What is the vulnerability ID for this vulnerability?

The vulnerability ID for this vulnerability is CVE-2022-31477.

What is the severity of CVE-2022-31477?

The severity of CVE-2022-31477 is medium.

Which software is affected by CVE-2022-31477?

The Intel NUC BIOS firmware versions listed in the affected_software field are affected by CVE-2022-31477.

How can a privileged user potentially enable information disclosure via local access?

A privileged user can potentially enable information disclosure via local access by exploiting the improper initialization in some Intel(R) NUC BIOS firmware.

Where can I find more information about CVE-2022-31477?

You can find more information about CVE-2022-31477 on the Intel Security Center advisory page: [Intel SA-00777](https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html).

Vulnerability/
CVE-2022-31477

medium

4.4

CWE

665

10/5/2023

3/8/2024

CVE-2022-31477

First published: Wed May 10 2023(Updated: )

Improper initialization for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access.

Credit: secure@intel.com

Affected Software	Affected Version	How to fix
Intel Nuc11pahi3 Firmware
Intel Nuc11pahi3
Intel Nuc11pahi30z Firmware
Intel Nuc11pahi30z
Intel Nuc11paki3 Firmware
Intel Nuc11paki3
Intel Nuc11pahi5 Firmware
Intel Nuc11pahi5
Intel Nuc11pahi50z Firmware
Intel Nuc11pahi50z
Intel Nuc11paki5 Firmware
Intel Nuc11paki5
Intel Nuc11paqi50wa Firmware
Intel Nuc11paqi50wa
Intel Nuc11pahi7 Firmware
Intel Nuc11pahi7
Intel Nuc11pahi70z Firmware
Intel Nuc11pahi70z
Intel Nuc11paki7 Firmware
Intel Nuc11paki7
Intel Nuc11paqi70qa Firmware
Intel Nuc11paqi70qa
Intel Cm11ebi38w Firmware
Intel Cm11ebi38w
Intel Cm11ebi58w Firmware
Intel Cm11ebi58w
Intel Cm11ebi716w Firmware
Intel Cm11ebi716w
Intel Cm11ebc4w Firmware
Intel Cm11ebc4w
Intel Lapbc510 Firmware
Intel Lapbc510
Intel Lapbc710 Firmware
Intel Lapbc710
Intel Lapkc51e Firmware
Intel Lapkc51e
Intel Lapkc71e Firmware
Intel Lapkc71e
Intel Lapkc71f Firmware
Intel Lapkc71f
Intel Nuc11btmi7 Firmware
Intel Nuc11btmi7
Intel Nuc11dbbi7 Firmware
Intel Nuc11dbbi7
Intel Nuc11btmi9 Firmware
Intel Nuc11btmi9
Intel Nuc11dbbi9 Firmware
Intel Nuc11dbbi9
Intel Nuc11phki7c Firmware
Intel Nuc11phki7c
Intel Nuc11phki7caa Firmware
Intel Nuc11phki7caa
Intel Nuc11tnkv50z Firmware
Intel Nuc11tnkv50z
Intel Nuc11tnhv70l Firmware
Intel Nuc11tnhv70l
Intel Nuc11tnhv50l Firmware
Intel Nuc11tnhv50l
Intel Nuc11tnkv5 Firmware
Intel Nuc11tnkv5
Intel Nuc11tnkv7 Firmware
Intel Nuc11tnkv7
Intel Nuc11tnhv5 Firmware
Intel Nuc11tnhv5
Intel Nuc11tnhv7 Firmware
Intel Nuc11tnhv7
Intel Nuc11tnbv7 Firmware
Intel Nuc11tnbv7
Intel Nuc11tnbv5 Firmware
Intel Nuc11tnbv5

Remedy

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html

Never miss a vulnerability like this again

Reference Links

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html

Frequently Asked Questions

What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2022-31477.
What is the severity of CVE-2022-31477?
The severity of CVE-2022-31477 is medium.
Which software is affected by CVE-2022-31477?
The Intel NUC BIOS firmware versions listed in the affected_software field are affected by CVE-2022-31477.
How can a privileged user potentially enable information disclosure via local access?
A privileged user can potentially enable information disclosure via local access by exploiting the improper initialization in some Intel(R) NUC BIOS firmware.
Where can I find more information about CVE-2022-31477?
You can find more information about CVE-2022-31477 on the Intel Security Center advisory page: [Intel SA-00777](https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html).