation of privilege via local access.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "Escalation of Privilege", }, ], }, ], }, references: { reference_data: [ { name: "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00392.html", refsource: "MISC", url: "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00392.html", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "6dda929c-bb53-4a77-a76d-48e79601a1ce", assignerShortName: "intel", cveId: "CVE-2020-8742", datePublished: "2020-08-13T02:15:45", dateReserved: "2020-02-06T00:00:00", dateUpdated: "2024-08-04T10:12:09.646Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
CVE-2017-5701 (GCVE-0-2017-5701)
Vulnerability from cvelistv5
Published
2017-10-11 00:00
Modified
2024-09-17 03:02
Severity ?
EPSS score ?
Summary
Insecure platform configuration in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows an attacker with physical presence to run arbitrary code via unauthorized firmware modification during BIOS Recovery.
References
| ▼ | URL | Tags |
|---|---|---|
| https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr | x_refsource_CONFIRM | |
| http://www.securityfocus.com/bid/101257 | vdb-entry, x_refsource_BID |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Intel Corporation | NUC Kits |
Version: BN0049 and below |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T15:11:48.420Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr", }, { name: "101257", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/101257", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "NUC Kits", vendor: "Intel Corporation", versions: [ { status: "affected", version: "BN0049 and below", }, ], }, ], datePublic: "2017-10-06T00:00:00", descriptions: [ { lang: "en", value: "Insecure platform configuration in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows an attacker with physical presence to run arbitrary code via unauthorized firmware modification during BIOS Recovery.", }, ], problemTypes: [ { descriptions: [ { description: "Elevation of Privilege", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-10-14T09:57:01", orgId: "6dda929c-bb53-4a77-a76d-48e79601a1ce", shortName: "intel", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr", }, { name: "101257", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/101257", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "secure@intel.com", DATE_PUBLIC: "2017-10-06T00:00:00", ID: "CVE-2017-5701", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "NUC Kits", version: { version_data: [ { version_value: "BN0049 and below", }, ], }, }, ], }, vendor_name: "Intel Corporation", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Insecure platform configuration in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows an attacker with physical presence to run arbitrary code via unauthorized firmware modification during BIOS Recovery.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "Elevation of Privilege", }, ], }, ], }, references: { reference_data: [ { name: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr", refsource: "CONFIRM", url: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr", }, { name: "101257", refsource: "BID", url: "http://www.securityfocus.com/bid/101257", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "6dda929c-bb53-4a77-a76d-48e79601a1ce", assignerShortName: "intel", cveId: "CVE-2017-5701", datePublished: "2017-10-11T00:00:00Z", dateReserved: "2017-02-01T00:00:00", dateUpdated: "2024-09-17T03:02:24.375Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
var-201710-0954
Vulnerability from variot
Insufficient protection of password storage in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows local attackers to bypass Administrator and User passwords via access to password storage. Intel NUC7i3BNK , NUC7i3BNH , NUC7i5BNK , NUC7i5BNH ,and NUC7i7BNH Vulnerabilities related to certificate and password management exist in the firmware.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. IntelBootgaurd has a local security bypass vulnerability that can be exploited by local attackers to bypass certain security restrictions. IntelNUC7i3BNK and other products are CPU (Central Processing Unit) products of Intel Corporation of the United States. A privilege elevation vulnerability exists in system firmware in several Intel products due to insufficient verification input by the program. An attacker could exploit the vulnerability to exploit arbitrary code by manipulating memory. Intel NUC is a powerful 4x4 inch micro PC with entertainment, gaming and work features, a customizable motherboard that supports all the memory, storage and operating systems you need. Multiple Intel products are prone to a local information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. Intel NUC7i3BNK, etc. The following products and versions are affected: NUC7i3BNK BN0049 and earlier; NUC7i3BNH BN0049 and earlier; NUC7i5BNK BN0049 and earlier; NUC7i5BNH BN0049 and earlier; NUC7i7BNH BN0049 and earlier
Show details on source website{ "@context": { "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#", affected_products: { "@id": "https://www.variotdbs.pl/ref/affected_products", }, configurations: { "@id": "https://www.variotdbs.pl/ref/configurations", }, credits: { "@id": "https://www.variotdbs.pl/ref/credits", }, cvss: { "@id": "https://www.variotdbs.pl/ref/cvss/", }, description: { "@id": "https://www.variotdbs.pl/ref/description/", }, exploit_availability: { "@id": "https://www.variotdbs.pl/ref/exploit_availability/", }, external_ids: { "@id": "https://www.variotdbs.pl/ref/external_ids/", }, iot: { "@id": "https://www.variotdbs.pl/ref/iot/", }, iot_taxonomy: { "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/", }, patch: { "@id": "https://www.variotdbs.pl/ref/patch/", }, problemtype_data: { "@id": "https://www.variotdbs.pl/ref/problemtype_data/", }, references: { "@id": "https://www.variotdbs.pl/ref/references/", }, sources: { "@id": "https://www.variotdbs.pl/ref/sources/", }, sources_release_date: { "@id": "https://www.variotdbs.pl/ref/sources_release_date/", }, sources_update_date: { "@id": "https://www.variotdbs.pl/ref/sources_update_date/", }, threat_type: { "@id": "https://www.variotdbs.pl/ref/threat_type/", }, title: { "@id": "https://www.variotdbs.pl/ref/title/", }, type: { "@id": "https://www.variotdbs.pl/ref/type/", }, }, "@id": "https://www.variotdbs.pl/vuln/VAR-201710-0954", affected_products: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/affected_products#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, "@id": "https://www.variotdbs.pl/ref/sources", }, }, data: [ { model: "nuc7i7bnh", scope: null, trust: 2.4, vendor: "intel", version: null, }, { model: "nuc7i5bnk", scope: null, trust: 2.4, vendor: "intel", version: null, }, { model: "nuc7i5bnh", scope: null, trust: 2.4, vendor: "intel", version: null, }, { model: "nuc7i3bnk", scope: null, trust: 2.4, vendor: "intel", version: null, }, { model: "nuc7i3bnh", scope: null, trust: 2.4, vendor: "intel", version: null, }, { model: "bn0049", scope: null, trust: 2.4, vendor: "intel", version: null, }, { model: "nuc7i3bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "syskli35.86a.0062", }, { model: "nuc7i3bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "tybyt20h.86a.0015", }, { model: "nuc7i3bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "dnkbli5v.86a.0026", }, { model: "nuc7i3bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "ccsklm30.86a.0052", }, { model: "nuc7i3bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "rybdwi35.86a.0366", }, { model: "nuc7i3bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "bnkbl357.86a.0052", }, { model: "nuc7i3bnh", scope: "eq", trust: 1.6, vendor: "intel", version: "tybyt20h.86a.0015", }, { model: "nuc7i3bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "ccsklm5v.86a.0052", }, { model: "nuc7i3bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "kyskli70.86a.0050", }, { model: "nuc7i3bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "ayaplcel.86a.0041", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm5v.86a.0052", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "kyskli70.86a.0050", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "bnkbl357.86a.0052", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "syskli35.86a.0062", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli5v.86a.0026", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "kyskli70.86a.0050", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "ayaplcel.86a.0041", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "ayaplcel.86a.0041", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "syskli35.86a.0062", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm30.86a.0052", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "rybdwi35.86a.0366", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli30.86a.0026", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "tybyt20h.86a.0015", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "tybyt20h.86a.0015", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm5v.86a.0052", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "bnkbl357.86a.0052", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "rybdwi35.86a.0366", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli5v.86a.0026", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm30.86a.0052", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli30.86a.0026", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "kyskli70.86a.0050", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli5v.86a.0026", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "ayaplcel.86a.0041", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm5v.86a.0052", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "bnkbl357.86a.0052", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "syskli35.86a.0062", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "kyskli70.86a.0050", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "syskli35.86a.0062", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "ayaplcel.86a.0041", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "rybdwi35.86a.0366", }, { model: "nuc7i3bnk", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli30.86a.0026", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "tybyt20h.86a.0015", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm30.86a.0052", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm30.86a.0052", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli30.86a.0026", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "rybdwi35.86a.0366", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm5v.86a.0052", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "bnkbl357.86a.0052", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli5v.86a.0026", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli30.86a.0026", }, { model: "nuc kit nuc7i3bnh", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc kit nuc7i3bnk", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc kit nuc7i5bnh", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc kit nuc7i5bnk", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc kit nuc7i7bnh", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc7i7bnh bn0049", scope: null, trust: 0.3, vendor: "intel", version: null, }, { model: "nuc7i5bnk bn0049", scope: null, trust: 0.3, vendor: "intel", version: null, }, { model: "nuc7i5bnh bn0049", scope: null, trust: 0.3, vendor: "intel", version: null, }, { model: "nuc7i3bnk bn0049", scope: null, trust: 0.3, vendor: "intel", version: null, }, { model: "nuc7i3bnh bn0049", scope: null, trust: 0.3, vendor: "intel", version: null, }, ], sources: [ { db: "CNVD", id: "CNVD-2017-30427", }, { db: "CNVD", id: "CNVD-2017-30486", }, { db: "CNVD", id: "CNVD-2017-30485", }, { db: "CNVD", id: "CNVD-2017-30481", }, { db: "BID", id: "101241", }, { db: "JVNDB", id: "JVNDB-2017-009420", }, { db: "NVD", id: "CVE-2017-5700", }, { db: "CNNVD", id: "CNNVD-201710-119", }, ], }, configurations: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/configurations#", children: { "@container": "@list", }, cpe_match: { "@container": "@list", }, data: { "@container": "@list", }, nodes: { "@container": "@list", }, }, data: [ { CVE_data_version: "4.0", nodes: [ { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i7bnh:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i5bnh:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i5bnk:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i3bnh:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i3bnk:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, ], }, ], sources: [ { db: "NVD", id: "CVE-2017-5700", }, ], }, credits: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/credits#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "Nikolaj Schlej", sources: [ { db: "BID", id: "101241", }, ], trust: 0.3, }, cve: "CVE-2017-5700", cvss: { "@context": { cvssV2: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#", }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2", }, cvssV3: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#", }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/", }, severity: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/cvss/severity#", }, "@id": "https://www.variotdbs.pl/ref/cvss/severity", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, "@id": "https://www.variotdbs.pl/ref/sources", }, }, data: [ { cvssV2: [ { acInsufInfo: false, accessComplexity: "LOW", accessVector: "LOCAL", authentication: "NONE", author: "NVD", availabilityImpact: "COMPLETE", baseScore: 7.2, confidentialityImpact: "COMPLETE", exploitabilityScore: 3.9, impactScore: 10, integrityImpact: "COMPLETE", obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, severity: "HIGH", trust: 1, userInteractionRequired: false, vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C", version: "2.0", }, { acInsufInfo: null, accessComplexity: "Low", accessVector: "Local", authentication: "None", author: "NVD", availabilityImpact: "Complete", baseScore: 7.2, confidentialityImpact: "Complete", exploitabilityScore: null, id: "CVE-2017-5700", impactScore: null, integrityImpact: "Complete", obtainAllPrivilege: null, obtainOtherPrivilege: null, obtainUserPrivilege: null, severity: "High", trust: 0.8, userInteractionRequired: null, vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C", version: "2.0", }, { accessComplexity: "MEDIUM", accessVector: "LOCAL", authentication: "NONE", author: "CNVD", availabilityImpact: "PARTIAL", baseScore: 4.4, confidentialityImpact: "PARTIAL", exploitabilityScore: 3.4, id: "CNVD-2017-30427", impactScore: 6.4, integrityImpact: "PARTIAL", severity: "MEDIUM", trust: 0.6, vectorString: "AV:L/AC:M/Au:N/C:P/I:P/A:P", version: "2.0", }, { accessComplexity: "LOW", accessVector: "LOCAL", authentication: "NONE", author: "CNVD", availabilityImpact: "PARTIAL", baseScore: 4.6, confidentialityImpact: "PARTIAL", exploitabilityScore: 3.9, id: "CNVD-2017-30486", impactScore: 6.4, integrityImpact: "PARTIAL", severity: "MEDIUM", trust: 0.6, vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P", version: "2.0", }, { accessComplexity: "MEDIUM", accessVector: "LOCAL", authentication: "NONE", author: "CNVD", availabilityImpact: "PARTIAL", baseScore: 4.4, confidentialityImpact: "PARTIAL", exploitabilityScore: 3.4, id: "CNVD-2017-30485", impactScore: 6.4, integrityImpact: "PARTIAL", severity: "MEDIUM", trust: 0.6, vectorString: "AV:L/AC:M/Au:N/C:P/I:P/A:P", version: "2.0", }, { accessComplexity: "LOW", accessVector: "LOCAL", authentication: "NONE", author: "CNVD", availabilityImpact: "PARTIAL", baseScore: 4.6, confidentialityImpact: "PARTIAL", exploitabilityScore: 3.9, id: "CNVD-2017-30481", impactScore: 6.4, integrityImpact: "PARTIAL", severity: "MEDIUM", trust: 0.6, vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P", version: "2.0", }, { accessComplexity: "LOW", accessVector: "LOCAL", authentication: "NONE", author: "VULHUB", availabilityImpact: "COMPLETE", baseScore: 7.2, confidentialityImpact: "COMPLETE", exploitabilityScore: 3.9, id: "VHN-113903", impactScore: 10, integrityImpact: "COMPLETE", severity: "HIGH", trust: 0.1, vectorString: "AV:L/AC:L/AU:N/C:C/I:C/A:C", version: "2.0", }, ], cvssV3: [ { attackComplexity: "LOW", attackVector: "LOCAL", author: "NVD", availabilityImpact: "HIGH", baseScore: 8.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", exploitabilityScore: 2.5, impactScore: 5.9, integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", trust: 1, userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, { attackComplexity: "Low", attackVector: "Local", author: "NVD", availabilityImpact: "High", baseScore: 8.4, baseSeverity: "High", confidentialityImpact: "High", exploitabilityScore: null, id: "CVE-2017-5700", impactScore: null, integrityImpact: "High", privilegesRequired: "None", scope: "Unchanged", trust: 0.8, userInteraction: "None", vectorString: "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, ], severity: [ { author: "NVD", id: "CVE-2017-5700", trust: 1.8, value: "HIGH", }, { author: "CNVD", id: "CNVD-2017-30427", trust: 0.6, value: "MEDIUM", }, { author: "CNVD", id: "CNVD-2017-30486", trust: 0.6, value: "MEDIUM", }, { author: "CNVD", id: "CNVD-2017-30485", trust: 0.6, value: "MEDIUM", }, { author: "CNVD", id: "CNVD-2017-30481", trust: 0.6, value: "MEDIUM", }, { author: "CNNVD", id: "CNNVD-201710-119", trust: 0.6, value: "HIGH", }, { author: "VULHUB", id: "VHN-113903", trust: 0.1, value: "HIGH", }, ], }, ], sources: [ { db: "CNVD", id: "CNVD-2017-30427", }, { db: "CNVD", id: "CNVD-2017-30486", }, { db: "CNVD", id: "CNVD-2017-30485", }, { db: "CNVD", id: "CNVD-2017-30481", }, { db: "VULHUB", id: "VHN-113903", }, { db: "JVNDB", id: "JVNDB-2017-009420", }, { db: "NVD", id: "CVE-2017-5700", }, { db: "CNNVD", id: "CNNVD-201710-119", }, ], }, description: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/description#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "Insufficient protection of password storage in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows local attackers to bypass Administrator and User passwords via access to password storage. Intel NUC7i3BNK , NUC7i3BNH , NUC7i5BNK , NUC7i5BNH ,and NUC7i7BNH Vulnerabilities related to certificate and password management exist in the firmware.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. IntelBootgaurd has a local security bypass vulnerability that can be exploited by local attackers to bypass certain security restrictions. IntelNUC7i3BNK and other products are CPU (Central Processing Unit) products of Intel Corporation of the United States. A privilege elevation vulnerability exists in system firmware in several Intel products due to insufficient verification input by the program. An attacker could exploit the vulnerability to exploit arbitrary code by manipulating memory. Intel NUC is a powerful 4x4 inch micro PC with entertainment, gaming and work features, a customizable motherboard that supports all the memory, storage and operating systems you need. Multiple Intel products are prone to a local information-disclosure vulnerability. \nAttackers can exploit this issue to obtain sensitive information that may aid in further attacks. Intel NUC7i3BNK, etc. The following products and versions are affected: NUC7i3BNK BN0049 and earlier; NUC7i3BNH BN0049 and earlier; NUC7i5BNK BN0049 and earlier; NUC7i5BNH BN0049 and earlier; NUC7i7BNH BN0049 and earlier", sources: [ { db: "NVD", id: "CVE-2017-5700", }, { db: "JVNDB", id: "JVNDB-2017-009420", }, { db: "CNVD", id: "CNVD-2017-30427", }, { db: "CNVD", id: "CNVD-2017-30486", }, { db: "CNVD", id: "CNVD-2017-30485", }, { db: "CNVD", id: "CNVD-2017-30481", }, { db: "BID", id: "101241", }, { db: "VULHUB", id: "VHN-113903", }, ], trust: 4.14, }, external_ids: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/external_ids#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { db: "NVD", id: "CVE-2017-5700", trust: 5.2, }, { db: "BID", id: "101241", trust: 2.6, }, { db: "JVNDB", id: "JVNDB-2017-009420", trust: 0.8, }, { db: "CNNVD", id: "CNNVD-201710-119", trust: 0.7, }, { db: "BID", id: "101236", trust: 0.6, }, { db: "CNVD", id: "CNVD-2017-30427", trust: 0.6, }, { db: "CNVD", id: "CNVD-2017-30486", trust: 0.6, }, { db: "BID", id: "101257", trust: 0.6, }, { db: "CNVD", id: "CNVD-2017-30485", trust: 0.6, }, { db: "CNVD", id: "CNVD-2017-30481", trust: 0.6, }, { db: "VULHUB", id: "VHN-113903", trust: 0.1, }, ], sources: [ { db: "CNVD", id: "CNVD-2017-30427", }, { db: "CNVD", id: "CNVD-2017-30486", }, { db: "CNVD", id: "CNVD-2017-30485", }, { db: "CNVD", id: "CNVD-2017-30481", }, { db: "VULHUB", id: "VHN-113903", }, { db: "BID", id: "101241", }, { db: "JVNDB", id: "JVNDB-2017-009420", }, { db: "NVD", id: "CVE-2017-5700", }, { db: "CNNVD", id: "CNNVD-201710-119", }, ], }, id: "VAR-201710-0954", iot: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: true, sources: [ { db: "CNVD", id: "CNVD-2017-30427", }, { db: "CNVD", id: "CNVD-2017-30486", }, { db: "CNVD", id: "CNVD-2017-30485", }, { db: "CNVD", id: "CNVD-2017-30481", }, { db: "VULHUB", id: "VHN-113903", }, ], trust: 3.0908091914285714, }, iot_taxonomy: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { category: [ "Network device", ], sub_category: null, trust: 2.4, }, ], sources: [ { db: "CNVD", id: "CNVD-2017-30427", }, { db: "CNVD", id: "CNVD-2017-30486", }, { db: "CNVD", id: "CNVD-2017-30485", }, { db: "CNVD", id: "CNVD-2017-30481", }, ], }, last_update_date: "2023-12-18T12:37:10.084000Z", patch: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/patch#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { title: "INTEL-SA-00084", trust: 0.8, url: "https://security-center.intel.com/advisory.aspx?intelid=intel-sa-00084&languageid=en-fr", }, { title: "IntelBootgaurd local security bypass vulnerability patch", trust: 0.6, url: "https://www.cnvd.org.cn/patchinfo/show/103840", }, { title: "Intel NUC Suite SMM Privilege Escalation Vulnerability Patch", trust: 0.6, url: "https://www.cnvd.org.cn/patchinfo/show/103860", }, { title: "IntelSPIWriteProtection local security bypass vulnerability patch", trust: 0.6, url: "https://www.cnvd.org.cn/patchinfo/show/103862", }, { title: "Intel NUC Suite Password Bypass Vulnerability Patch", trust: 0.6, url: "https://www.cnvd.org.cn/patchinfo/show/103866", }, { title: "Multiple Intel Product security vulnerabilities", trust: 0.6, url: "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=75311", }, ], sources: [ { db: "CNVD", id: "CNVD-2017-30427", }, { db: "CNVD", id: "CNVD-2017-30486", }, { db: "CNVD", id: "CNVD-2017-30485", }, { db: "CNVD", id: "CNVD-2017-30481", }, { db: "JVNDB", id: "JVNDB-2017-009420", }, { db: "CNNVD", id: "CNNVD-201710-119", }, ], }, problemtype_data: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { problemtype: "CWE-522", trust: 1.1, }, { problemtype: "CWE-255", trust: 0.9, }, ], sources: [ { db: "VULHUB", id: "VHN-113903", }, { db: "JVNDB", id: "JVNDB-2017-009420", }, { db: "NVD", id: "CVE-2017-5700", }, ], }, references: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/references#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { trust: 3.2, url: "https://nvd.nist.gov/vuln/detail/cve-2017-5700", }, { trust: 1.9, url: "https://security-center.intel.com/advisory.aspx?intelid=intel-sa-00084&languageid=en-fr", }, { trust: 1.7, url: "http://www.securityfocus.com/bid/101241", }, { trust: 0.8, url: "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-5700", }, { trust: 0.3, url: "http://www.intel.com/content/www/us/en/homepage.html", }, { trust: 0.1, url: "https://security-center.intel.com/advisory.aspx?intelid=intel-sa-00084&languageid=en-fr", }, ], sources: [ { db: "CNVD", id: "CNVD-2017-30427", }, { db: "CNVD", id: "CNVD-2017-30486", }, { db: "CNVD", id: "CNVD-2017-30485", }, { db: "CNVD", id: "CNVD-2017-30481", }, { db: "VULHUB", id: "VHN-113903", }, { db: "BID", id: "101241", }, { db: "JVNDB", id: "JVNDB-2017-009420", }, { db: "NVD", id: "CVE-2017-5700", }, { db: "CNNVD", id: "CNNVD-201710-119", }, ], }, sources: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", data: { "@container": "@list", }, }, data: [ { db: "CNVD", id: "CNVD-2017-30427", }, { db: "CNVD", id: "CNVD-2017-30486", }, { db: "CNVD", id: "CNVD-2017-30485", }, { db: "CNVD", id: "CNVD-2017-30481", }, { db: "VULHUB", id: "VHN-113903", }, { db: "BID", id: "101241", }, { db: "JVNDB", id: "JVNDB-2017-009420", }, { db: "NVD", id: "CVE-2017-5700", }, { db: "CNNVD", id: "CNNVD-201710-119", }, ], }, sources_release_date: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#", data: { "@container": "@list", }, }, data: [ { date: "2017-10-17T00:00:00", db: "CNVD", id: "CNVD-2017-30427", }, { date: "2017-10-18T00:00:00", db: "CNVD", id: "CNVD-2017-30486", }, { date: "2017-10-18T00:00:00", db: "CNVD", id: "CNVD-2017-30485", }, { date: "2017-10-18T00:00:00", db: "CNVD", id: "CNVD-2017-30481", }, { date: "2017-10-11T00:00:00", db: "VULHUB", id: "VHN-113903", }, { date: "2017-10-06T00:00:00", db: "BID", id: "101241", }, { date: "2017-11-10T00:00:00", db: "JVNDB", id: "JVNDB-2017-009420", }, { date: "2017-10-11T00:29:00.207000", db: "NVD", id: "CVE-2017-5700", }, { date: "2017-10-11T00:00:00", db: "CNNVD", id: "CNNVD-201710-119", }, ], }, sources_update_date: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#", data: { "@container": "@list", }, }, data: [ { date: "2017-10-17T00:00:00", db: "CNVD", id: "CNVD-2017-30427", }, { date: "2017-10-18T00:00:00", db: "CNVD", id: "CNVD-2017-30486", }, { date: "2017-10-18T00:00:00", db: "CNVD", id: "CNVD-2017-30485", }, { date: "2017-10-18T00:00:00", db: "CNVD", id: "CNVD-2017-30481", }, { date: "2019-10-03T00:00:00", db: "VULHUB", id: "VHN-113903", }, { date: "2017-10-06T00:00:00", db: "BID", id: "101241", }, { date: "2017-11-10T00:00:00", db: "JVNDB", id: "JVNDB-2017-009420", }, { date: "2019-10-03T00:03:26.223000", db: "NVD", id: "CVE-2017-5700", }, { date: "2019-10-23T00:00:00", db: "CNNVD", id: "CNNVD-201710-119", }, ], }, threat_type: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/threat_type#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "local", sources: [ { db: "BID", id: "101241", }, { db: "CNNVD", id: "CNNVD-201710-119", }, ], trust: 0.9, }, title: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/title#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "plural Intel NUC Kit Vulnerabilities related to certificate and password management in product firmware", sources: [ { db: "JVNDB", id: "JVNDB-2017-009420", }, ], trust: 0.8, }, type: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/type#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "trust management problem", sources: [ { db: "CNNVD", id: "CNNVD-201710-119", }, ], trust: 0.6, }, }
var-201710-0957
Vulnerability from variot
Insecure platform configuration in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows an attacker with physical presence to run arbitrary code via unauthorized firmware modification during BIOS Recovery. Intel NUC7i3BNK , NUC7i3BNH , NUC7i5BNK , NUC7i5BNH ,and NUC7i7BNH Vulnerabilities related to authorization, permissions and access control exist in the firmware.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. IntelNUC7i3BNK and other products are CPU (Central Processing Unit) products of Intel Corporation of the United States. IntelSPIWriteProtection has a local security bypass vulnerability that can be exploited by local attackers to bypass certain security restrictions. Intel Bootgaurd is prone to a local security-bypass vulnerability. Other attacks are also possible. Intel NUC7i3BNK, etc. An attacker could exploit this vulnerability to execute arbitrary code. The following products and versions are affected: NUC7i3BNK BN0049 and earlier; NUC7i3BNH BN0049 and earlier; NUC7i5BNK BN0049 and earlier; NUC7i5BNH BN0049 and earlier; NUC7i7BNH BN0049 and earlier
Show details on source website{ "@context": { "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#", affected_products: { "@id": "https://www.variotdbs.pl/ref/affected_products", }, configurations: { "@id": "https://www.variotdbs.pl/ref/configurations", }, credits: { "@id": "https://www.variotdbs.pl/ref/credits", }, cvss: { "@id": "https://www.variotdbs.pl/ref/cvss/", }, description: { "@id": "https://www.variotdbs.pl/ref/description/", }, exploit_availability: { "@id": "https://www.variotdbs.pl/ref/exploit_availability/", }, external_ids: { "@id": "https://www.variotdbs.pl/ref/external_ids/", }, iot: { "@id": "https://www.variotdbs.pl/ref/iot/", }, iot_taxonomy: { "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/", }, patch: { "@id": "https://www.variotdbs.pl/ref/patch/", }, problemtype_data: { "@id": "https://www.variotdbs.pl/ref/problemtype_data/", }, references: { "@id": "https://www.variotdbs.pl/ref/references/", }, sources: { "@id": "https://www.variotdbs.pl/ref/sources/", }, sources_release_date: { "@id": "https://www.variotdbs.pl/ref/sources_release_date/", }, sources_update_date: { "@id": "https://www.variotdbs.pl/ref/sources_update_date/", }, threat_type: { "@id": "https://www.variotdbs.pl/ref/threat_type/", }, title: { "@id": "https://www.variotdbs.pl/ref/title/", }, type: { "@id": "https://www.variotdbs.pl/ref/type/", }, }, "@id": "https://www.variotdbs.pl/vuln/VAR-201710-0957", affected_products: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/affected_products#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, "@id": "https://www.variotdbs.pl/ref/sources", }, }, data: [ { model: "nuc7i3bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "syskli35.86a.0062", }, { model: "nuc7i3bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "tybyt20h.86a.0015", }, { model: "nuc7i5bnh", scope: "eq", trust: 1.6, vendor: "intel", version: "ccsklm30.86a.0052", }, { model: "nuc7i5bnh", scope: "eq", trust: 1.6, vendor: "intel", version: "ccsklm5v.86a.0052", }, { model: "nuc7i5bnh", scope: "eq", trust: 1.6, vendor: "intel", version: "bnkbl357.86a.0052", }, { model: "nuc7i5bnh", scope: "eq", trust: 1.6, vendor: "intel", version: "ayaplcel.86a.0041", }, { model: "nuc7i3bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "rybdwi35.86a.0366", }, { model: "nuc7i5bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "ccsklm5v.86a.0052", }, { model: "nuc7i5bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "bnkbl357.86a.0052", }, { model: "nuc7i5bnh", scope: "eq", trust: 1.6, vendor: "intel", version: "dnkbli5v.86a.0026", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm5v.86a.0052", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "kyskli70.86a.0050", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "bnkbl357.86a.0052", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "syskli35.86a.0062", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli5v.86a.0026", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "kyskli70.86a.0050", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "ayaplcel.86a.0041", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "ayaplcel.86a.0041", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "syskli35.86a.0062", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "rybdwi35.86a.0366", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli30.86a.0026", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "tybyt20h.86a.0015", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "tybyt20h.86a.0015", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "rybdwi35.86a.0366", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli5v.86a.0026", }, { model: "nuc7i3bnk", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli5v.86a.0026", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm30.86a.0052", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli30.86a.0026", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "kyskli70.86a.0050", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli5v.86a.0026", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm5v.86a.0052", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "bnkbl357.86a.0052", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "syskli35.86a.0062", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "kyskli70.86a.0050", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "syskli35.86a.0062", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "ayaplcel.86a.0041", }, { model: "nuc7i3bnk", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm30.86a.0052", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "rybdwi35.86a.0366", }, { model: "nuc7i3bnk", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli30.86a.0026", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "tybyt20h.86a.0015", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm30.86a.0052", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm30.86a.0052", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli30.86a.0026", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "rybdwi35.86a.0366", }, { model: "nuc7i3bnk", scope: "eq", trust: 1, vendor: "intel", version: "bnkbl357.86a.0052", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "tybyt20h.86a.0015", }, { model: "nuc7i3bnk", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm5v.86a.0052", }, { model: "nuc7i3bnk", scope: "eq", trust: 1, vendor: "intel", version: "kyskli70.86a.0050", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli30.86a.0026", }, { model: "nuc7i3bnk", scope: "eq", trust: 1, vendor: "intel", version: "ayaplcel.86a.0041", }, { model: "nuc kit nuc7i3bnh", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc kit nuc7i3bnk", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc kit nuc7i5bnh", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc kit nuc7i5bnk", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc kit nuc7i7bnh", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc7i5bnk", scope: null, trust: 0.6, vendor: "intel", version: null, }, { model: "nuc7i5bnh", scope: null, trust: 0.6, vendor: "intel", version: null, }, { model: "nuc7i3bnk", scope: null, trust: 0.6, vendor: "intel", version: null, }, { model: "nuc7i3bnh", scope: null, trust: 0.6, vendor: "intel", version: null, }, { model: "bn0049", scope: null, trust: 0.6, vendor: "intel", version: null, }, { model: "nuc7i7bnh", scope: null, trust: 0.6, vendor: "intel", version: null, }, { model: "nuc7i7bnh", scope: "eq", trust: 0.3, vendor: "intel", version: "0", }, { model: "nuc7i5bnk", scope: "eq", trust: 0.3, vendor: "intel", version: "0", }, { model: "nuc7i5bnh", scope: "eq", trust: 0.3, vendor: "intel", version: "0", }, { model: "nuc7i3bnk", scope: "eq", trust: 0.3, vendor: "intel", version: "0", }, { model: "nuc7i3bnh", scope: "eq", trust: 0.3, vendor: "intel", version: "0", }, { model: "bn0049", scope: "eq", trust: 0.3, vendor: "intel", version: "0", }, ], sources: [ { db: "CNVD", id: "CNVD-2017-30485", }, { db: "BID", id: "101257", }, { db: "JVNDB", id: "JVNDB-2017-009421", }, { db: "NVD", id: "CVE-2017-5701", }, { db: "CNNVD", id: "CNNVD-201710-118", }, ], }, configurations: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/configurations#", children: { "@container": "@list", }, cpe_match: { "@container": "@list", }, data: { "@container": "@list", }, nodes: { "@container": "@list", }, }, data: [ { CVE_data_version: "4.0", nodes: [ { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i7bnh:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i5bnh:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i5bnk:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i3bnh:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i3bnk:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, ], }, ], sources: [ { db: "NVD", id: "CVE-2017-5701", }, ], }, credits: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/credits#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "Nikolaj Schlej.", sources: [ { db: "BID", id: "101257", }, ], trust: 0.3, }, cve: "CVE-2017-5701", cvss: { "@context": { cvssV2: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#", }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2", }, cvssV3: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#", }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/", }, severity: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/cvss/severity#", }, "@id": "https://www.variotdbs.pl/ref/cvss/severity", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, "@id": "https://www.variotdbs.pl/ref/sources", }, }, data: [ { cvssV2: [ { acInsufInfo: false, accessComplexity: "MEDIUM", accessVector: "LOCAL", authentication: "NONE", author: "NVD", availabilityImpact: "PARTIAL", baseScore: 4.4, confidentialityImpact: "PARTIAL", exploitabilityScore: 3.4, impactScore: 6.4, integrityImpact: "PARTIAL", obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, severity: "MEDIUM", trust: 1, userInteractionRequired: false, vectorString: "AV:L/AC:M/Au:N/C:P/I:P/A:P", version: "2.0", }, { acInsufInfo: null, accessComplexity: "Medium", accessVector: "Local", authentication: "None", author: "NVD", availabilityImpact: "Partial", baseScore: 4.4, confidentialityImpact: "Partial", exploitabilityScore: null, id: "CVE-2017-5701", impactScore: null, integrityImpact: "Partial", obtainAllPrivilege: null, obtainOtherPrivilege: null, obtainUserPrivilege: null, severity: "Medium", trust: 0.8, userInteractionRequired: null, vectorString: "AV:L/AC:M/Au:N/C:P/I:P/A:P", version: "2.0", }, { accessComplexity: "MEDIUM", accessVector: "LOCAL", authentication: "NONE", author: "CNVD", availabilityImpact: "PARTIAL", baseScore: 4.4, confidentialityImpact: "PARTIAL", exploitabilityScore: 3.4, id: "CNVD-2017-30485", impactScore: 6.4, integrityImpact: "PARTIAL", severity: "MEDIUM", trust: 0.6, vectorString: "AV:L/AC:M/Au:N/C:P/I:P/A:P", version: "2.0", }, { accessComplexity: "MEDIUM", accessVector: "LOCAL", authentication: "NONE", author: "VULHUB", availabilityImpact: "PARTIAL", baseScore: 4.4, confidentialityImpact: "PARTIAL", exploitabilityScore: 3.4, id: "VHN-113904", impactScore: 6.4, integrityImpact: "PARTIAL", severity: "MEDIUM", trust: 0.1, vectorString: "AV:L/AC:M/AU:N/C:P/I:P/A:P", version: "2.0", }, ], cvssV3: [ { attackComplexity: "HIGH", attackVector: "PHYSICAL", author: "NVD", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", exploitabilityScore: 0.5, impactScore: 6, integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "CHANGED", trust: 1, userInteraction: "NONE", vectorString: "CVSS:3.0/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H", version: "3.0", }, { attackComplexity: "High", attackVector: "Physical", author: "NVD", availabilityImpact: "High", baseScore: 7.1, baseSeverity: "High", confidentialityImpact: "High", exploitabilityScore: null, id: "CVE-2017-5701", impactScore: null, integrityImpact: "High", privilegesRequired: "None", scope: "Changed", trust: 0.8, userInteraction: "None", vectorString: "CVSS:3.0/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H", version: "3.0", }, ], severity: [ { author: "NVD", id: "CVE-2017-5701", trust: 1.8, value: "HIGH", }, { author: "CNVD", id: "CNVD-2017-30485", trust: 0.6, value: "MEDIUM", }, { author: "CNNVD", id: "CNNVD-201710-118", trust: 0.6, value: "HIGH", }, { author: "VULHUB", id: "VHN-113904", trust: 0.1, value: "MEDIUM", }, ], }, ], sources: [ { db: "CNVD", id: "CNVD-2017-30485", }, { db: "VULHUB", id: "VHN-113904", }, { db: "JVNDB", id: "JVNDB-2017-009421", }, { db: "NVD", id: "CVE-2017-5701", }, { db: "CNNVD", id: "CNNVD-201710-118", }, ], }, description: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/description#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "Insecure platform configuration in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows an attacker with physical presence to run arbitrary code via unauthorized firmware modification during BIOS Recovery. Intel NUC7i3BNK , NUC7i3BNH , NUC7i5BNK , NUC7i5BNH ,and NUC7i7BNH Vulnerabilities related to authorization, permissions and access control exist in the firmware.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. IntelNUC7i3BNK and other products are CPU (Central Processing Unit) products of Intel Corporation of the United States. IntelSPIWriteProtection has a local security bypass vulnerability that can be exploited by local attackers to bypass certain security restrictions. Intel Bootgaurd is prone to a local security-bypass vulnerability. Other attacks are also possible. Intel NUC7i3BNK, etc. An attacker could exploit this vulnerability to execute arbitrary code. The following products and versions are affected: NUC7i3BNK BN0049 and earlier; NUC7i3BNH BN0049 and earlier; NUC7i5BNK BN0049 and earlier; NUC7i5BNH BN0049 and earlier; NUC7i7BNH BN0049 and earlier", sources: [ { db: "NVD", id: "CVE-2017-5701", }, { db: "JVNDB", id: "JVNDB-2017-009421", }, { db: "CNVD", id: "CNVD-2017-30485", }, { db: "BID", id: "101257", }, { db: "VULHUB", id: "VHN-113904", }, ], trust: 2.52, }, external_ids: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/external_ids#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { db: "NVD", id: "CVE-2017-5701", trust: 3.4, }, { db: "BID", id: "101257", trust: 2.6, }, { db: "JVNDB", id: "JVNDB-2017-009421", trust: 0.8, }, { db: "CNNVD", id: "CNNVD-201710-118", trust: 0.7, }, { db: "CNVD", id: "CNVD-2017-30485", trust: 0.6, }, { db: "VULHUB", id: "VHN-113904", trust: 0.1, }, ], sources: [ { db: "CNVD", id: "CNVD-2017-30485", }, { db: "VULHUB", id: "VHN-113904", }, { db: "BID", id: "101257", }, { db: "JVNDB", id: "JVNDB-2017-009421", }, { db: "NVD", id: "CVE-2017-5701", }, { db: "CNNVD", id: "CNNVD-201710-118", }, ], }, id: "VAR-201710-0957", iot: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: true, sources: [ { db: "CNVD", id: "CNVD-2017-30485", }, { db: "VULHUB", id: "VHN-113904", }, ], trust: 1.2908091914285715, }, iot_taxonomy: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { category: [ "Network device", ], sub_category: null, trust: 0.6, }, ], sources: [ { db: "CNVD", id: "CNVD-2017-30485", }, ], }, last_update_date: "2023-12-18T12:37:10.132000Z", patch: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/patch#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { title: "INTEL-SA-00084", trust: 0.8, url: "https://security-center.intel.com/advisory.aspx?intelid=intel-sa-00084&languageid=en-fr", }, { title: "IntelSPIWriteProtection local security bypass vulnerability patch", trust: 0.6, url: "https://www.cnvd.org.cn/patchinfo/show/103862", }, { title: "Multiple Intel Product security vulnerabilities", trust: 0.6, url: "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=75310", }, ], sources: [ { db: "CNVD", id: "CNVD-2017-30485", }, { db: "JVNDB", id: "JVNDB-2017-009421", }, { db: "CNNVD", id: "CNNVD-201710-118", }, ], }, problemtype_data: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { problemtype: "NVD-CWE-noinfo", trust: 1, }, { problemtype: "CWE-264", trust: 0.9, }, ], sources: [ { db: "VULHUB", id: "VHN-113904", }, { db: "JVNDB", id: "JVNDB-2017-009421", }, { db: "NVD", id: "CVE-2017-5701", }, ], }, references: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/references#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { trust: 1.7, url: "http://www.securityfocus.com/bid/101257", }, { trust: 1.6, url: "https://security-center.intel.com/advisory.aspx?intelid=intel-sa-00084&languageid=en-fr", }, { trust: 0.8, url: "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-5701", }, { trust: 0.8, url: "https://nvd.nist.gov/vuln/detail/cve-2017-5701", }, { trust: 0.6, url: "https://nvd.nist.gov/vuln/detail/cve-2017-5700", }, { trust: 0.3, url: "http://www.intel.com/", }, { trust: 0.3, url: "https://security-center.intel.com/advisory.aspx?intelid=intel-sa-00084", }, { trust: 0.1, url: "https://security-center.intel.com/advisory.aspx?intelid=intel-sa-00084&languageid=en-fr", }, ], sources: [ { db: "CNVD", id: "CNVD-2017-30485", }, { db: "VULHUB", id: "VHN-113904", }, { db: "BID", id: "101257", }, { db: "JVNDB", id: "JVNDB-2017-009421", }, { db: "NVD", id: "CVE-2017-5701", }, { db: "CNNVD", id: "CNNVD-201710-118", }, ], }, sources: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", data: { "@container": "@list", }, }, data: [ { db: "CNVD", id: "CNVD-2017-30485", }, { db: "VULHUB", id: "VHN-113904", }, { db: "BID", id: "101257", }, { db: "JVNDB", id: "JVNDB-2017-009421", }, { db: "NVD", id: "CVE-2017-5701", }, { db: "CNNVD", id: "CNNVD-201710-118", }, ], }, sources_release_date: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#", data: { "@container": "@list", }, }, data: [ { date: "2017-10-18T00:00:00", db: "CNVD", id: "CNVD-2017-30485", }, { date: "2017-10-11T00:00:00", db: "VULHUB", id: "VHN-113904", }, { date: "2017-10-06T00:00:00", db: "BID", id: "101257", }, { date: "2017-11-10T00:00:00", db: "JVNDB", id: "JVNDB-2017-009421", }, { date: "2017-10-11T00:29:00.270000", db: "NVD", id: "CVE-2017-5701", }, { date: "2017-10-11T00:00:00", db: "CNNVD", id: "CNNVD-201710-118", }, ], }, sources_update_date: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#", data: { "@container": "@list", }, }, data: [ { date: "2017-10-18T00:00:00", db: "CNVD", id: "CNVD-2017-30485", }, { date: "2019-10-03T00:00:00", db: "VULHUB", id: "VHN-113904", }, { date: "2017-10-06T00:00:00", db: "BID", id: "101257", }, { date: "2017-11-10T00:00:00", db: "JVNDB", id: "JVNDB-2017-009421", }, { date: "2019-10-03T00:03:26.223000", db: "NVD", id: "CVE-2017-5701", }, { date: "2019-10-23T00:00:00", db: "CNNVD", id: "CNNVD-201710-118", }, ], }, threat_type: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/threat_type#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "local", sources: [ { db: "BID", id: "101257", }, { db: "CNNVD", id: "CNNVD-201710-118", }, ], trust: 0.9, }, title: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/title#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "plural Intel NUC Kit Vulnerabilities related to authorization, authority, and access control in product firmware", sources: [ { db: "JVNDB", id: "JVNDB-2017-009421", }, ], trust: 0.8, }, type: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/type#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "permissions and access control issues", sources: [ { db: "CNNVD", id: "CNNVD-201710-118", }, ], trust: 0.6, }, }
