CVE List

CVE-2020-12336

Critical 7.8

Insecure default variable initialization in firmware for some Intel(R) NUCs may allow an authenticated user to potentially enable escalation of privilege via local access.

Published November 13, 2020.

Affected software

Intel Nuc Board Nuc8cchb Firmware

Intel Nuc 8 Rugged Kit Nuc8cchkr Firmware

Intel Nuc 8 Mainstream-g Kit Nuc8i7inh Firmware

Intel Nuc 8 Mainstream-g Kit Nuc8i5inh Firmware

Intel Nuc 8 Mainstream-g Mini Pc Nuc8i7inh Firmware

Intel Nuc 8 Pro Mini Pc Nuc8i3pnk Firmware

Intel Nuc Kit H26998-500 Firmware

Intel Nuc 8 Pro Kit Nuc8i3pnh Firmware

Intel Nuc 9 Pro Kit Nuc9v7qnx Firmware

Intel Nuc Kit H26998-403 Firmware

Intel Nuc Kit H26998-404 Firmware

Intel Nuc Board H27002-404 Firmware

Intel Nuc Kit H26998-402 Firmware

Intel Nuc 8 Pro Kit Nuc8i3pnk Firmware

Intel Nuc Board H27002-400 Firmware

Intel Nuc Kit H26998-401 Firmware

Intel Nuc Board H27002-402 Firmware

Intel Nuc Board H27002-500 Firmware

Intel Nuc 8 Pro Board Nuc8i3pnb Firmware

Intel Nuc 8 Mainstream-g Mini Pc Nuc8i5inh Firmware

Intel Nuc 9 Pro Kit Nuc9vxqnx Firmware

Intel Nuc Kit H26998-405 Firmware

Intel Nuc Board H27002-401 Firmware

Reference links

Sign Up for Alerts