var-202008-1142
Vulnerability from variot
Improper input validation in the firmware for Intel(R) NUCs may allow a privileged user to potentially enable escalation of privilege via local access. Intel(R) NUC There is an input verification vulnerability in.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be put into a state
Show details on source website{ "@context": { "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#", affected_products: { "@id": "https://www.variotdbs.pl/ref/affected_products", }, configurations: { "@id": "https://www.variotdbs.pl/ref/configurations", }, credits: { "@id": "https://www.variotdbs.pl/ref/credits", }, cvss: { "@id": "https://www.variotdbs.pl/ref/cvss/", }, description: { "@id": "https://www.variotdbs.pl/ref/description/", }, exploit_availability: { "@id": "https://www.variotdbs.pl/ref/exploit_availability/", }, external_ids: { "@id": "https://www.variotdbs.pl/ref/external_ids/", }, iot: { "@id": "https://www.variotdbs.pl/ref/iot/", }, iot_taxonomy: { "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/", }, patch: { "@id": "https://www.variotdbs.pl/ref/patch/", }, problemtype_data: { "@id": "https://www.variotdbs.pl/ref/problemtype_data/", }, references: { "@id": "https://www.variotdbs.pl/ref/references/", }, sources: { "@id": "https://www.variotdbs.pl/ref/sources/", }, sources_release_date: { "@id": "https://www.variotdbs.pl/ref/sources_release_date/", }, sources_update_date: { "@id": "https://www.variotdbs.pl/ref/sources_update_date/", }, threat_type: { "@id": "https://www.variotdbs.pl/ref/threat_type/", }, title: { "@id": "https://www.variotdbs.pl/ref/title/", }, type: { "@id": "https://www.variotdbs.pl/ref/type/", }, }, "@id": "https://www.variotdbs.pl/vuln/VAR-202008-1142", affected_products: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/affected_products#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, "@id": "https://www.variotdbs.pl/ref/sources", }, }, data: [ { model: "nuc8i5bek", scope: "lt", trust: 1, vendor: "intel", version: "becfl357.86a", }, { model: "nuc7i3dnktc", scope: "lt", trust: 1, vendor: "intel", version: "dnkbli30.86a", }, { model: "nuc7i5bnhx1", scope: "lt", trust: 1, vendor: "intel", version: "bnkbl357.86a", }, { model: "nuc5i5ryhs", scope: "lt", trust: 1, vendor: "intel", version: "pybswcel.86a", }, { model: "nuc8i3beh", scope: "lt", trust: 1, vendor: "intel", version: "becfl357.86a", }, { model: "nuc8i7bekqa", scope: "lt", trust: 1, vendor: "intel", version: "becfl357.86a", }, { model: "nuc7i3dnke", scope: "lt", trust: 1, vendor: "intel", version: "dnkbli30.86a", }, { model: "nuc7pjyh", scope: "lt", trust: 1, vendor: "intel", version: "jyglkcpx.86a", }, { model: "nuc6cays", scope: "lt", trust: 1, vendor: "intel", version: "ayaplcel.86a", }, { model: "nuc7i5dnhe", scope: "lt", trust: 1, vendor: "intel", version: "dnkbli5v.86a", }, { model: "nuc5i5mybe", scope: "lt", trust: 1, vendor: "intel", version: "mybdwi5v.86a", }, { model: "nuc8i3behfa", scope: "lt", trust: 1, vendor: "intel", version: "becfl357.86a", }, { model: "nuc6cayh", scope: "lt", trust: 1, vendor: "intel", version: "ayaplcel.86a", }, { model: "nuc7i5bnhxf", scope: "lt", trust: 1, vendor: "intel", version: "bnkbl357.86a", }, { model: "nuc8i7bek", scope: "lt", trust: 1, vendor: "intel", version: "becfl357.86a", }, { model: "cd1c32gk", scope: "lt", trust: 1, vendor: "intel", version: "gkaplcpx.86a", }, { model: "de3815tybe", scope: "lt", trust: 1, vendor: "intel", version: "tybyt20h.86a", }, { model: "nuc7i7bnh", scope: "lt", trust: 1, vendor: "intel", version: "bnkbl357.86a", }, { model: "nuc7i5bnh", scope: "lt", trust: 1, vendor: "intel", version: "bnkbl357.86a", }, { model: "nuc5i3ryhsn", scope: "lt", trust: 1, vendor: "intel", version: "pybswcel.86a", }, { model: "nuc7i7dnke", scope: "lt", trust: 1, vendor: "intel", version: "dnkbli7v.86a", }, { model: "nuc7i7bnhx1", scope: "lt", trust: 1, vendor: "intel", version: "bnkbl357.86a", }, { model: "de3815tykhe", scope: "lt", trust: 1, vendor: "intel", version: "tybyt20h.86a", }, { model: "nuc7i3bnhxf", scope: "lt", trust: 1, vendor: "intel", version: "bnkbl357.86a", }, { model: "nuc8i7beh", scope: "lt", trust: 1, vendor: "intel", version: "becfl357.86a", }, { model: "nuc8i7hnk", scope: "lt", trust: 1, vendor: "intel", version: "hnkbli70.86a", }, { model: "nuc8i7hvkvaw", scope: "lt", trust: 1, vendor: "intel", version: "hnkbli70.86a", }, { model: "nuc6i7kyk", scope: "lt", trust: 1, vendor: "intel", version: "kyskli70.86a", }, { model: "nuc7i7bnkq", scope: "lt", trust: 1, vendor: "intel", version: "bnkbl357.86a", }, { model: "nuc7i5bnb", scope: "lt", trust: 1, vendor: "intel", version: "bnkbl357.86a", }, { model: "nuc7i3bnhx1", scope: "lt", trust: 1, vendor: "intel", version: "bnkbl357.86a", }, { model: "nuc5i3ryk", scope: "lt", trust: 1, vendor: "intel", version: "pybswcel.86a", }, { model: "nuc5i3mybe", scope: "lt", trust: 1, vendor: "intel", version: "mybdwi5v.86a", }, { model: "nuc5ppyh", scope: "lt", trust: 1, vendor: "intel", version: "pybswcel.86a", }, { model: "nuc7i5bnk", scope: "lt", trust: 1, vendor: "intel", version: "bnkbl357.86a", }, { model: "nuc7i3bnb", scope: "lt", trust: 1, vendor: "intel", version: "bnkbl357.86a", }, { model: "nuc8i3bek", scope: "lt", trust: 1, vendor: "intel", version: "becfl357.86a", }, { model: "nuc7i7bnb", scope: "lt", trust: 1, vendor: "intel", version: "bnkbl357.86a", }, { model: "nuc7i5dnke", scope: "lt", trust: 1, vendor: "intel", version: "dnkbli5v.86a", }, { model: "nuc5i5ryk", scope: "lt", trust: 1, vendor: "intel", version: "pybswcel.86a", }, { model: "nuc7i3dnhe", scope: "lt", trust: 1, vendor: "intel", version: "dnkbli30.86a", }, { model: "nuc8i5bekpa", scope: "lt", trust: 1, vendor: "intel", version: "becfl357.86a", }, { model: "nuc7cjyh", scope: "lt", trust: 1, vendor: "intel", version: "jyglkcpx.86a", }, { model: "nuc5i3ryh", scope: "lt", trust: 1, vendor: "intel", version: "pybswcel.86a", }, { model: "nuc8i5beh", scope: "lt", trust: 1, vendor: "intel", version: "becfl357.86a", }, { model: "nuc7i7dnbe", scope: "lt", trust: 1, vendor: "intel", version: "dnkbli7v.86a", }, { model: "nuc5cpyh", scope: "lt", trust: 1, vendor: "intel", version: "pybswcel.86a", }, { model: "nuc7i5dnbe", scope: "lt", trust: 1, vendor: "intel", version: "dnkbli5v.86a", }, { model: "nuc8i5behs", scope: "lt", trust: 1, vendor: "intel", version: "becfl357.86a", }, { model: "nuc7i5bnkp", scope: "lt", trust: 1, vendor: "intel", version: "bnkbl357.86a", }, { model: "nuc7i3bnk", scope: "lt", trust: 1, vendor: "intel", version: "bnkbl357.86a", }, { model: "nuc8i5behfa", scope: "lt", trust: 1, vendor: "intel", version: "becfl357.86a", }, { model: "nuc8i7hnkqc", scope: "lt", trust: 1, vendor: "intel", version: "hnkbli70.86a", }, { model: "nuc7i3dnhnc", scope: "lt", trust: 1, vendor: "intel", version: "dnkbli30.86a", }, { model: "nuc8i7behga", scope: "lt", trust: 1, vendor: "intel", version: "becfl357.86a", }, { model: "nuc8i3behs", scope: "lt", trust: 1, vendor: "intel", version: "becfl357.86a", }, { model: "de3815tybe", scope: "lt", trust: 1, vendor: "intel", version: "tybyt10h.86a", }, { model: "nuc5i3myhe", scope: "lt", trust: 1, vendor: "intel", version: "mybdwi5v.86a", }, { model: "de3815tykhe", scope: "lt", trust: 1, vendor: "intel", version: "tybyt10h.86a", }, { model: "nuc5i5ryh", scope: "lt", trust: 1, vendor: "intel", version: "pybswcel.86a", }, { model: "nuc5i7ryh", scope: "lt", trust: 1, vendor: "intel", version: "pybswcel.86a", }, { model: "nuc7i5dnkpc", scope: "lt", trust: 1, vendor: "intel", version: "dnkbli5v.86a", }, { model: "nuc7i7dnhe", scope: "lt", trust: 1, vendor: "intel", version: "dnkbli7v.86a", }, { model: "nuc5i5myhe", scope: "lt", trust: 1, vendor: "intel", version: "mybdwi5v.86a", }, { model: "cd1c64gk", scope: "lt", trust: 1, vendor: "intel", version: "gkaplcpx.86a", }, { model: "nuc7cjysal", scope: "lt", trust: 1, vendor: "intel", version: "jyglkcpx.86a", }, { model: "nuc7i7bnhxg", scope: "lt", trust: 1, vendor: "intel", version: "bnkbl357.86a", }, { model: "nuc5i3ryhs", scope: "lt", trust: 1, vendor: "intel", version: "pybswcel.86a", }, { model: "nuc7i3dnbe", scope: "lt", trust: 1, vendor: "intel", version: "dnkbli30.86a", }, { model: "cd1p64gk", scope: "lt", trust: 1, vendor: "intel", version: "gkaplcpx.86a", }, { model: "nuc8i7hvk", scope: "lt", trust: 1, vendor: "intel", version: "hnkbli70.86a", }, { model: "nuc8i7hvkva", scope: "lt", trust: 1, vendor: "intel", version: "hnkbli70.86a", }, { model: "nuc5pgyh", scope: "lt", trust: 1, vendor: "intel", version: "pybswcel.86a", }, { model: "stk2mv64cc", scope: "lt", trust: 1, vendor: "intel", version: "ccsklm5v.86a", }, { model: "nuc7i3bnh", scope: "lt", trust: 1, vendor: "intel", version: "bnkbl357.86a", }, { model: "nuc8i3beh", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc8i3behfa", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc8i3behs", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc8i3bek", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc8i5beh", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc8i5behfa", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc8i5behs", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc8i5bekpa", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc8i7behga", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc8i7bekqa", scope: null, trust: 0.8, vendor: "intel", version: null, }, ], sources: [ { db: "JVNDB", id: "JVNDB-2020-009510", }, { db: "NVD", id: "CVE-2020-8742", }, ], }, configurations: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/configurations#", children: { "@container": "@list", }, cpe_match: { "@container": "@list", }, data: { "@container": "@list", }, nodes: { "@container": "@list", }, }, data: [ { CVE_data_version: "4.0", nodes: [ { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc8i7behga_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "becfl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc8i7behga:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc8i7bekqa_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "becfl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc8i7bekqa:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc8i3behfa_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "becfl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc8i3behfa:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc8i5behfa_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "becfl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc8i5behfa:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc8i5bekpa_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "becfl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc8i5bekpa:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc8i3beh_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "becfl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc8i3beh:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc8i3behs_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "becfl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc8i3behs:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc8i3bek_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "becfl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc8i3bek:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc8i5beh_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "becfl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc8i5beh:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc8i5behs_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "becfl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc8i5behs:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc8i5bek_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "becfl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc8i5bek:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc8i7beh_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "becfl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc8i7beh:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc8i7bek_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "becfl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc8i7bek:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:cd1c32gk_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "gkaplcpx.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:cd1c32gk:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:cd1c64gk_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "gkaplcpx.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:cd1c64gk:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:cd1p64gk_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "gkaplcpx.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:cd1p64gk:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc8i7hnkqc_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "hnkbli70.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc8i7hnkqc:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc8i7hvkva_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "hnkbli70.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc8i7hvkva:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc8i7hvkvaw_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "hnkbli70.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc8i7hvkvaw:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc8i7hnk_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "hnkbli70.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc8i7hnk:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc8i7hvk_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "hnkbli70.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc8i7hvk:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i7dnbe_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "dnkbli7v.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i7dnbe:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i7dnhe_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "dnkbli7v.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i7dnhe:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i7dnke_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "dnkbli7v.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i7dnke:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i5dnkpc_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "dnkbli5v.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i5dnkpc:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i5dnbe_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "dnkbli5v.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i5dnbe:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i5dnhe_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "dnkbli5v.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i5dnhe:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i5dnke_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "dnkbli5v.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i5dnke:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i3dnhnc_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "dnkbli30.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i3dnhnc:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i3dnktc_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "dnkbli30.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i3dnktc:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i3dnbe_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "dnkbli30.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i3dnbe:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i3dnhe_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "dnkbli30.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i3dnhe:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i3dnke_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "dnkbli30.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i3dnke:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:stk2mv64cc_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "ccsklm5v.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:stk2mv64cc:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc6i7kyk_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "kyskli70.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc6i7kyk:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7cjysal_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "jyglkcpx.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7cjysal:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7cjyh_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "jyglkcpx.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7cjyh:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7pjyh_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "jyglkcpx.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7pjyh:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnhxg_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i7bnhxg:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnkq_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i7bnkq:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnhxf_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i3bnhxf:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnhxf_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i5bnhxf:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnkp_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i5bnkp:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnb_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i3bnb:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnb_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i5bnb:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnb_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i7bnb:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i3bnh:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnhx1_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i3bnhx1:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i3bnk:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i5bnh:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnhx1_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i5bnhx1:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i5bnk:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i7bnh:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnhx1_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i7bnhx1:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc6cayh_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "ayaplcel.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc6cayh:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc6cays_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "ayaplcel.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc6cays:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:de3815tybe_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "tybyt20h.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:de3815tybe:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:de3815tykhe_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "tybyt20h.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:de3815tykhe:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:de3815tybe_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "tybyt10h.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:de3815tybe:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:de3815tykhe_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "tybyt10h.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:de3815tykhe:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc5cpyh_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "pybswcel.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc5cpyh:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc5pgyh_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "pybswcel.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc5pgyh:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc5ppyh_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "pybswcel.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc5ppyh:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc5i3ryh_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "pybswcel.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc5i3ryh:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc5i3ryhs_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "pybswcel.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc5i3ryhs:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc5i3ryhsn_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "pybswcel.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc5i3ryhsn:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc5i3ryk_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "pybswcel.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc5i3ryk:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc5i5ryh_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "pybswcel.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc5i5ryh:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc5i5ryhs_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "pybswcel.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc5i5ryhs:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc5i5ryk_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "pybswcel.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc5i5ryk:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc5i7ryh_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "pybswcel.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc5i7ryh:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc5i5mybe_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "mybdwi5v.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc5i5mybe:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc5i5myhe_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "mybdwi5v.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc5i5myhe:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc5i3mybe_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "mybdwi5v.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc5i3mybe:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc5i3myhe_firmware:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "mybdwi5v.86a", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc5i3myhe:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, ], }, ], sources: [ { db: "NVD", id: "CVE-2020-8742", }, ], }, cve: "CVE-2020-8742", cvss: { "@context": { cvssV2: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#", }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2", }, cvssV3: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#", }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/", }, severity: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/cvss/severity#", }, "@id": "https://www.variotdbs.pl/ref/cvss/severity", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, "@id": "https://www.variotdbs.pl/ref/sources", }, }, data: [ { cvssV2: [ { acInsufInfo: false, accessComplexity: "LOW", accessVector: "LOCAL", authentication: "NONE", author: "NVD", availabilityImpact: "PARTIAL", baseScore: 4.6, confidentialityImpact: "PARTIAL", exploitabilityScore: 3.9, impactScore: 6.4, integrityImpact: "PARTIAL", obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, severity: "MEDIUM", trust: 1, userInteractionRequired: false, vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P", version: "2.0", }, { acInsufInfo: null, accessComplexity: "Low", accessVector: "Local", authentication: "None", author: "NVD", availabilityImpact: "Partial", baseScore: 4.6, confidentialityImpact: "Partial", exploitabilityScore: null, id: "JVNDB-2020-009510", impactScore: null, integrityImpact: "Partial", obtainAllPrivilege: null, obtainOtherPrivilege: null, obtainUserPrivilege: null, severity: "Medium", trust: 0.8, userInteractionRequired: null, vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P", version: "2.0", }, ], cvssV3: [ { attackComplexity: "LOW", attackVector: "LOCAL", author: "NVD", availabilityImpact: "HIGH", baseScore: 6.7, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", exploitabilityScore: 0.8, impactScore: 5.9, integrityImpact: "HIGH", privilegesRequired: "HIGH", scope: "UNCHANGED", trust: 1, userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, { attackComplexity: "Low", attackVector: "Local", author: "NVD", availabilityImpact: "High", baseScore: 6.7, baseSeverity: "Medium", confidentialityImpact: "High", exploitabilityScore: null, id: "JVNDB-2020-009510", impactScore: null, integrityImpact: "High", privilegesRequired: "High", scope: "Unchanged", trust: 0.8, userInteraction: "None", vectorString: "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, ], severity: [ { author: "NVD", id: "CVE-2020-8742", trust: 1, value: "MEDIUM", }, { author: "NVD", id: "JVNDB-2020-009510", trust: 0.8, value: "Medium", }, { author: "CNNVD", id: "CNNVD-202008-641", trust: 0.6, value: "MEDIUM", }, ], }, ], sources: [ { db: "JVNDB", id: "JVNDB-2020-009510", }, { db: "NVD", id: "CVE-2020-8742", }, { db: "CNNVD", id: "CNNVD-202008-641", }, ], }, description: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/description#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "Improper input validation in the firmware for Intel(R) NUCs may allow a privileged user to potentially enable escalation of privilege via local access. Intel(R) NUC There is an input verification vulnerability in.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be put into a state", sources: [ { db: "NVD", id: "CVE-2020-8742", }, { db: "JVNDB", id: "JVNDB-2020-009510", }, ], trust: 1.62, }, external_ids: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/external_ids#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { db: "NVD", id: "CVE-2020-8742", trust: 2.4, }, { db: "JVN", id: "JVNVU99606488", trust: 0.8, }, { db: "JVNDB", id: "JVNDB-2020-009510", trust: 0.8, }, { db: "AUSCERT", id: "ESB-2020.2765", trust: 0.6, }, { db: "CNNVD", id: "CNNVD-202008-641", trust: 0.6, }, ], sources: [ { db: "JVNDB", id: "JVNDB-2020-009510", }, { db: "NVD", id: "CVE-2020-8742", }, { db: "CNNVD", id: "CNNVD-202008-641", }, ], }, id: "VAR-202008-1142", iot: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: true, sources: [ { db: "VARIoT devices database", id: null, }, ], trust: 0.560466208, }, last_update_date: "2023-12-18T11:58:03.888000Z", patch: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/patch#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { title: "INTEL-SA-00392", trust: 0.8, url: "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00392.html", }, { title: "Intel NUCs Security vulnerabilities", trust: 0.6, url: "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=126486", }, ], sources: [ { db: "JVNDB", id: "JVNDB-2020-009510", }, { db: "CNNVD", id: "CNNVD-202008-641", }, ], }, problemtype_data: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { problemtype: "CWE-20", trust: 1.8, }, ], sources: [ { db: "JVNDB", id: "JVNDB-2020-009510", }, { db: "NVD", id: "CVE-2020-8742", }, ], }, references: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/references#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { trust: 1.6, url: "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00392.html", }, { trust: 1.4, url: "https://nvd.nist.gov/vuln/detail/cve-2020-8742", }, { trust: 0.8, url: "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2020-8742", }, { trust: 0.8, url: "https://jvn.jp/vu/jvnvu99606488", }, { trust: 0.6, url: "https://www.auscert.org.au/bulletins/esb-2020.2765/", }, ], sources: [ { db: "JVNDB", id: "JVNDB-2020-009510", }, { db: "NVD", id: "CVE-2020-8742", }, { db: "CNNVD", id: "CNNVD-202008-641", }, ], }, sources: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", data: { "@container": "@list", }, }, data: [ { db: "JVNDB", id: "JVNDB-2020-009510", }, { db: "NVD", id: "CVE-2020-8742", }, { db: "CNNVD", id: "CNNVD-202008-641", }, ], }, sources_release_date: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#", data: { "@container": "@list", }, }, data: [ { date: "2020-11-10T07:39:51", db: "JVNDB", id: "JVNDB-2020-009510", }, { date: "2020-08-13T03:15:16.523000", db: "NVD", id: "CVE-2020-8742", }, { date: "2020-08-12T00:00:00", db: "CNNVD", id: "CNNVD-202008-641", }, ], }, sources_update_date: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#", data: { "@container": "@list", }, }, data: [ { date: "2020-11-10T07:39:51", db: "JVNDB", id: "JVNDB-2020-009510", }, { date: "2020-08-19T18:13:36.103000", db: "NVD", id: "CVE-2020-8742", }, { date: "2021-01-05T00:00:00", db: "CNNVD", id: "CNNVD-202008-641", }, ], }, threat_type: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/threat_type#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "local", sources: [ { db: "CNNVD", id: "CNNVD-202008-641", }, ], trust: 0.6, }, title: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/title#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "Intel(R) NUC Input verification vulnerability in", sources: [ { db: "JVNDB", id: "JVNDB-2020-009510", }, ], trust: 0.8, }, type: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/type#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "input validation error", sources: [ { db: "CNNVD", id: "CNNVD-202008-641", }, ], trust: 0.6, }, }
var-201710-0956
Vulnerability from variot
Incorrect policy enforcement in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows attackers with local or physical access to bypass enforcement of integrity protections via manipulation of firmware storage. Intel NUC7i3BNK , NUC7i3BNH , NUC7i5BNK , NUC7i5BNH ,and NUC7i7BNH Vulnerabilities related to authorization, permissions and access control exist in the firmware.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. IntelNUC7i3BNK and other products are CPU (Central Processing Unit) products of Intel Corporation of the United States. IntelBootgaurd has a local security bypass vulnerability that can be exploited by local attackers to bypass certain security restrictions. Intel Bootgaurd is prone to a local security-bypass vulnerability. Other attacks are also possible. Intel NUC7i3BNK, etc. Security vulnerabilities exist in the system firmware of several Intel products. The following products and versions are affected: NUC7i3BNK BN0049 and earlier; NUC7i3BNH BN0049 and earlier; NUC7i5BNK BN0049 and earlier; NUC7i5BNH BN0049 and earlier; NUC7i7BNH BN0049 and earlier
Show details on source website{ "@context": { "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#", affected_products: { "@id": "https://www.variotdbs.pl/ref/affected_products", }, configurations: { "@id": "https://www.variotdbs.pl/ref/configurations", }, credits: { "@id": "https://www.variotdbs.pl/ref/credits", }, cvss: { "@id": "https://www.variotdbs.pl/ref/cvss/", }, description: { "@id": "https://www.variotdbs.pl/ref/description/", }, exploit_availability: { "@id": "https://www.variotdbs.pl/ref/exploit_availability/", }, external_ids: { "@id": "https://www.variotdbs.pl/ref/external_ids/", }, iot: { "@id": "https://www.variotdbs.pl/ref/iot/", }, iot_taxonomy: { "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/", }, patch: { "@id": "https://www.variotdbs.pl/ref/patch/", }, problemtype_data: { "@id": "https://www.variotdbs.pl/ref/problemtype_data/", }, references: { "@id": "https://www.variotdbs.pl/ref/references/", }, sources: { "@id": "https://www.variotdbs.pl/ref/sources/", }, sources_release_date: { "@id": "https://www.variotdbs.pl/ref/sources_release_date/", }, sources_update_date: { "@id": "https://www.variotdbs.pl/ref/sources_update_date/", }, threat_type: { "@id": "https://www.variotdbs.pl/ref/threat_type/", }, title: { "@id": "https://www.variotdbs.pl/ref/title/", }, type: { "@id": "https://www.variotdbs.pl/ref/type/", }, }, "@id": "https://www.variotdbs.pl/vuln/VAR-201710-0956", affected_products: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/affected_products#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, "@id": "https://www.variotdbs.pl/ref/sources", }, }, data: [ { model: "nuc7i3bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "dnkbli5v.86a.0026", }, { model: "nuc7i3bnh", scope: "eq", trust: 1.6, vendor: "intel", version: "ccsklm30.86a.0052", }, { model: "nuc7i3bnh", scope: "eq", trust: 1.6, vendor: "intel", version: "dnkbli30.86a.0026", }, { model: "nuc7i3bnh", scope: "eq", trust: 1.6, vendor: "intel", version: "kyskli70.86a.0050", }, { model: "nuc7i3bnh", scope: "eq", trust: 1.6, vendor: "intel", version: "syskli35.86a.0062", }, { model: "nuc7i3bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "ccsklm30.86a.0052", }, { model: "nuc7i3bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "dnkbli30.86a.0026", }, { model: "nuc7i3bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "bnkbl357.86a.0052", }, { model: "nuc7i3bnh", scope: "eq", trust: 1.6, vendor: "intel", version: "tybyt20h.86a.0015", }, { model: "nuc7i3bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "ayaplcel.86a.0041", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm5v.86a.0052", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "kyskli70.86a.0050", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "bnkbl357.86a.0052", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "syskli35.86a.0062", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli5v.86a.0026", }, { model: "nuc7i3bnk", scope: "eq", trust: 1, vendor: "intel", version: "syskli35.86a.0062", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "kyskli70.86a.0050", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "ayaplcel.86a.0041", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "ayaplcel.86a.0041", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "syskli35.86a.0062", }, { model: "nuc7i3bnk", scope: "eq", trust: 1, vendor: "intel", version: "tybyt20h.86a.0015", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm30.86a.0052", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "rybdwi35.86a.0366", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli30.86a.0026", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "tybyt20h.86a.0015", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "tybyt20h.86a.0015", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm5v.86a.0052", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "bnkbl357.86a.0052", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "rybdwi35.86a.0366", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli5v.86a.0026", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "kyskli70.86a.0050", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli5v.86a.0026", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "ayaplcel.86a.0041", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm5v.86a.0052", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "bnkbl357.86a.0052", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "syskli35.86a.0062", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "ayaplcel.86a.0041", }, { model: "nuc7i3bnk", scope: "eq", trust: 1, vendor: "intel", version: "rybdwi35.86a.0366", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "rybdwi35.86a.0366", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "tybyt20h.86a.0015", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm30.86a.0052", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm30.86a.0052", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli30.86a.0026", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "rybdwi35.86a.0366", }, { model: "nuc7i3bnk", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm5v.86a.0052", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm5v.86a.0052", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "bnkbl357.86a.0052", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli5v.86a.0026", }, { model: "nuc7i3bnk", scope: "eq", trust: 1, vendor: "intel", version: "kyskli70.86a.0050", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli30.86a.0026", }, { model: "nuc kit nuc7i3bnh", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc kit nuc7i3bnk", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc kit nuc7i5bnh", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc kit nuc7i5bnk", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc kit nuc7i7bnh", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc7i7bnh", scope: null, trust: 0.6, vendor: "intel", version: null, }, { model: "nuc7i5bnk", scope: null, trust: 0.6, vendor: "intel", version: null, }, { model: "nuc7i5bnh", scope: null, trust: 0.6, vendor: "intel", version: null, }, { model: "nuc7i3bnk", scope: null, trust: 0.6, vendor: "intel", version: null, }, { model: "nuc7i3bnh", scope: null, trust: 0.6, vendor: "intel", version: null, }, { model: "bn0049", scope: null, trust: 0.6, vendor: "intel", version: null, }, { model: "nuc7i7bnh", scope: "eq", trust: 0.3, vendor: "intel", version: "0", }, { model: "nuc7i5bnk", scope: "eq", trust: 0.3, vendor: "intel", version: "0", }, { model: "nuc7i5bnh", scope: "eq", trust: 0.3, vendor: "intel", version: "0", }, { model: "nuc7i3bnk", scope: "eq", trust: 0.3, vendor: "intel", version: "0", }, { model: "nuc7i3bnh", scope: "eq", trust: 0.3, vendor: "intel", version: "0", }, { model: "bn0049", scope: "eq", trust: 0.3, vendor: "intel", version: "0", }, ], sources: [ { db: "CNVD", id: "CNVD-2017-30427", }, { db: "BID", id: "101236", }, { db: "JVNDB", id: "JVNDB-2017-009423", }, { db: "NVD", id: "CVE-2017-5722", }, { db: "CNNVD", id: "CNNVD-201710-116", }, ], }, configurations: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/configurations#", children: { "@container": "@list", }, cpe_match: { "@container": "@list", }, data: { "@container": "@list", }, nodes: { "@container": "@list", }, }, data: [ { CVE_data_version: "4.0", nodes: [ { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i7bnh:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i5bnh:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i5bnk:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i3bnh:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i3bnk:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, ], }, ], sources: [ { db: "NVD", id: "CVE-2017-5722", }, ], }, credits: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/credits#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "Alex Ermolov of Embedi.", sources: [ { db: "BID", id: "101236", }, ], trust: 0.3, }, cve: "CVE-2017-5722", cvss: { "@context": { cvssV2: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#", }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2", }, cvssV3: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#", }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/", }, severity: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/cvss/severity#", }, "@id": "https://www.variotdbs.pl/ref/cvss/severity", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, "@id": "https://www.variotdbs.pl/ref/sources", }, }, data: [ { cvssV2: [ { acInsufInfo: false, accessComplexity: "MEDIUM", accessVector: "LOCAL", authentication: "NONE", author: "NVD", availabilityImpact: "PARTIAL", baseScore: 4.4, confidentialityImpact: "PARTIAL", exploitabilityScore: 3.4, impactScore: 6.4, integrityImpact: "PARTIAL", obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, severity: "MEDIUM", trust: 1, userInteractionRequired: false, vectorString: "AV:L/AC:M/Au:N/C:P/I:P/A:P", version: "2.0", }, { acInsufInfo: null, accessComplexity: "Medium", accessVector: "Local", authentication: "None", author: "NVD", availabilityImpact: "Partial", baseScore: 4.4, confidentialityImpact: "Partial", exploitabilityScore: null, id: "CVE-2017-5722", impactScore: null, integrityImpact: "Partial", obtainAllPrivilege: null, obtainOtherPrivilege: null, obtainUserPrivilege: null, severity: "Medium", trust: 0.8, userInteractionRequired: null, vectorString: "AV:L/AC:M/Au:N/C:P/I:P/A:P", version: "2.0", }, { accessComplexity: "MEDIUM", accessVector: "LOCAL", authentication: "NONE", author: "CNVD", availabilityImpact: "PARTIAL", baseScore: 4.4, confidentialityImpact: "PARTIAL", exploitabilityScore: 3.4, id: "CNVD-2017-30427", impactScore: 6.4, integrityImpact: "PARTIAL", severity: "MEDIUM", trust: 0.6, vectorString: "AV:L/AC:M/Au:N/C:P/I:P/A:P", version: "2.0", }, { accessComplexity: "MEDIUM", accessVector: "LOCAL", authentication: "NONE", author: "VULHUB", availabilityImpact: "PARTIAL", baseScore: 4.4, confidentialityImpact: "PARTIAL", exploitabilityScore: 3.4, id: "VHN-113925", impactScore: 6.4, integrityImpact: "PARTIAL", severity: "MEDIUM", trust: 0.1, vectorString: "AV:L/AC:M/AU:N/C:P/I:P/A:P", version: "2.0", }, ], cvssV3: [ { attackComplexity: "HIGH", attackVector: "LOCAL", author: "NVD", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "HIGH", exploitabilityScore: 0.8, impactScore: 6, integrityImpact: "HIGH", privilegesRequired: "HIGH", scope: "CHANGED", trust: 1, userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", version: "3.0", }, { attackComplexity: "High", attackVector: "Local", author: "NVD", availabilityImpact: "High", baseScore: 7.5, baseSeverity: "High", confidentialityImpact: "High", exploitabilityScore: null, id: "CVE-2017-5722", impactScore: null, integrityImpact: "High", privilegesRequired: "High", scope: "Changed", trust: 0.8, userInteraction: "None", vectorString: "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", version: "3.0", }, ], severity: [ { author: "NVD", id: "CVE-2017-5722", trust: 1.8, value: "HIGH", }, { author: "CNVD", id: "CNVD-2017-30427", trust: 0.6, value: "MEDIUM", }, { author: "CNNVD", id: "CNNVD-201710-116", trust: 0.6, value: "HIGH", }, { author: "VULHUB", id: "VHN-113925", trust: 0.1, value: "MEDIUM", }, ], }, ], sources: [ { db: "CNVD", id: "CNVD-2017-30427", }, { db: "VULHUB", id: "VHN-113925", }, { db: "JVNDB", id: "JVNDB-2017-009423", }, { db: "NVD", id: "CVE-2017-5722", }, { db: "CNNVD", id: "CNNVD-201710-116", }, ], }, description: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/description#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "Incorrect policy enforcement in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows attackers with local or physical access to bypass enforcement of integrity protections via manipulation of firmware storage. Intel NUC7i3BNK , NUC7i3BNH , NUC7i5BNK , NUC7i5BNH ,and NUC7i7BNH Vulnerabilities related to authorization, permissions and access control exist in the firmware.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. IntelNUC7i3BNK and other products are CPU (Central Processing Unit) products of Intel Corporation of the United States. IntelBootgaurd has a local security bypass vulnerability that can be exploited by local attackers to bypass certain security restrictions. Intel Bootgaurd is prone to a local security-bypass vulnerability. Other attacks are also possible. Intel NUC7i3BNK, etc. Security vulnerabilities exist in the system firmware of several Intel products. The following products and versions are affected: NUC7i3BNK BN0049 and earlier; NUC7i3BNH BN0049 and earlier; NUC7i5BNK BN0049 and earlier; NUC7i5BNH BN0049 and earlier; NUC7i7BNH BN0049 and earlier", sources: [ { db: "NVD", id: "CVE-2017-5722", }, { db: "JVNDB", id: "JVNDB-2017-009423", }, { db: "CNVD", id: "CNVD-2017-30427", }, { db: "BID", id: "101236", }, { db: "VULHUB", id: "VHN-113925", }, ], trust: 2.52, }, external_ids: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/external_ids#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { db: "NVD", id: "CVE-2017-5722", trust: 3.4, }, { db: "BID", id: "101236", trust: 2.6, }, { db: "JVNDB", id: "JVNDB-2017-009423", trust: 0.8, }, { db: "CNNVD", id: "CNNVD-201710-116", trust: 0.7, }, { db: "CNVD", id: "CNVD-2017-30427", trust: 0.6, }, { db: "VULHUB", id: "VHN-113925", trust: 0.1, }, ], sources: [ { db: "CNVD", id: "CNVD-2017-30427", }, { db: "VULHUB", id: "VHN-113925", }, { db: "BID", id: "101236", }, { db: "JVNDB", id: "JVNDB-2017-009423", }, { db: "NVD", id: "CVE-2017-5722", }, { db: "CNNVD", id: "CNNVD-201710-116", }, ], }, id: "VAR-201710-0956", iot: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: true, sources: [ { db: "CNVD", id: "CNVD-2017-30427", }, { db: "VULHUB", id: "VHN-113925", }, ], trust: 1.2908091914285715, }, iot_taxonomy: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { category: [ "Network device", ], sub_category: null, trust: 0.6, }, ], sources: [ { db: "CNVD", id: "CNVD-2017-30427", }, ], }, last_update_date: "2023-12-18T12:37:10.049000Z", patch: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/patch#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { title: "INTEL-SA-00084", trust: 0.8, url: "https://security-center.intel.com/advisory.aspx?intelid=intel-sa-00084&languageid=en-fr", }, { title: "IntelBootgaurd local security bypass vulnerability patch", trust: 0.6, url: "https://www.cnvd.org.cn/patchinfo/show/103840", }, { title: "Multiple Intel Product security vulnerabilities", trust: 0.6, url: "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=75308", }, ], sources: [ { db: "CNVD", id: "CNVD-2017-30427", }, { db: "JVNDB", id: "JVNDB-2017-009423", }, { db: "CNNVD", id: "CNNVD-201710-116", }, ], }, problemtype_data: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { problemtype: "CWE-269", trust: 1.1, }, { problemtype: "CWE-264", trust: 0.9, }, ], sources: [ { db: "VULHUB", id: "VHN-113925", }, { db: "JVNDB", id: "JVNDB-2017-009423", }, { db: "NVD", id: "CVE-2017-5722", }, ], }, references: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/references#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { trust: 1.7, url: "http://www.securityfocus.com/bid/101236", }, { trust: 1.6, url: "https://security-center.intel.com/advisory.aspx?intelid=intel-sa-00084&languageid=en-fr", }, { trust: 0.8, url: "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-5722", }, { trust: 0.8, url: "https://nvd.nist.gov/vuln/detail/cve-2017-5722", }, { trust: 0.6, url: "https://nvd.nist.gov/vuln/detail/cve-2017-5700", }, { trust: 0.3, url: "http://www.intel.com/", }, { trust: 0.3, url: "https://security-center.intel.com/advisory.aspx?intelid=intel-sa-00084", }, { trust: 0.1, url: "https://security-center.intel.com/advisory.aspx?intelid=intel-sa-00084&languageid=en-fr", }, ], sources: [ { db: "CNVD", id: "CNVD-2017-30427", }, { db: "VULHUB", id: "VHN-113925", }, { db: "BID", id: "101236", }, { db: "JVNDB", id: "JVNDB-2017-009423", }, { db: "NVD", id: "CVE-2017-5722", }, { db: "CNNVD", id: "CNNVD-201710-116", }, ], }, sources: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", data: { "@container": "@list", }, }, data: [ { db: "CNVD", id: "CNVD-2017-30427", }, { db: "VULHUB", id: "VHN-113925", }, { db: "BID", id: "101236", }, { db: "JVNDB", id: "JVNDB-2017-009423", }, { db: "NVD", id: "CVE-2017-5722", }, { db: "CNNVD", id: "CNNVD-201710-116", }, ], }, sources_release_date: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#", data: { "@container": "@list", }, }, data: [ { date: "2017-10-17T00:00:00", db: "CNVD", id: "CNVD-2017-30427", }, { date: "2017-10-11T00:00:00", db: "VULHUB", id: "VHN-113925", }, { date: "2017-10-10T00:00:00", db: "BID", id: "101236", }, { date: "2017-11-10T00:00:00", db: "JVNDB", id: "JVNDB-2017-009423", }, { date: "2017-10-11T00:29:00.333000", db: "NVD", id: "CVE-2017-5722", }, { date: "2017-10-11T00:00:00", db: "CNNVD", id: "CNNVD-201710-116", }, ], }, sources_update_date: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#", data: { "@container": "@list", }, }, data: [ { date: "2017-10-17T00:00:00", db: "CNVD", id: "CNVD-2017-30427", }, { date: "2019-10-03T00:00:00", db: "VULHUB", id: "VHN-113925", }, { date: "2017-10-10T00:00:00", db: "BID", id: "101236", }, { date: "2017-11-10T00:00:00", db: "JVNDB", id: "JVNDB-2017-009423", }, { date: "2019-10-03T00:03:26.223000", db: "NVD", id: "CVE-2017-5722", }, { date: "2019-10-23T00:00:00", db: "CNNVD", id: "CNNVD-201710-116", }, ], }, threat_type: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/threat_type#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "local", sources: [ { db: "BID", id: "101236", }, { db: "CNNVD", id: "CNNVD-201710-116", }, ], trust: 0.9, }, title: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/title#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "plural Intel NUC Kit Vulnerabilities related to authorization, authority, and access control in product firmware", sources: [ { db: "JVNDB", id: "JVNDB-2017-009423", }, ], trust: 0.8, }, type: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/type#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "permissions and access control issues", sources: [ { db: "CNNVD", id: "CNNVD-201710-116", }, ], trust: 0.6, }, }
var-201710-0955
Vulnerability from variot
Insufficient input validation in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows local attackers to execute arbitrary code via manipulation of memory. Intel NUC7i3BNK , NUC7i3BNH , NUC7i5BNK , NUC7i5BNH ,and NUC7i7BNH Contains an input validation vulnerability.Information is acquired, information is falsified, and denial of service (DoS) May be in a state. IntelNUC7i3BNK and other products are CPU (Central Processing Unit) products of Intel Corporation of the United States. An attacker could exploit the vulnerability to exploit arbitrary code by manipulating memory. Intel NUC7i3BNK, etc. The following products and versions are affected: NUC7i3BNK BN0049 and earlier; NUC7i3BNH BN0049 and earlier; NUC7i5BNK BN0049 and earlier; NUC7i5BNH BN0049 and earlier; NUC7i7BNH BN0049 and earlier
Show details on source website{ "@context": { "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#", affected_products: { "@id": "https://www.variotdbs.pl/ref/affected_products", }, configurations: { "@id": "https://www.variotdbs.pl/ref/configurations", }, credits: { "@id": "https://www.variotdbs.pl/ref/credits", }, cvss: { "@id": "https://www.variotdbs.pl/ref/cvss/", }, description: { "@id": "https://www.variotdbs.pl/ref/description/", }, exploit_availability: { "@id": "https://www.variotdbs.pl/ref/exploit_availability/", }, external_ids: { "@id": "https://www.variotdbs.pl/ref/external_ids/", }, iot: { "@id": "https://www.variotdbs.pl/ref/iot/", }, iot_taxonomy: { "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/", }, patch: { "@id": "https://www.variotdbs.pl/ref/patch/", }, problemtype_data: { "@id": "https://www.variotdbs.pl/ref/problemtype_data/", }, references: { "@id": "https://www.variotdbs.pl/ref/references/", }, sources: { "@id": "https://www.variotdbs.pl/ref/sources/", }, sources_release_date: { "@id": "https://www.variotdbs.pl/ref/sources_release_date/", }, sources_update_date: { "@id": "https://www.variotdbs.pl/ref/sources_update_date/", }, threat_type: { "@id": "https://www.variotdbs.pl/ref/threat_type/", }, title: { "@id": "https://www.variotdbs.pl/ref/title/", }, type: { "@id": "https://www.variotdbs.pl/ref/type/", }, }, "@id": "https://www.variotdbs.pl/vuln/VAR-201710-0955", affected_products: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/affected_products#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, "@id": "https://www.variotdbs.pl/ref/sources", }, }, data: [ { model: "nuc7i3bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "syskli35.86a.0062", }, { model: "nuc7i3bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "tybyt20h.86a.0015", }, { model: "nuc7i3bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "dnkbli5v.86a.0026", }, { model: "nuc7i3bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "ccsklm30.86a.0052", }, { model: "nuc7i3bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "rybdwi35.86a.0366", }, { model: "nuc7i3bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "dnkbli30.86a.0026", }, { model: "nuc7i3bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "bnkbl357.86a.0052", }, { model: "nuc7i3bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "ccsklm5v.86a.0052", }, { model: "nuc7i3bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "kyskli70.86a.0050", }, { model: "nuc7i3bnk", scope: "eq", trust: 1.6, vendor: "intel", version: "ayaplcel.86a.0041", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm5v.86a.0052", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "kyskli70.86a.0050", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "bnkbl357.86a.0052", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "syskli35.86a.0062", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli5v.86a.0026", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "kyskli70.86a.0050", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "ayaplcel.86a.0041", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "ayaplcel.86a.0041", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "syskli35.86a.0062", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm30.86a.0052", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "rybdwi35.86a.0366", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli30.86a.0026", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "tybyt20h.86a.0015", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "tybyt20h.86a.0015", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm5v.86a.0052", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "bnkbl357.86a.0052", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "rybdwi35.86a.0366", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli5v.86a.0026", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm30.86a.0052", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli30.86a.0026", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "kyskli70.86a.0050", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli5v.86a.0026", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "ayaplcel.86a.0041", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm5v.86a.0052", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "bnkbl357.86a.0052", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "syskli35.86a.0062", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "kyskli70.86a.0050", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "syskli35.86a.0062", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "ayaplcel.86a.0041", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "rybdwi35.86a.0366", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "tybyt20h.86a.0015", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm30.86a.0052", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm30.86a.0052", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli30.86a.0026", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "rybdwi35.86a.0366", }, { model: "nuc7i3bnh", scope: "eq", trust: 1, vendor: "intel", version: "tybyt20h.86a.0015", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "ccsklm5v.86a.0052", }, { model: "nuc7i5bnk", scope: "eq", trust: 1, vendor: "intel", version: "bnkbl357.86a.0052", }, { model: "nuc7i5bnh", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli5v.86a.0026", }, { model: "nuc7i7bnh", scope: "eq", trust: 1, vendor: "intel", version: "dnkbli30.86a.0026", }, { model: "nuc kit nuc7i3bnh", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc kit nuc7i3bnk", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc kit nuc7i5bnh", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc kit nuc7i5bnk", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc kit nuc7i7bnh", scope: null, trust: 0.8, vendor: "intel", version: null, }, { model: "nuc7i5bnk", scope: null, trust: 0.6, vendor: "intel", version: null, }, { model: "nuc7i5bnh", scope: null, trust: 0.6, vendor: "intel", version: null, }, { model: "nuc7i3bnk", scope: null, trust: 0.6, vendor: "intel", version: null, }, { model: "nuc7i3bnh", scope: null, trust: 0.6, vendor: "intel", version: null, }, { model: "bn0049", scope: null, trust: 0.6, vendor: "intel", version: null, }, { model: "nuc7i7bnh", scope: null, trust: 0.6, vendor: "intel", version: null, }, ], sources: [ { db: "CNVD", id: "CNVD-2017-30486", }, { db: "JVNDB", id: "JVNDB-2017-009422", }, { db: "NVD", id: "CVE-2017-5721", }, { db: "CNNVD", id: "CNNVD-201710-117", }, ], }, configurations: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/configurations#", children: { "@container": "@list", }, cpe_match: { "@container": "@list", }, data: { "@container": "@list", }, nodes: { "@container": "@list", }, }, data: [ { CVE_data_version: "4.0", nodes: [ { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i7bnh_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i7bnh:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnh_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i5bnh:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i5bnk_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i5bnk:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnh_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i3bnh:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, { children: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:intel:nuc7i3bnk_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:h:intel:nuc7i3bnk:-:*:*:*:*:*:*:*", cpe_name: [], vulnerable: false, }, ], operator: "OR", }, ], cpe_match: [], operator: "AND", }, ], }, ], sources: [ { db: "NVD", id: "CVE-2017-5721", }, ], }, cve: "CVE-2017-5721", cvss: { "@context": { cvssV2: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#", }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2", }, cvssV3: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#", }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/", }, severity: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/cvss/severity#", }, "@id": "https://www.variotdbs.pl/ref/cvss/severity", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, "@id": "https://www.variotdbs.pl/ref/sources", }, }, data: [ { cvssV2: [ { acInsufInfo: false, accessComplexity: "MEDIUM", accessVector: "LOCAL", authentication: "NONE", author: "NVD", availabilityImpact: "PARTIAL", baseScore: 4.4, confidentialityImpact: "PARTIAL", exploitabilityScore: 3.4, impactScore: 6.4, integrityImpact: "PARTIAL", obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, severity: "MEDIUM", trust: 1, userInteractionRequired: false, vectorString: "AV:L/AC:M/Au:N/C:P/I:P/A:P", version: "2.0", }, { acInsufInfo: null, accessComplexity: "Medium", accessVector: "Local", authentication: "None", author: "NVD", availabilityImpact: "Partial", baseScore: 4.4, confidentialityImpact: "Partial", exploitabilityScore: null, id: "CVE-2017-5721", impactScore: null, integrityImpact: "Partial", obtainAllPrivilege: null, obtainOtherPrivilege: null, obtainUserPrivilege: null, severity: "Medium", trust: 0.8, userInteractionRequired: null, vectorString: "AV:L/AC:M/Au:N/C:P/I:P/A:P", version: "2.0", }, { accessComplexity: "LOW", accessVector: "LOCAL", authentication: "NONE", author: "CNVD", availabilityImpact: "PARTIAL", baseScore: 4.6, confidentialityImpact: "PARTIAL", exploitabilityScore: 3.9, id: "CNVD-2017-30486", impactScore: 6.4, integrityImpact: "PARTIAL", severity: "MEDIUM", trust: 0.6, vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P", version: "2.0", }, { accessComplexity: "MEDIUM", accessVector: "LOCAL", authentication: "NONE", author: "VULHUB", availabilityImpact: "PARTIAL", baseScore: 4.4, confidentialityImpact: "PARTIAL", exploitabilityScore: 3.4, id: "VHN-113924", impactScore: 6.4, integrityImpact: "PARTIAL", severity: "MEDIUM", trust: 0.1, vectorString: "AV:L/AC:M/AU:N/C:P/I:P/A:P", version: "2.0", }, ], cvssV3: [ { attackComplexity: "HIGH", attackVector: "LOCAL", author: "NVD", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "HIGH", exploitabilityScore: 0.8, impactScore: 6, integrityImpact: "HIGH", privilegesRequired: "HIGH", scope: "CHANGED", trust: 1, userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", version: "3.0", }, { attackComplexity: "High", attackVector: "Local", author: "NVD", availabilityImpact: "High", baseScore: 7.5, baseSeverity: "High", confidentialityImpact: "High", exploitabilityScore: null, id: "CVE-2017-5721", impactScore: null, integrityImpact: "High", privilegesRequired: "High", scope: "Changed", trust: 0.8, userInteraction: "None", vectorString: "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", version: "3.0", }, ], severity: [ { author: "NVD", id: "CVE-2017-5721", trust: 1.8, value: "HIGH", }, { author: "CNVD", id: "CNVD-2017-30486", trust: 0.6, value: "MEDIUM", }, { author: "CNNVD", id: "CNNVD-201710-117", trust: 0.6, value: "MEDIUM", }, { author: "VULHUB", id: "VHN-113924", trust: 0.1, value: "MEDIUM", }, ], }, ], sources: [ { db: "CNVD", id: "CNVD-2017-30486", }, { db: "VULHUB", id: "VHN-113924", }, { db: "JVNDB", id: "JVNDB-2017-009422", }, { db: "NVD", id: "CVE-2017-5721", }, { db: "CNNVD", id: "CNNVD-201710-117", }, ], }, description: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/description#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "Insufficient input validation in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows local attackers to execute arbitrary code via manipulation of memory. Intel NUC7i3BNK , NUC7i3BNH , NUC7i5BNK , NUC7i5BNH ,and NUC7i7BNH Contains an input validation vulnerability.Information is acquired, information is falsified, and denial of service (DoS) May be in a state. IntelNUC7i3BNK and other products are CPU (Central Processing Unit) products of Intel Corporation of the United States. An attacker could exploit the vulnerability to exploit arbitrary code by manipulating memory. Intel NUC7i3BNK, etc. The following products and versions are affected: NUC7i3BNK BN0049 and earlier; NUC7i3BNH BN0049 and earlier; NUC7i5BNK BN0049 and earlier; NUC7i5BNH BN0049 and earlier; NUC7i7BNH BN0049 and earlier", sources: [ { db: "NVD", id: "CVE-2017-5721", }, { db: "JVNDB", id: "JVNDB-2017-009422", }, { db: "CNVD", id: "CNVD-2017-30486", }, { db: "VULHUB", id: "VHN-113924", }, ], trust: 2.25, }, external_ids: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/external_ids#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { db: "NVD", id: "CVE-2017-5721", trust: 3.1, }, { db: "JVNDB", id: "JVNDB-2017-009422", trust: 0.8, }, { db: "CNNVD", id: "CNNVD-201710-117", trust: 0.7, }, { db: "CNVD", id: "CNVD-2017-30486", trust: 0.6, }, { db: "VULHUB", id: "VHN-113924", trust: 0.1, }, ], sources: [ { db: "CNVD", id: "CNVD-2017-30486", }, { db: "VULHUB", id: "VHN-113924", }, { db: "JVNDB", id: "JVNDB-2017-009422", }, { db: "NVD", id: "CVE-2017-5721", }, { db: "CNNVD", id: "CNNVD-201710-117", }, ], }, id: "VAR-201710-0955", iot: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: true, sources: [ { db: "CNVD", id: "CNVD-2017-30486", }, { db: "VULHUB", id: "VHN-113924", }, ], trust: 1.2908091914285715, }, iot_taxonomy: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { category: [ "Network device", ], sub_category: null, trust: 0.6, }, ], sources: [ { db: "CNVD", id: "CNVD-2017-30486", }, ], }, last_update_date: "2023-12-18T12:37:10.168000Z", patch: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/patch#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { title: "INTEL-SA-00084", trust: 0.8, url: "https://security-center.intel.com/advisory.aspx?intelid=intel-sa-00084&languageid=en-fr", }, { title: "Intel NUC Suite SMM Privilege Escalation Vulnerability Patch", trust: 0.6, url: "https://www.cnvd.org.cn/patchinfo/show/103860", }, { title: "Multiple Intel Product security vulnerabilities", trust: 0.6, url: "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=75309", }, ], sources: [ { db: "CNVD", id: "CNVD-2017-30486", }, { db: "JVNDB", id: "JVNDB-2017-009422", }, { db: "CNNVD", id: "CNNVD-201710-117", }, ], }, problemtype_data: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { problemtype: "CWE-20", trust: 1.9, }, ], sources: [ { db: "VULHUB", id: "VHN-113924", }, { db: "JVNDB", id: "JVNDB-2017-009422", }, { db: "NVD", id: "CVE-2017-5721", }, ], }, references: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/references#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { trust: 1.6, url: "https://security-center.intel.com/advisory.aspx?intelid=intel-sa-00084&languageid=en-fr", }, { trust: 0.8, url: "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-5721", }, { trust: 0.8, url: "https://nvd.nist.gov/vuln/detail/cve-2017-5721", }, { trust: 0.6, url: "https://nvd.nist.gov/vuln/detail/cve-2017-5700", }, { trust: 0.1, url: "https://security-center.intel.com/advisory.aspx?intelid=intel-sa-00084&languageid=en-fr", }, ], sources: [ { db: "CNVD", id: "CNVD-2017-30486", }, { db: "VULHUB", id: "VHN-113924", }, { db: "JVNDB", id: "JVNDB-2017-009422", }, { db: "NVD", id: "CVE-2017-5721", }, { db: "CNNVD", id: "CNNVD-201710-117", }, ], }, sources: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", data: { "@container": "@list", }, }, data: [ { db: "CNVD", id: "CNVD-2017-30486", }, { db: "VULHUB", id: "VHN-113924", }, { db: "JVNDB", id: "JVNDB-2017-009422", }, { db: "NVD", id: "CVE-2017-5721", }, { db: "CNNVD", id: "CNNVD-201710-117", }, ], }, sources_release_date: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#", data: { "@container": "@list", }, }, data: [ { date: "2017-10-18T00:00:00", db: "CNVD", id: "CNVD-2017-30486", }, { date: "2017-10-11T00:00:00", db: "VULHUB", id: "VHN-113924", }, { date: "2017-11-10T00:00:00", db: "JVNDB", id: "JVNDB-2017-009422", }, { date: "2017-10-11T00:29:00.303000", db: "NVD", id: "CVE-2017-5721", }, { date: "2017-10-11T00:00:00", db: "CNNVD", id: "CNNVD-201710-117", }, ], }, sources_update_date: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#", data: { "@container": "@list", }, }, data: [ { date: "2017-10-18T00:00:00", db: "CNVD", id: "CNVD-2017-30486", }, { date: "2017-11-03T00:00:00", db: "VULHUB", id: "VHN-113924", }, { date: "2017-11-10T00:00:00", db: "JVNDB", id: "JVNDB-2017-009422", }, { date: "2017-11-03T17:54:26.907000", db: "NVD", id: "CVE-2017-5721", }, { date: "2017-10-11T00:00:00", db: "CNNVD", id: "CNNVD-201710-117", }, ], }, threat_type: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/threat_type#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "local", sources: [ { db: "CNNVD", id: "CNNVD-201710-117", }, ], trust: 0.6, }, title: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/title#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "plural Intel NUC Kit Input Confirmation Vulnerability in Product Firmware", sources: [ { db: "JVNDB", id: "JVNDB-2017-009422", }, ], trust: 0.8, }, type: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/type#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "input validation", sources: [ { db: "CNNVD", id: "CNNVD-201710-117", }, ], trust: 0.6, }, }
Vulnerability from fkie_nvd
Published
2017-07-26 15:29
Modified
2024-11-21 03:28
Severity ?
Summary
Incorrect check in Intel processors from 6th and 7th Generation Intel Core Processor Families, Intel Xeon E3-1500M v5 and v6 Product Families, and Intel Xeon E3-1200 v5 and v6 Product Families allows compromised system firmware to impact SGX security via incorrect early system state.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| intel | nuc7i3bnk_bios | - | |
| intel | nuc7i3bnk | - | |
| intel | nuc7i5bnk_bios | - | |
| intel | nuc7i5bnk | - | |
| intel | nuc7i7bnh_bios | - | |
| intel | nuc7i7bnh | - | |
| intel | stk2mv64cc_bios | - | |
| intel | stk2mv64cc | - | |
| intel | stk2m3w64cc_bios | - | |
| intel | stk2m3w64cc | - | |
| intel | nuc6i7kyk_bios | - | |
| intel | nuc6i7kyk | - | |
| intel | nuc6i3syk_bios | - | |
| intel | nuc6i3syk | - | |
| intel | nuc6i5syk_bios | - | |
| intel | nuc6i5syk | - | |
| intel | r1304sposhor_bios | - | |
| intel | r1304sposhor | - | |
| intel | r1304sposhorr_bios | - | |
| intel | r1304sposhorr | - | |
| intel | r1208sposhorr_bios | - | |
| intel | r1208sposhorr | - | |
| intel | lr1304spcfg1r_bios | - | |
| intel | lr1304spcfg1r | - | |
| intel | r1208sposhor_bios | - | |
| intel | r1208sposhor | - | |
| intel | s1200spsr_bios | - | |
| intel | s1200spsr | - | |
| intel | s1200spor_bios | - | |
| intel | s1200spor | - | |
| intel | lr1304spcfg1_bios | - | |
| intel | lr1304spcfg1 | - | |
| intel | s1200spl_bios | - | |
| intel | s1200spl | - | |
| intel | s1200spo_bios | - | |
| intel | s1200spo | - | |
| intel | s1200sps_bios | - | |
| intel | s1200sps | - | |
| intel | r1304sposhbn_bios | - | |
| intel | r1304sposhbn | - | |
| intel | s1200splr_bios | - | |
| intel | s1200splr | - | |
| intel | r1304sposhbnr_bios | - | |
| intel | r1304sposhbnr | - |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i3bnk_bios:-:*:*:*:*:*:*:*", matchCriteriaId: "682EDAC2-F993-4401-B649-B5C49E3E1761", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i3bnk:-:*:*:*:*:*:*:*", matchCriteriaId: "A810CE8E-3B2C-458D-BAE4-BA3AEC4FA5CA", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i5bnk_bios:-:*:*:*:*:*:*:*", matchCriteriaId: "384BE426-912A-4BFD-8AE7-BEB0F941DF7B", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i5bnk:-:*:*:*:*:*:*:*", matchCriteriaId: "EBF91B19-0FA1-4CE8-B729-A09612466725", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i7bnh_bios:-:*:*:*:*:*:*:*", matchCriteriaId: "71D0E50D-B369-4C82-91DB-AD44A71736EE", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i7bnh:-:*:*:*:*:*:*:*", matchCriteriaId: "ACBE1C0D-69EF-45B5-9E70-C4DBD0A401BF", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:stk2mv64cc_bios:-:*:*:*:*:*:*:*", matchCriteriaId: "E3E5D206-247A-41BA-BAE6-83F482D1090A", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:stk2mv64cc:-:*:*:*:*:*:*:*", matchCriteriaId: "9497CA1C-A3CA-4CC4-8192-69DF58630575", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:stk2m3w64cc_bios:-:*:*:*:*:*:*:*", matchCriteriaId: "AE204F78-8A38-4FC5-BCBF-6EB40015ABAE", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:stk2m3w64cc:-:*:*:*:*:*:*:*", matchCriteriaId: "123782EB-5B44-492A-86B1-D10C03C89D64", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc6i7kyk_bios:-:*:*:*:*:*:*:*", matchCriteriaId: "4414D9EF-D36D-4190-8581-3E0370764CA3", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc6i7kyk:-:*:*:*:*:*:*:*", matchCriteriaId: "AC196D3E-062A-4301-BAA8-51FAF153F2EB", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc6i3syk_bios:-:*:*:*:*:*:*:*", matchCriteriaId: "5A5C2391-2CD8-49F6-BDAE-B79670CEC3B4", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc6i3syk:-:*:*:*:*:*:*:*", matchCriteriaId: "035B570B-8441-4F84-A441-FFBD1378EE6E", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc6i5syk_bios:-:*:*:*:*:*:*:*", matchCriteriaId: "9EF24505-0212-4152-80FD-F80792E51E9C", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc6i5syk:-:*:*:*:*:*:*:*", matchCriteriaId: "F9AEC7B5-E79D-4CB0-8BA9-4ED6001603D4", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:r1304sposhor_bios:-:*:*:*:*:*:*:*", matchCriteriaId: "4ECEC599-486C-45B6-9D5C-73CCDF1BD5BD", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:r1304sposhor:-:*:*:*:*:*:*:*", matchCriteriaId: "E3684B23-A791-43B9-8426-EE79463E9471", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:r1304sposhorr_bios:-:*:*:*:*:*:*:*", matchCriteriaId: "44FBDCDD-2015-45EE-BDFD-0876F20A58E6", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:r1304sposhorr:-:*:*:*:*:*:*:*", matchCriteriaId: "FB43BBF2-C737-4246-8943-E21178192050", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:r1208sposhorr_bios:-:*:*:*:*:*:*:*", matchCriteriaId: "921BA513-3719-4213-BB0B-96062C64459D", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:r1208sposhorr:-:*:*:*:*:*:*:*", matchCriteriaId: "B2392C7B-4401-4ECF-9AF2-AED3B375DA1A", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:lr1304spcfg1r_bios:-:*:*:*:*:*:*:*", matchCriteriaId: "F05649F5-F879-434D-9BAC-AA95AA011DE6", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:lr1304spcfg1r:-:*:*:*:*:*:*:*", matchCriteriaId: "846E6438-E23A-4444-94C1-8E9326B53FC5", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:r1208sposhor_bios:-:*:*:*:*:*:*:*", matchCriteriaId: "20CD2904-77C2-4F70-A187-469895E53B37", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:r1208sposhor:-:*:*:*:*:*:*:*", matchCriteriaId: "FB4BADBE-93D4-44C6-8307-72A5351587F1", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:s1200spsr_bios:-:*:*:*:*:*:*:*", matchCriteriaId: "93285F46-461A-4BA2-B195-A7869E194CDF", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:s1200spsr:-:*:*:*:*:*:*:*", matchCriteriaId: "B19990B5-8D2D-4A9F-B323-2E82B46ACAF3", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:s1200spor_bios:-:*:*:*:*:*:*:*", matchCriteriaId: "0563A19E-8ABD-4652-B5CB-D64DBD96BD9B", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:s1200spor:-:*:*:*:*:*:*:*", matchCriteriaId: "A1F0421C-DD38-4FAD-8EA8-A264025A3C6D", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:lr1304spcfg1_bios:-:*:*:*:*:*:*:*", matchCriteriaId: "59866E74-BB74-450C-8375-61C86FA6E261", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:lr1304spcfg1:-:*:*:*:*:*:*:*", matchCriteriaId: "A3353F12-6B1E-479A-88A0-51315E377891", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:s1200spl_bios:-:*:*:*:*:*:*:*", matchCriteriaId: "EACE8E81-E786-4262-AAF5-738756B5E549", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:s1200spl:-:*:*:*:*:*:*:*", matchCriteriaId: "AFED93FA-650A-4908-9D22-DFA1013A9AF4", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:s1200spo_bios:-:*:*:*:*:*:*:*", matchCriteriaId: "0D7AF551-F825-4E09-AC7E-B94CB21B56D9", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:s1200spo:-:*:*:*:*:*:*:*", matchCriteriaId: "06306DD8-2347-4A9A-8A4A-2D283F784207", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:s1200sps_bios:-:*:*:*:*:*:*:*", matchCriteriaId: "59A87E1D-1BAF-4A11-894C-0FF1592B6561", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:s1200sps:-:*:*:*:*:*:*:*", matchCriteriaId: "AB414F9E-02B4-4CD4-9534-35BD478A9598", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:r1304sposhbn_bios:-:*:*:*:*:*:*:*", matchCriteriaId: "CEB2AA41-AB3A-41B4-AF30-B3970A5971D9", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:r1304sposhbn:-:*:*:*:*:*:*:*", matchCriteriaId: "D1698F3C-7D8C-4C5F-AB32-4176E363EC77", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:s1200splr_bios:-:*:*:*:*:*:*:*", matchCriteriaId: "8245B6D7-B1E8-4B63-AA5D-E9C2BB132F75", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:s1200splr:-:*:*:*:*:*:*:*", matchCriteriaId: "EB1CAD2B-7D17-4D75-9746-C6AF049F6C04", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:r1304sposhbnr_bios:-:*:*:*:*:*:*:*", matchCriteriaId: "52415BC5-A21B-45E2-BE4D-9BF4FF9CB0A5", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:r1304sposhbnr:-:*:*:*:*:*:*:*", matchCriteriaId: "EB06D22E-814F-4B2E-BDB6-E8ADB0EDC7EB", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, ], cveTags: [], descriptions: [ { lang: "en", value: "Incorrect check in Intel processors from 6th and 7th Generation Intel Core Processor Families, Intel Xeon E3-1500M v5 and v6 Product Families, and Intel Xeon E3-1200 v5 and v6 Product Families allows compromised system firmware to impact SGX security via incorrect early system state.", }, { lang: "es", value: "La comprobación incorrecta en los procesadores Intel de las familias de procesadores Intel Core de 6a y 7a generación, de las familias de productos Intel Xeon E3-1500M versiones v5 y v6, y de las familias de productos Intel Xeon E3-1200 versiones v5 y v6, permite que el firmware del sistema comprometido impacte la seguridad SGX por medio de un estado inicial incorrecto del sistema.", }, ], id: "CVE-2017-5691", lastModified: "2024-11-21T03:28:13.767", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "HIGH", cvssData: { accessComplexity: "MEDIUM", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "COMPLETE", baseScore: 9.3, confidentialityImpact: "COMPLETE", integrityImpact: "COMPLETE", vectorString: "AV:N/AC:M/Au:N/C:C/I:C/A:C", version: "2.0", }, exploitabilityScore: 8.6, impactScore: 10, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: true, }, ], cvssMetricV30: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H", version: "3.0", }, exploitabilityScore: 2.3, impactScore: 6, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2017-07-26T15:29:00.283", references: [ { source: "secure@intel.com", tags: [ "Third Party Advisory", ], url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesb3p03767en_us", }, { source: "secure@intel.com", tags: [ "Vendor Advisory", ], url: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00076&languageid=en-fr", }, { source: "secure@intel.com", url: "https://support.lenovo.com/us/en/product_security/LEN-15184", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesb3p03767en_us", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Vendor Advisory", ], url: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00076&languageid=en-fr", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://support.lenovo.com/us/en/product_security/LEN-15184", }, ], sourceIdentifier: "secure@intel.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "NVD-CWE-noinfo", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2017-10-11 00:29
Modified
2024-11-21 03:28
Severity ?
Summary
Insufficient input validation in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows local attackers to execute arbitrary code via manipulation of memory.
References
| ▼ | URL | Tags | |
|---|---|---|---|
| secure@intel.com | https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr | Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr | Patch, Third Party Advisory |
Impacted products
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", matchCriteriaId: "28E7338F-E97C-4C2A-8320-0BAEA1FB365C", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "91A1F20D-B5A6-4010-B94B-399329B426FC", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "2D356830-1DBB-43DE-A7E9-6A777EE39FA8", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "311F7D11-90D4-4702-9767-2C8540783937", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "2D6F051E-D237-4F87-B802-0DC0579E242F", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "E5F63727-A885-4D30-AF0D-7041160D807F", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", matchCriteriaId: "D44A0DD6-9FA9-4116-BB65-DC92F67412C4", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", matchCriteriaId: "68B87539-80FB-4204-82AF-5284B6E16190", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", matchCriteriaId: "776638A5-1CB9-4706-A8DD-8DBEEC0F0A1A", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", matchCriteriaId: "775C4FDA-94EE-47D7-8940-0FECC60DB1C8", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i7bnh:-:*:*:*:*:*:*:*", matchCriteriaId: "ACBE1C0D-69EF-45B5-9E70-C4DBD0A401BF", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", matchCriteriaId: "3C540E10-88AA-4EFF-99DE-4BE606A1C734", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "46AC578B-5063-47D7-887C-040B7DDAE41B", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "EDF95B5C-C4EF-4CF3-84C7-4789F79F7AB5", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "0A8293A0-3A36-41BF-AC70-CC48C5A93B8B", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "AFAE844D-523B-45EA-83D9-B97810245819", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "FC2C1007-EC35-4624-9EF7-325EFB9D51A4", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", matchCriteriaId: "AF3DCB3E-C437-428C-AAFB-C5D57DD1443E", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", matchCriteriaId: "AA87C97F-FC0B-42E2-8EBC-C39C778BD36F", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", matchCriteriaId: "36E5D240-4014-44BC-8440-C92FABCB4417", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", matchCriteriaId: "FFA85BEE-61CB-4033-B6B4-6A32AD1F2C67", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i5bnh:-:*:*:*:*:*:*:*", matchCriteriaId: "CA8FFEF7-5140-44F6-91CD-B9468F20692F", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", matchCriteriaId: "08C0B75D-2A2C-4437-AE72-35BFB2C6F41A", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "F074D06A-B828-49EA-B1C2-0FCF71A83E4B", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "BBF75171-EF1D-4ADF-9125-4C9B4EF347CB", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "C28D8E17-7A98-4C5E-A9AB-5B56826460DF", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "B39A87F9-9C0B-4CD9-82EB-C7220F02BED9", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "2316FA59-3FAB-4D68-8016-F82649AA56A0", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", matchCriteriaId: "A5C9EEAE-8DA8-485F-ACFE-062F8062DCFA", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", matchCriteriaId: "7F4DEB05-EC57-465F-9721-BA2D82955982", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", matchCriteriaId: "468CF14F-D5F7-47EB-BCD1-628BBEBFD648", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", matchCriteriaId: "265BB588-1CB8-4F2C-B716-58FF6A6B0EB4", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i5bnk:-:*:*:*:*:*:*:*", matchCriteriaId: "EBF91B19-0FA1-4CE8-B729-A09612466725", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", matchCriteriaId: "0367FBB9-1E31-4BED-8E6F-AF4275D372AA", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "8361A20E-EB65-4C6C-9977-6A988D7414D0", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "0777E301-8278-4937-9B9C-0560985A1B85", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "73FE5A99-12CA-400F-9B7A-CCC477FF5192", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "509EE9C7-C13E-4EEC-ABC1-403B15A6DED0", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "BE740CB3-7D90-4B00-B3FF-116B74EA5249", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", matchCriteriaId: "CBE67A7F-9ABB-47D9-A576-4FE7E665477E", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", matchCriteriaId: "21CBBF36-F05A-4190-9C11-6DA2B7CA503F", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", matchCriteriaId: "BE611A09-0D29-4163-8616-7A7CC12C6ADC", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", matchCriteriaId: "7143E57A-504B-414B-B22C-F1C8FB929E22", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i3bnh:-:*:*:*:*:*:*:*", matchCriteriaId: "DC5EC4E6-B529-48DC-9251-73633807E4A7", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", matchCriteriaId: "22DDB889-967C-4924-8B5C-92B2D561E55A", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "EED1ABBA-E6F0-4E1C-A327-220508EBE960", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "6915BBE5-8F58-4652-A5EC-B0153628F696", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "3B550844-0CFE-465C-B383-05FA21253F1E", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "C80B6A2B-A318-4A6C-9EDE-C749019E911B", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "11E0F74B-EEA3-4656-8CF2-318E0EA42183", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", matchCriteriaId: "0A860E39-FB9A-4288-99B0-2692995BCD1B", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", matchCriteriaId: "0F212139-E8B6-4CFE-856B-BCD9E2EBC1C4", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", matchCriteriaId: "A017F978-9BD3-4830-85EC-538F0E513F65", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", matchCriteriaId: "AA512D48-426B-4C13-809A-719AA2B241FF", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i3bnk:-:*:*:*:*:*:*:*", matchCriteriaId: "A810CE8E-3B2C-458D-BAE4-BA3AEC4FA5CA", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, ], cveTags: [], descriptions: [ { lang: "en", value: "Insufficient input validation in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows local attackers to execute arbitrary code via manipulation of memory.", }, { lang: "es", value: "Insuficiente validación de entradas en el firmware del sistema para Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH en versiones BN0049 e inferiores permite que atacantes locales ejecuten código arbitrario mediante la manipulación de la memoria.", }, ], id: "CVE-2017-5721", lastModified: "2024-11-21T03:28:17.860", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "MEDIUM", accessVector: "LOCAL", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 4.4, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:L/AC:M/Au:N/C:P/I:P/A:P", version: "2.0", }, exploitabilityScore: 3.4, impactScore: 6.4, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV30: [ { cvssData: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "HIGH", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", version: "3.0", }, exploitabilityScore: 0.8, impactScore: 6, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2017-10-11T00:29:00.303", references: [ { source: "secure@intel.com", tags: [ "Patch", "Third Party Advisory", ], url: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Third Party Advisory", ], url: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr", }, ], sourceIdentifier: "secure@intel.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-20", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2017-10-11 00:29
Modified
2024-11-21 03:28
Severity ?
Summary
Insufficient protection of password storage in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows local attackers to bypass Administrator and User passwords via access to password storage.
References
| ▼ | URL | Tags | |
|---|---|---|---|
| secure@intel.com | http://www.securityfocus.com/bid/101241 | Third Party Advisory, VDB Entry | |
| secure@intel.com | https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr | Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/101241 | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr | Patch, Third Party Advisory |
Impacted products
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", matchCriteriaId: "28E7338F-E97C-4C2A-8320-0BAEA1FB365C", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "91A1F20D-B5A6-4010-B94B-399329B426FC", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "2D356830-1DBB-43DE-A7E9-6A777EE39FA8", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "311F7D11-90D4-4702-9767-2C8540783937", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "2D6F051E-D237-4F87-B802-0DC0579E242F", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "E5F63727-A885-4D30-AF0D-7041160D807F", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", matchCriteriaId: "D44A0DD6-9FA9-4116-BB65-DC92F67412C4", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", matchCriteriaId: "68B87539-80FB-4204-82AF-5284B6E16190", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", matchCriteriaId: "776638A5-1CB9-4706-A8DD-8DBEEC0F0A1A", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", matchCriteriaId: "775C4FDA-94EE-47D7-8940-0FECC60DB1C8", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i7bnh:-:*:*:*:*:*:*:*", matchCriteriaId: "ACBE1C0D-69EF-45B5-9E70-C4DBD0A401BF", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", matchCriteriaId: "3C540E10-88AA-4EFF-99DE-4BE606A1C734", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "46AC578B-5063-47D7-887C-040B7DDAE41B", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "EDF95B5C-C4EF-4CF3-84C7-4789F79F7AB5", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "0A8293A0-3A36-41BF-AC70-CC48C5A93B8B", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "AFAE844D-523B-45EA-83D9-B97810245819", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "FC2C1007-EC35-4624-9EF7-325EFB9D51A4", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", matchCriteriaId: "AF3DCB3E-C437-428C-AAFB-C5D57DD1443E", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", matchCriteriaId: "AA87C97F-FC0B-42E2-8EBC-C39C778BD36F", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", matchCriteriaId: "36E5D240-4014-44BC-8440-C92FABCB4417", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", matchCriteriaId: "FFA85BEE-61CB-4033-B6B4-6A32AD1F2C67", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i5bnh:-:*:*:*:*:*:*:*", matchCriteriaId: "CA8FFEF7-5140-44F6-91CD-B9468F20692F", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", matchCriteriaId: "08C0B75D-2A2C-4437-AE72-35BFB2C6F41A", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "F074D06A-B828-49EA-B1C2-0FCF71A83E4B", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "BBF75171-EF1D-4ADF-9125-4C9B4EF347CB", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "C28D8E17-7A98-4C5E-A9AB-5B56826460DF", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "B39A87F9-9C0B-4CD9-82EB-C7220F02BED9", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "2316FA59-3FAB-4D68-8016-F82649AA56A0", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", matchCriteriaId: "A5C9EEAE-8DA8-485F-ACFE-062F8062DCFA", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", matchCriteriaId: "7F4DEB05-EC57-465F-9721-BA2D82955982", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", matchCriteriaId: "468CF14F-D5F7-47EB-BCD1-628BBEBFD648", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", matchCriteriaId: "265BB588-1CB8-4F2C-B716-58FF6A6B0EB4", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i5bnk:-:*:*:*:*:*:*:*", matchCriteriaId: "EBF91B19-0FA1-4CE8-B729-A09612466725", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", matchCriteriaId: "0367FBB9-1E31-4BED-8E6F-AF4275D372AA", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "8361A20E-EB65-4C6C-9977-6A988D7414D0", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "0777E301-8278-4937-9B9C-0560985A1B85", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "73FE5A99-12CA-400F-9B7A-CCC477FF5192", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "509EE9C7-C13E-4EEC-ABC1-403B15A6DED0", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "BE740CB3-7D90-4B00-B3FF-116B74EA5249", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", matchCriteriaId: "CBE67A7F-9ABB-47D9-A576-4FE7E665477E", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", matchCriteriaId: "21CBBF36-F05A-4190-9C11-6DA2B7CA503F", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", matchCriteriaId: "BE611A09-0D29-4163-8616-7A7CC12C6ADC", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", matchCriteriaId: "7143E57A-504B-414B-B22C-F1C8FB929E22", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i3bnh:-:*:*:*:*:*:*:*", matchCriteriaId: "DC5EC4E6-B529-48DC-9251-73633807E4A7", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", matchCriteriaId: "22DDB889-967C-4924-8B5C-92B2D561E55A", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "EED1ABBA-E6F0-4E1C-A327-220508EBE960", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "6915BBE5-8F58-4652-A5EC-B0153628F696", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "3B550844-0CFE-465C-B383-05FA21253F1E", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "C80B6A2B-A318-4A6C-9EDE-C749019E911B", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "11E0F74B-EEA3-4656-8CF2-318E0EA42183", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", matchCriteriaId: "0A860E39-FB9A-4288-99B0-2692995BCD1B", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", matchCriteriaId: "0F212139-E8B6-4CFE-856B-BCD9E2EBC1C4", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", matchCriteriaId: "A017F978-9BD3-4830-85EC-538F0E513F65", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", matchCriteriaId: "AA512D48-426B-4C13-809A-719AA2B241FF", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i3bnk:-:*:*:*:*:*:*:*", matchCriteriaId: "A810CE8E-3B2C-458D-BAE4-BA3AEC4FA5CA", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, ], cveTags: [], descriptions: [ { lang: "en", value: "Insufficient protection of password storage in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows local attackers to bypass Administrator and User passwords via access to password storage.", }, { lang: "es", value: "Insuficiente protección del almacenamiento de contraseñas en el firmware del sistema para Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH en versiones BN0049 e inferiores permite que atacantes locales omitan las contraseñas Administrator y User mediante el acceso al almacenamiento de contraseñas.", }, ], id: "CVE-2017-5700", lastModified: "2024-11-21T03:28:14.903", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "HIGH", cvssData: { accessComplexity: "LOW", accessVector: "LOCAL", authentication: "NONE", availabilityImpact: "COMPLETE", baseScore: 7.2, confidentialityImpact: "COMPLETE", integrityImpact: "COMPLETE", vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C", version: "2.0", }, exploitabilityScore: 3.9, impactScore: 10, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV30: [ { cvssData: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 8.4, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, exploitabilityScore: 2.5, impactScore: 5.9, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2017-10-11T00:29:00.207", references: [ { source: "secure@intel.com", tags: [ "Third Party Advisory", "VDB Entry", ], url: "http://www.securityfocus.com/bid/101241", }, { source: "secure@intel.com", tags: [ "Patch", "Third Party Advisory", ], url: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", "VDB Entry", ], url: "http://www.securityfocus.com/bid/101241", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Third Party Advisory", ], url: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr", }, ], sourceIdentifier: "secure@intel.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-522", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2020-08-13 03:15
Modified
2024-11-21 05:39
Severity ?
Summary
Improper input validation in the firmware for Intel(R) NUCs may allow a privileged user to potentially enable escalation of privilege via local access.
References
Impacted products
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc8i7behga_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "7EAB5A96-2EC2-4957-9D37-9CA1828F3C95", versionEndExcluding: "becfl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc8i7behga:-:*:*:*:*:*:*:*", matchCriteriaId: "3F6F13C5-EE0D-4FB1-8194-6D6A86A22A1C", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc8i7bekqa_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "17A0D8FA-081A-4DC2-86D5-AD337EC0D48C", versionEndExcluding: "becfl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc8i7bekqa:-:*:*:*:*:*:*:*", matchCriteriaId: "9E9CB3A4-2618-43BE-A526-8ABF8ECF25B9", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc8i3behfa_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "E9F9707A-46FA-4B9B-9F89-43DF52513DE1", versionEndExcluding: "becfl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc8i3behfa:-:*:*:*:*:*:*:*", matchCriteriaId: "75411B13-00A9-4C46-BD3C-6064A99AEAEF", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc8i5behfa_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "B435E10E-5457-4356-AFBC-F5BFECA95072", versionEndExcluding: "becfl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc8i5behfa:-:*:*:*:*:*:*:*", matchCriteriaId: "03ED8843-4EC1-4BC5-94B9-1D4AEEE31612", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc8i5bekpa_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "D36398C1-F19F-4644-B35C-7E4F9A0C2317", versionEndExcluding: "becfl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc8i5bekpa:-:*:*:*:*:*:*:*", matchCriteriaId: "6BBE1E93-5491-4F25-9014-098E9BD28B1B", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc8i3beh_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "3F9C0671-7B50-494A-B73C-36234604EE29", versionEndExcluding: "becfl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc8i3beh:-:*:*:*:*:*:*:*", matchCriteriaId: "9D3826E8-D411-4F95-B0F8-B97C89DD3831", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc8i3behs_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "76C17A79-AF26-4817-B585-F757EFE0FF99", versionEndExcluding: "becfl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc8i3behs:-:*:*:*:*:*:*:*", matchCriteriaId: "D06F844C-5ADA-4933-B5A9-EB610D9527E4", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc8i3bek_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "77D74519-63B8-4881-A177-1BFC2936BF56", versionEndExcluding: "becfl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc8i3bek:-:*:*:*:*:*:*:*", matchCriteriaId: "1B79E147-6B97-474B-BDC3-6E30AA7B5EB6", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc8i5beh_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "3E6F69CD-F6E8-4997-97ED-37A6F32823B3", versionEndExcluding: "becfl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc8i5beh:-:*:*:*:*:*:*:*", matchCriteriaId: "23D36FA4-1963-41E5-A53A-9F47FCAEE4A9", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc8i5behs_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "6F055088-B170-4C09-B94D-E45A1E56E530", versionEndExcluding: "becfl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc8i5behs:-:*:*:*:*:*:*:*", matchCriteriaId: "AFDC4C7F-48A9-4A8C-ACB1-D526CD5FC628", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc8i5bek_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "8ACF50A2-9DA2-444A-9B3B-49F428319C42", versionEndExcluding: "becfl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc8i5bek:-:*:*:*:*:*:*:*", matchCriteriaId: "8037BB98-93BE-43F8-9A0A-46E306D1C1FB", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc8i7beh_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "AB132AA5-E502-4C45-B8F4-B0978CBC6CC5", versionEndExcluding: "becfl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc8i7beh:-:*:*:*:*:*:*:*", matchCriteriaId: "4B4936EA-A614-4A59-8792-227067400509", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc8i7bek_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "DA2BAC2D-5306-4F52-848C-169B37D6B019", versionEndExcluding: "becfl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc8i7bek:-:*:*:*:*:*:*:*", matchCriteriaId: "03975E45-3940-404E-94FA-61C37DD6DA32", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:cd1c32gk_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "B3F69BC5-DD51-4C65-AB37-392CFB559D28", versionEndExcluding: "gkaplcpx.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:cd1c32gk:-:*:*:*:*:*:*:*", matchCriteriaId: "CA9579A8-7459-4A5C-B3E5-AD8B67EE24AC", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:cd1c64gk_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "07802810-F126-475D-9BB4-0EAAD5F8D3E8", versionEndExcluding: "gkaplcpx.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:cd1c64gk:-:*:*:*:*:*:*:*", matchCriteriaId: "B6AD788F-7F9A-4E6A-827F-69B7F41501C6", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:cd1p64gk_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "79C0489D-7098-4962-9E5A-81488CF6BB2C", versionEndExcluding: "gkaplcpx.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:cd1p64gk:-:*:*:*:*:*:*:*", matchCriteriaId: "7D70643B-FE67-40CA-B63F-825E78D7D670", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc8i7hnkqc_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "8FF9C3B2-75AE-42A7-A99D-0D04905D8D20", versionEndExcluding: "hnkbli70.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc8i7hnkqc:-:*:*:*:*:*:*:*", matchCriteriaId: "00149C0A-A05B-40D3-8DFD-0867B2A71436", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc8i7hvkva_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "D4FC6977-4F5F-44AE-B32A-90346DE22824", versionEndExcluding: "hnkbli70.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc8i7hvkva:-:*:*:*:*:*:*:*", matchCriteriaId: "81544988-95CC-4CCF-938C-27A3DA94C479", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc8i7hvkvaw_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "0245AD28-8648-44C6-A509-879C26390F48", versionEndExcluding: "hnkbli70.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc8i7hvkvaw:-:*:*:*:*:*:*:*", matchCriteriaId: "B53EC7FA-8BB8-4021-9B56-75B2CCD4F2E8", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc8i7hnk_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "F641932A-C3BD-4BB8-938A-C8D131B21897", versionEndExcluding: "hnkbli70.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc8i7hnk:-:*:*:*:*:*:*:*", matchCriteriaId: "57B1FC17-80E8-432B-8757-9522D6433800", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc8i7hvk_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "70F611F6-E768-4E05-AAA0-BCC3FCD56583", versionEndExcluding: "hnkbli70.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc8i7hvk:-:*:*:*:*:*:*:*", matchCriteriaId: "AA600CE0-C6A5-4844-B8A4-17CA897060BA", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i7dnbe_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "40AB66B5-BC0D-4DAE-B07F-01C7BD7E5980", versionEndExcluding: "dnkbli7v.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i7dnbe:-:*:*:*:*:*:*:*", matchCriteriaId: "9491896A-6D0D-4A36-BD86-C7D3F9D67BC9", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i7dnhe_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "3FAEB9DF-2A40-4DB7-85F7-566B34E46288", versionEndExcluding: "dnkbli7v.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i7dnhe:-:*:*:*:*:*:*:*", matchCriteriaId: "10457F25-B045-4DFE-99A3-5BADD314DCC5", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i7dnke_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "89CD14CC-E208-47F3-A34C-CD67DA8B022A", versionEndExcluding: "dnkbli7v.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i7dnke:-:*:*:*:*:*:*:*", matchCriteriaId: "6CDBA0B8-C076-43B1-AB5A-509DCDCB2932", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i5dnkpc_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "554030FC-23C9-434B-AA75-C06C06963C2D", versionEndExcluding: "dnkbli5v.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i5dnkpc:-:*:*:*:*:*:*:*", matchCriteriaId: "BFA1D3DB-A76E-40B3-80D8-CB1A8574E24D", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i5dnbe_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "3CD9B011-D093-4AC4-ABA7-489EBE935EFF", versionEndExcluding: "dnkbli5v.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i5dnbe:-:*:*:*:*:*:*:*", matchCriteriaId: "117A5BF7-8CE6-4E7E-A303-BC36CB92E80D", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i5dnhe_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "8BA3562C-D4AD-4BF9-9584-16AE2654F365", versionEndExcluding: "dnkbli5v.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i5dnhe:-:*:*:*:*:*:*:*", matchCriteriaId: "A42BE9DE-6C99-498B-BE62-94D64E2C5E7B", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i5dnke_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "015413F7-390F-4A78-B249-B3C4798E9972", versionEndExcluding: "dnkbli5v.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i5dnke:-:*:*:*:*:*:*:*", matchCriteriaId: "28CCB3FE-E248-4765-B630-5AC815D8C1F0", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i3dnhnc_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "51061A49-BC7C-44F0-941C-B925FB929C7D", versionEndExcluding: "dnkbli30.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i3dnhnc:-:*:*:*:*:*:*:*", matchCriteriaId: "A98AB826-2534-464D-BAE2-00CBF29C8A6A", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i3dnktc_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "8A54AFCD-6348-4377-BF04-41A6A1AEC039", versionEndExcluding: "dnkbli30.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i3dnktc:-:*:*:*:*:*:*:*", matchCriteriaId: "C20EF764-A1E5-4A14-9050-0FDB7114B149", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i3dnbe_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "B77D1C2A-0F97-4C9F-9806-371EC10456B3", versionEndExcluding: "dnkbli30.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i3dnbe:-:*:*:*:*:*:*:*", matchCriteriaId: "014A2068-4A1E-4621-A3F9-6B69A3DE299C", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i3dnhe_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "BC734872-25A9-46E2-A296-630CD9BCCA46", versionEndExcluding: "dnkbli30.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i3dnhe:-:*:*:*:*:*:*:*", matchCriteriaId: "0AD25295-C0A4-45CD-9EA0-0C4594A08076", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i3dnke_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "7B06F28A-ADD4-428B-862E-9E08590B672B", versionEndExcluding: "dnkbli30.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i3dnke:-:*:*:*:*:*:*:*", matchCriteriaId: "4F1FA7AA-CDFE-49B9-8834-052AD3CFCC83", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:stk2mv64cc_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "ADA590A8-6765-4C76-BDDF-9729F62FD34A", versionEndExcluding: "ccsklm5v.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:stk2mv64cc:-:*:*:*:*:*:*:*", matchCriteriaId: "9497CA1C-A3CA-4CC4-8192-69DF58630575", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc6i7kyk_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "F255E3E3-3FF5-472C-8134-E0EB16137857", versionEndExcluding: "kyskli70.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc6i7kyk:-:*:*:*:*:*:*:*", matchCriteriaId: "AC196D3E-062A-4301-BAA8-51FAF153F2EB", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7cjysal_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "FDE5F8D3-872B-4614-BE85-28AE47A80347", versionEndExcluding: "jyglkcpx.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7cjysal:-:*:*:*:*:*:*:*", matchCriteriaId: "9D7883EA-D255-4611-A14B-2122A5873747", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7cjyh_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "E8BF95C5-2674-4346-96AF-FA62B50EB26A", versionEndExcluding: "jyglkcpx.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7cjyh:-:*:*:*:*:*:*:*", matchCriteriaId: "64DA446C-B6D3-44AA-A5DE-ADDB6D879010", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7pjyh_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "F3BEDA6B-DCC5-44EC-A0BF-4697C8DB86E4", versionEndExcluding: "jyglkcpx.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7pjyh:-:*:*:*:*:*:*:*", matchCriteriaId: "458E0FF7-D70D-4B28-875F-22E485E69339", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i7bnhxg_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "023E6FFA-4F0D-4B12-9E13-4C5C2FB09DD2", versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i7bnhxg:-:*:*:*:*:*:*:*", matchCriteriaId: "4119829C-825C-4CFF-83BB-DF5CC827EFDC", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i7bnkq_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "117CD08F-5F0C-4589-8412-D20ED9F6B22F", versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i7bnkq:-:*:*:*:*:*:*:*", matchCriteriaId: "825CA7B5-DA89-46F1-9B51-A7BADCEADE7D", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i3bnhxf_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "743E5F4A-EDA1-4033-9E3D-5A04A381668A", versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i3bnhxf:-:*:*:*:*:*:*:*", matchCriteriaId: "EDC0639D-58B9-49C7-BB2E-FC56BFB32738", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i5bnhxf_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "511D00AE-7EF7-4262-B04E-D672AE59D8BF", versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i5bnhxf:-:*:*:*:*:*:*:*", matchCriteriaId: "D396814A-3CD4-427B-8A95-AB199245DDCB", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i5bnkp_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "4AFA92FF-B79B-4C27-B01F-1CAA913AA8F2", versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i5bnkp:-:*:*:*:*:*:*:*", matchCriteriaId: "003349A9-0009-49AA-B7A4-AF27404985E5", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i3bnb_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "0F4E3A1B-001E-42CD-B538-FC4EC29F9D1E", versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i3bnb:-:*:*:*:*:*:*:*", matchCriteriaId: "50642504-4872-47CF-B5ED-921620C600A4", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i5bnb_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "E39F2C2D-BAF4-42BE-9A92-0D66B9086923", versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i5bnb:-:*:*:*:*:*:*:*", matchCriteriaId: "432B9A10-964F-45B4-A832-C8C5C325DFEE", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i7bnb_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "6B8A1887-54BD-43AC-96F1-1052C074A0B6", versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i7bnb:-:*:*:*:*:*:*:*", matchCriteriaId: "EBD43D6D-8D38-4DDD-AFA5-488E2D86F0DA", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "140EF411-7897-443B-9FC2-3C24E2919E20", versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i3bnh:-:*:*:*:*:*:*:*", matchCriteriaId: "DC5EC4E6-B529-48DC-9251-73633807E4A7", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i3bnhx1_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "33D8636B-7AE7-4CF3-B499-9686DD994919", versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i3bnhx1:-:*:*:*:*:*:*:*", matchCriteriaId: "91E674F4-08FE-44A3-B834-9FE9A0A7D382", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "B89DA39D-C5A5-484E-81C1-7C96393CDE6F", versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i3bnk:-:*:*:*:*:*:*:*", matchCriteriaId: "A810CE8E-3B2C-458D-BAE4-BA3AEC4FA5CA", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "4DFEFA0C-654A-41D6-952E-2DA5055EE504", versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i5bnh:-:*:*:*:*:*:*:*", matchCriteriaId: "CA8FFEF7-5140-44F6-91CD-B9468F20692F", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i5bnhx1_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "5B7F650F-CB9A-4D28-9D96-25E6678BE2A8", versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i5bnhx1:-:*:*:*:*:*:*:*", matchCriteriaId: "02701C54-557F-4346-BBF2-652793A5DA6D", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "F63538F2-F8B4-4E73-BE48-F583DF666F76", versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i5bnk:-:*:*:*:*:*:*:*", matchCriteriaId: "EBF91B19-0FA1-4CE8-B729-A09612466725", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "1C3F6FDF-9F83-4426-A34B-09511703F1C1", versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i7bnh:-:*:*:*:*:*:*:*", matchCriteriaId: "ACBE1C0D-69EF-45B5-9E70-C4DBD0A401BF", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i7bnhx1_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "8124BA42-CC25-4E91-A533-FD569075497A", versionEndExcluding: "bnkbl357.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i7bnhx1:-:*:*:*:*:*:*:*", matchCriteriaId: "20977314-4E07-4793-B1ED-84F89B56E58B", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc6cayh_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "CD8BF9E5-3E0A-4DF7-9EB6-E985DD72EFBB", versionEndExcluding: "ayaplcel.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc6cayh:-:*:*:*:*:*:*:*", matchCriteriaId: "6865AF64-360C-4C67-9440-E16D6DEDA949", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc6cays_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "B15821F2-A53D-4E0E-8000-CB7AD03685D4", versionEndExcluding: "ayaplcel.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc6cays:-:*:*:*:*:*:*:*", matchCriteriaId: "8285608B-66BB-47F7-AD2F-F9FC6ECB2FE0", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:de3815tybe_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "6D37AC0D-C43D-4E76-9124-ED5AAA1C4134", versionEndExcluding: "tybyt20h.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:de3815tybe:-:*:*:*:*:*:*:*", matchCriteriaId: "7A0221B0-3D61-45A2-AF5D-9D4E947C1E16", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:de3815tykhe_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "B6A14F16-018E-460B-92C3-E4899BB5485E", versionEndExcluding: "tybyt20h.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:de3815tykhe:-:*:*:*:*:*:*:*", matchCriteriaId: "1D1E585D-3254-45A2-8602-5D6FE535A89F", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:de3815tybe_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "8601B9FE-44B0-4304-8E14-1E3CF0755693", versionEndExcluding: "tybyt10h.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:de3815tybe:-:*:*:*:*:*:*:*", matchCriteriaId: "7A0221B0-3D61-45A2-AF5D-9D4E947C1E16", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:de3815tykhe_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "BAAD7266-1ED4-4C54-BEA7-6C69AEADBBB9", versionEndExcluding: "tybyt10h.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:de3815tykhe:-:*:*:*:*:*:*:*", matchCriteriaId: "1D1E585D-3254-45A2-8602-5D6FE535A89F", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc5cpyh_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "A3630DA4-1A85-4344-A67E-ED5D655DD5AB", versionEndExcluding: "pybswcel.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc5cpyh:-:*:*:*:*:*:*:*", matchCriteriaId: "1AEC08E1-22C7-4C2F-AB3E-1A65C09B1CFB", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc5pgyh_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "C2728ED6-57FC-4310-9975-6D29E249DB6F", versionEndExcluding: "pybswcel.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc5pgyh:-:*:*:*:*:*:*:*", matchCriteriaId: "BA76A826-FA4E-4B1E-8B24-77799D3727DB", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc5ppyh_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "92E3F17F-CA2D-4843-9F3F-45D4A7D7FD59", versionEndExcluding: "pybswcel.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc5ppyh:-:*:*:*:*:*:*:*", matchCriteriaId: "83C621C2-6FA8-427F-BE2C-2DB6B5A910E8", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc5i3ryh_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "2B8399D8-DB01-488D-8471-B197B8AA5BD7", versionEndExcluding: "pybswcel.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc5i3ryh:-:*:*:*:*:*:*:*", matchCriteriaId: "798A25B3-08B5-4E7C-92FB-4473385A328F", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc5i3ryhs_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "1AAA833B-4872-4D73-B6FB-52B8D1EF49D0", versionEndExcluding: "pybswcel.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc5i3ryhs:-:*:*:*:*:*:*:*", matchCriteriaId: "61B27796-699C-4623-B661-3AC66BCFD539", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc5i3ryhsn_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "80174AEF-76C0-48AF-A80E-50E2751704C8", versionEndExcluding: "pybswcel.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc5i3ryhsn:-:*:*:*:*:*:*:*", matchCriteriaId: "FB6E62C0-F87B-4EC6-9FC0-1A47B5935619", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc5i3ryk_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "73424B79-2287-48D3-81B8-486935C4CD1C", versionEndExcluding: "pybswcel.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc5i3ryk:-:*:*:*:*:*:*:*", matchCriteriaId: "19ABC970-C58E-4C43-B6A6-732F22B30915", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc5i5ryh_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "38E6B1C2-F65E-424E-8780-B94891280602", versionEndExcluding: "pybswcel.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc5i5ryh:-:*:*:*:*:*:*:*", matchCriteriaId: "6C58EF86-8D1E-4365-BA8F-8FD84D6FA9D1", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc5i5ryhs_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "88AFF33B-2034-4FAA-B39B-01579923694B", versionEndExcluding: "pybswcel.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc5i5ryhs:-:*:*:*:*:*:*:*", matchCriteriaId: "AA20C8DE-7236-4B25-B7B6-DB51AA79A1A6", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc5i5ryk_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "5FE67B51-3E36-4980-8813-4625300631D9", versionEndExcluding: "pybswcel.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc5i5ryk:-:*:*:*:*:*:*:*", matchCriteriaId: "52844DDE-2F80-4EEF-8E77-ADD67F3321A9", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc5i7ryh_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "DA9B2E97-F86D-4F25-8F83-86DB7268FB25", versionEndExcluding: "pybswcel.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc5i7ryh:-:*:*:*:*:*:*:*", matchCriteriaId: "ECE0658C-42A6-4B64-9147-5819E0204E2C", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc5i5mybe_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "3F19F039-3BF7-4E18-B61E-4B673E6116F0", versionEndExcluding: "mybdwi5v.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc5i5mybe:-:*:*:*:*:*:*:*", matchCriteriaId: "A07DD188-EA0C-4BA3-9C9E-D5A146B493A5", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc5i5myhe_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "164A3419-49D7-41D6-B84B-E235255C23F5", versionEndExcluding: "mybdwi5v.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc5i5myhe:-:*:*:*:*:*:*:*", matchCriteriaId: "A1433C6F-E0FB-4839-BA69-F63F825C2166", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc5i3mybe_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "CA8A0597-CBA0-4376-B409-B17CD0107D89", versionEndExcluding: "mybdwi5v.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc5i3mybe:-:*:*:*:*:*:*:*", matchCriteriaId: "E3371249-3123-49D8-80C1-A2EFFF1FC859", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc5i3myhe_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "59F94513-A686-4243-B50D-A935A8C682E8", versionEndExcluding: "mybdwi5v.86a", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc5i3myhe:-:*:*:*:*:*:*:*", matchCriteriaId: "2D6DD54A-FFDB-4C62-89E6-5D725382E5D8", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, ], cveTags: [], descriptions: [ { lang: "en", value: "Improper input validation in the firmware for Intel(R) NUCs may allow a privileged user to potentially enable escalation of privilege via local access.", }, { lang: "es", value: "Una comprobación de entrada inapropiada en el firmware para Intel® NUCs puede permitir a un usuario privilegiado habilitar potencialmente una escalada de privilegios por medio de un acceso local", }, ], id: "CVE-2020-8742", lastModified: "2024-11-21T05:39:21.850", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "LOW", accessVector: "LOCAL", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 4.6, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P", version: "2.0", }, exploitabilityScore: 3.9, impactScore: 6.4, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 6.7, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, exploitabilityScore: 0.8, impactScore: 5.9, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2020-08-13T03:15:16.523", references: [ { source: "secure@intel.com", tags: [ "Patch", "Vendor Advisory", ], url: "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00392.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Vendor Advisory", ], url: "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00392.html", }, ], sourceIdentifier: "secure@intel.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-20", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2017-10-11 00:29
Modified
2024-11-21 03:28
Severity ?
Summary
Incorrect policy enforcement in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows attackers with local or physical access to bypass enforcement of integrity protections via manipulation of firmware storage.
References
| ▼ | URL | Tags | |
|---|---|---|---|
| secure@intel.com | http://www.securityfocus.com/bid/101236 | Third Party Advisory, VDB Entry | |
| secure@intel.com | https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr | Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/101236 | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr | Patch, Third Party Advisory |
Impacted products
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", matchCriteriaId: "28E7338F-E97C-4C2A-8320-0BAEA1FB365C", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "91A1F20D-B5A6-4010-B94B-399329B426FC", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "2D356830-1DBB-43DE-A7E9-6A777EE39FA8", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "311F7D11-90D4-4702-9767-2C8540783937", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "2D6F051E-D237-4F87-B802-0DC0579E242F", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "E5F63727-A885-4D30-AF0D-7041160D807F", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", matchCriteriaId: "D44A0DD6-9FA9-4116-BB65-DC92F67412C4", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", matchCriteriaId: "68B87539-80FB-4204-82AF-5284B6E16190", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", matchCriteriaId: "776638A5-1CB9-4706-A8DD-8DBEEC0F0A1A", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", matchCriteriaId: "775C4FDA-94EE-47D7-8940-0FECC60DB1C8", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i7bnh:-:*:*:*:*:*:*:*", matchCriteriaId: "ACBE1C0D-69EF-45B5-9E70-C4DBD0A401BF", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", matchCriteriaId: "3C540E10-88AA-4EFF-99DE-4BE606A1C734", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "46AC578B-5063-47D7-887C-040B7DDAE41B", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "EDF95B5C-C4EF-4CF3-84C7-4789F79F7AB5", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "0A8293A0-3A36-41BF-AC70-CC48C5A93B8B", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "AFAE844D-523B-45EA-83D9-B97810245819", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "FC2C1007-EC35-4624-9EF7-325EFB9D51A4", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", matchCriteriaId: "AF3DCB3E-C437-428C-AAFB-C5D57DD1443E", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", matchCriteriaId: "AA87C97F-FC0B-42E2-8EBC-C39C778BD36F", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", matchCriteriaId: "36E5D240-4014-44BC-8440-C92FABCB4417", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", matchCriteriaId: "FFA85BEE-61CB-4033-B6B4-6A32AD1F2C67", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i5bnh:-:*:*:*:*:*:*:*", matchCriteriaId: "CA8FFEF7-5140-44F6-91CD-B9468F20692F", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", matchCriteriaId: "08C0B75D-2A2C-4437-AE72-35BFB2C6F41A", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "F074D06A-B828-49EA-B1C2-0FCF71A83E4B", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "BBF75171-EF1D-4ADF-9125-4C9B4EF347CB", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "C28D8E17-7A98-4C5E-A9AB-5B56826460DF", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "B39A87F9-9C0B-4CD9-82EB-C7220F02BED9", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "2316FA59-3FAB-4D68-8016-F82649AA56A0", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", matchCriteriaId: "A5C9EEAE-8DA8-485F-ACFE-062F8062DCFA", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", matchCriteriaId: "7F4DEB05-EC57-465F-9721-BA2D82955982", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", matchCriteriaId: "468CF14F-D5F7-47EB-BCD1-628BBEBFD648", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", matchCriteriaId: "265BB588-1CB8-4F2C-B716-58FF6A6B0EB4", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i5bnk:-:*:*:*:*:*:*:*", matchCriteriaId: "EBF91B19-0FA1-4CE8-B729-A09612466725", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", matchCriteriaId: "0367FBB9-1E31-4BED-8E6F-AF4275D372AA", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "8361A20E-EB65-4C6C-9977-6A988D7414D0", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "0777E301-8278-4937-9B9C-0560985A1B85", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "73FE5A99-12CA-400F-9B7A-CCC477FF5192", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "509EE9C7-C13E-4EEC-ABC1-403B15A6DED0", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "BE740CB3-7D90-4B00-B3FF-116B74EA5249", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", matchCriteriaId: "CBE67A7F-9ABB-47D9-A576-4FE7E665477E", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", matchCriteriaId: "21CBBF36-F05A-4190-9C11-6DA2B7CA503F", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", matchCriteriaId: "BE611A09-0D29-4163-8616-7A7CC12C6ADC", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", matchCriteriaId: "7143E57A-504B-414B-B22C-F1C8FB929E22", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i3bnh:-:*:*:*:*:*:*:*", matchCriteriaId: "DC5EC4E6-B529-48DC-9251-73633807E4A7", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", matchCriteriaId: "22DDB889-967C-4924-8B5C-92B2D561E55A", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "EED1ABBA-E6F0-4E1C-A327-220508EBE960", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "6915BBE5-8F58-4652-A5EC-B0153628F696", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "3B550844-0CFE-465C-B383-05FA21253F1E", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "C80B6A2B-A318-4A6C-9EDE-C749019E911B", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "11E0F74B-EEA3-4656-8CF2-318E0EA42183", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", matchCriteriaId: "0A860E39-FB9A-4288-99B0-2692995BCD1B", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", matchCriteriaId: "0F212139-E8B6-4CFE-856B-BCD9E2EBC1C4", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", matchCriteriaId: "A017F978-9BD3-4830-85EC-538F0E513F65", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", matchCriteriaId: "AA512D48-426B-4C13-809A-719AA2B241FF", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i3bnk:-:*:*:*:*:*:*:*", matchCriteriaId: "A810CE8E-3B2C-458D-BAE4-BA3AEC4FA5CA", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, ], cveTags: [], descriptions: [ { lang: "en", value: "Incorrect policy enforcement in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows attackers with local or physical access to bypass enforcement of integrity protections via manipulation of firmware storage.", }, { lang: "es", value: "Cumplimiento incorrecto de políticas en el firmware del sistema para Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH en versiones BN0049 e inferiores permite que atacantes con acceso local o físico omitan el cumplimiento de protecciones de integridad mediante la manipulación del almacenamiento del firmware.", }, ], id: "CVE-2017-5722", lastModified: "2024-11-21T03:28:17.983", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "MEDIUM", accessVector: "LOCAL", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 4.4, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:L/AC:M/Au:N/C:P/I:P/A:P", version: "2.0", }, exploitabilityScore: 3.4, impactScore: 6.4, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV30: [ { cvssData: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "HIGH", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", version: "3.0", }, exploitabilityScore: 0.8, impactScore: 6, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2017-10-11T00:29:00.333", references: [ { source: "secure@intel.com", tags: [ "Third Party Advisory", "VDB Entry", ], url: "http://www.securityfocus.com/bid/101236", }, { source: "secure@intel.com", tags: [ "Patch", "Third Party Advisory", ], url: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", "VDB Entry", ], url: "http://www.securityfocus.com/bid/101236", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Third Party Advisory", ], url: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr", }, ], sourceIdentifier: "secure@intel.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-269", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2017-10-11 00:29
Modified
2024-11-21 03:28
Severity ?
Summary
Insecure platform configuration in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows an attacker with physical presence to run arbitrary code via unauthorized firmware modification during BIOS Recovery.
References
| ▼ | URL | Tags | |
|---|---|---|---|
| secure@intel.com | http://www.securityfocus.com/bid/101257 | Third Party Advisory, VDB Entry | |
| secure@intel.com | https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr | Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/101257 | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr | Patch, Third Party Advisory |
Impacted products
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", matchCriteriaId: "28E7338F-E97C-4C2A-8320-0BAEA1FB365C", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "91A1F20D-B5A6-4010-B94B-399329B426FC", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "2D356830-1DBB-43DE-A7E9-6A777EE39FA8", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "311F7D11-90D4-4702-9767-2C8540783937", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "2D6F051E-D237-4F87-B802-0DC0579E242F", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "E5F63727-A885-4D30-AF0D-7041160D807F", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", matchCriteriaId: "D44A0DD6-9FA9-4116-BB65-DC92F67412C4", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", matchCriteriaId: "68B87539-80FB-4204-82AF-5284B6E16190", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", matchCriteriaId: "776638A5-1CB9-4706-A8DD-8DBEEC0F0A1A", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i7bnh_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", matchCriteriaId: "775C4FDA-94EE-47D7-8940-0FECC60DB1C8", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i7bnh:-:*:*:*:*:*:*:*", matchCriteriaId: "ACBE1C0D-69EF-45B5-9E70-C4DBD0A401BF", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", matchCriteriaId: "3C540E10-88AA-4EFF-99DE-4BE606A1C734", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "46AC578B-5063-47D7-887C-040B7DDAE41B", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "EDF95B5C-C4EF-4CF3-84C7-4789F79F7AB5", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "0A8293A0-3A36-41BF-AC70-CC48C5A93B8B", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "AFAE844D-523B-45EA-83D9-B97810245819", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "FC2C1007-EC35-4624-9EF7-325EFB9D51A4", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", matchCriteriaId: "AF3DCB3E-C437-428C-AAFB-C5D57DD1443E", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", matchCriteriaId: "AA87C97F-FC0B-42E2-8EBC-C39C778BD36F", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", matchCriteriaId: "36E5D240-4014-44BC-8440-C92FABCB4417", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnh_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", matchCriteriaId: "FFA85BEE-61CB-4033-B6B4-6A32AD1F2C67", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i5bnh:-:*:*:*:*:*:*:*", matchCriteriaId: "CA8FFEF7-5140-44F6-91CD-B9468F20692F", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", matchCriteriaId: "08C0B75D-2A2C-4437-AE72-35BFB2C6F41A", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "F074D06A-B828-49EA-B1C2-0FCF71A83E4B", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "BBF75171-EF1D-4ADF-9125-4C9B4EF347CB", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "C28D8E17-7A98-4C5E-A9AB-5B56826460DF", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "B39A87F9-9C0B-4CD9-82EB-C7220F02BED9", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "2316FA59-3FAB-4D68-8016-F82649AA56A0", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", matchCriteriaId: "A5C9EEAE-8DA8-485F-ACFE-062F8062DCFA", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", matchCriteriaId: "7F4DEB05-EC57-465F-9721-BA2D82955982", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", matchCriteriaId: "468CF14F-D5F7-47EB-BCD1-628BBEBFD648", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i5bnk_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", matchCriteriaId: "265BB588-1CB8-4F2C-B716-58FF6A6B0EB4", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i5bnk:-:*:*:*:*:*:*:*", matchCriteriaId: "EBF91B19-0FA1-4CE8-B729-A09612466725", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", matchCriteriaId: "0367FBB9-1E31-4BED-8E6F-AF4275D372AA", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "8361A20E-EB65-4C6C-9977-6A988D7414D0", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "0777E301-8278-4937-9B9C-0560985A1B85", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "73FE5A99-12CA-400F-9B7A-CCC477FF5192", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "509EE9C7-C13E-4EEC-ABC1-403B15A6DED0", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "BE740CB3-7D90-4B00-B3FF-116B74EA5249", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", matchCriteriaId: "CBE67A7F-9ABB-47D9-A576-4FE7E665477E", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", matchCriteriaId: "21CBBF36-F05A-4190-9C11-6DA2B7CA503F", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", matchCriteriaId: "BE611A09-0D29-4163-8616-7A7CC12C6ADC", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnh_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", matchCriteriaId: "7143E57A-504B-414B-B22C-F1C8FB929E22", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i3bnh:-:*:*:*:*:*:*:*", matchCriteriaId: "DC5EC4E6-B529-48DC-9251-73633807E4A7", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:ayaplcel.86a.0041:*:*:*:*:*:*:*", matchCriteriaId: "22DDB889-967C-4924-8B5C-92B2D561E55A", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:bnkbl357.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "EED1ABBA-E6F0-4E1C-A327-220508EBE960", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:ccsklm5v.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "6915BBE5-8F58-4652-A5EC-B0153628F696", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:ccsklm30.86a.0052:*:*:*:*:*:*:*", matchCriteriaId: "3B550844-0CFE-465C-B383-05FA21253F1E", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:dnkbli5v.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "C80B6A2B-A318-4A6C-9EDE-C749019E911B", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:dnkbli30.86a.0026:*:*:*:*:*:*:*", matchCriteriaId: "11E0F74B-EEA3-4656-8CF2-318E0EA42183", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:kyskli70.86a.0050:*:*:*:*:*:*:*", matchCriteriaId: "0A860E39-FB9A-4288-99B0-2692995BCD1B", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:rybdwi35.86a.0366:*:*:*:*:*:*:*", matchCriteriaId: "0F212139-E8B6-4CFE-856B-BCD9E2EBC1C4", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:syskli35.86a.0062:*:*:*:*:*:*:*", matchCriteriaId: "A017F978-9BD3-4830-85EC-538F0E513F65", vulnerable: true, }, { criteria: "cpe:2.3:o:intel:nuc7i3bnk_firmware:tybyt20h.86a.0015:*:*:*:*:*:*:*", matchCriteriaId: "AA512D48-426B-4C13-809A-719AA2B241FF", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:intel:nuc7i3bnk:-:*:*:*:*:*:*:*", matchCriteriaId: "A810CE8E-3B2C-458D-BAE4-BA3AEC4FA5CA", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, ], cveTags: [], descriptions: [ { lang: "en", value: "Insecure platform configuration in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows an attacker with physical presence to run arbitrary code via unauthorized firmware modification during BIOS Recovery.", }, { lang: "es", value: "Configuración de la plataforma insegura en el firmware del sistema para Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH en versiones BN0049 e inferiores permite que un atacante con presencia física ejecute código arbitrario mediante la modificación sin autorización del firmware durante BIOS Recovery.", }, ], id: "CVE-2017-5701", lastModified: "2024-11-21T03:28:15.037", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "MEDIUM", accessVector: "LOCAL", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 4.4, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:L/AC:M/Au:N/C:P/I:P/A:P", version: "2.0", }, exploitabilityScore: 3.4, impactScore: 6.4, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV30: [ { cvssData: { attackComplexity: "HIGH", attackVector: "PHYSICAL", availabilityImpact: "HIGH", baseScore: 7.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H", version: "3.0", }, exploitabilityScore: 0.5, impactScore: 6, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2017-10-11T00:29:00.270", references: [ { source: "secure@intel.com", tags: [ "Third Party Advisory", "VDB Entry", ], url: "http://www.securityfocus.com/bid/101257", }, { source: "secure@intel.com", tags: [ "Patch", "Third Party Advisory", ], url: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", "VDB Entry", ], url: "http://www.securityfocus.com/bid/101257", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Third Party Advisory", ], url: "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr", }, ], sourceIdentifier: "secure@intel.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "NVD-CWE-noinfo", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }