high
7.8
CWE
20
Advisory Published
Updated

CVE-2022-34147: Input Validation

First published: Wed May 10 2023(Updated: )

Improper input validation in BIOS firmware for some Intel(R) NUC 9 Extreme Laptop Kits, Intel(R) NUC Performance Kits, Intel(R) NUC Performance Mini PC, Intel(R) NUC 8 Compute Element, Intel(R) NUC Pro Kit, Intel(R) NUC Pro Board, and Intel(R) NUC Compute Element may allow a privileged user to potentially enable escalation of privilege via local access.

Credit: secure@intel.com

Affected SoftwareAffected VersionHow to fix
Intel lapqc71a<qccfl357.0158
Intel lapqc71a firmware
Intel lapqc71b<qccfl357.0158
Intel lapqc71b firmware
Intel lapqc71c firmware<qccfl357.0158
Intel lapqc71c firmware
Intel lapqc71d<qccfl357.0158
Intel lapqc71d firmware
Intel NUC 10i3FNH Firmware<fncml357.0059
Intel NUC 10i3FNH Firmware
Intel NUC 10 i3 FNHF<fncml357.0059
Intel NUC10i3FNHF Firmware
Intel NUC 10i3FNHFA Firmware<fncml357.0059
Intel NUC 10i3FNHFA Firmware
Intel NUC 10 Performance Kit NUC10i3FNHJA Firmware<fncml357.0059
Intel NUC 10 Performance Mini PC
Intel NUC 10i3FNH Firmware<fncml357.0059
Intel NUC 10 i3 FNHS Firmware
Intel NUC10i3FNK Firmware<fncml357.0059
Intel NUC10i3FNK Firmware
Intel NUC 10 i3 FNKN<fncml357.0059
Intel NUC10i3FNKN Firmware
Intel NUC 10i5FNHN Firmware<fncml357.0059
Intel NUC 10 i5 FNH
Intel NUC 10 (nuc10i5fnhca) Firmware<fncml357.0059
Intel NUC 10 Performance Mini PC (NUC10i5FNHCA)
Intel NUC 10i5FNHF Firmware<fncml357.0059
Intel NUC 10i5FNHF Firmware
Intel NUC 10 i5 FNHA Firmware<fncml357.0059
Intel NUC 10 Performance Kit NUC10i5FNHJA
Intel NUC 10 Performance Mini PC (nuc10i5fnhj) Firmware<fncml357.0059
Intel NUC 10 Performance Mini PC (nuc10i5fnhj) Firmware
Intel NUC 10i5FNHN Firmware<fncml357.0059
Intel NUC 10 i5 FN
Intel NUC 10i5FNK Firmware<fncml357.0059
Intel NUC 10 Compute Element NUC10i5FNK
Intel NUC 10i5FNK Firmware<fncml357.0059
Intel nuc10i5fnkn
Intel NUC 10 i5 FNKPA Firmware<fncml357.0059
Intel NUC 10 Performance Mini PC (NUC10i5FNK)
Intel NUC 10i5FNKP Firmware<fncml357.0059
Intel NUC 10 Performance kit (nuc10i5fnkp)
Intel NUC 10 i7 FN He<fncml357.0059
Intel NUC 10 i7 FN He
Intel NUC 10 i7 FNHA<fncml357.0059
Intel NUC 10 i7 FNHA
Intel NUC 10 i7 FNHc Firmware<fncml357.0059
Intel NUC 10 i7 FNHc Firmware
Intel NUC 10 i7 FNHA Firmware<fncml357.0059
Intel nuc10i7fnhja
Intel NUC 10 i7 FNHN Firmware<fncml357.0059
Intel NUC 10 i7 FNHN Firmware
Intel NUC 10i7FHN Firmware<fncml357.0059
Intel NUC 10i7FHN Firmware
Intel NUC10i7FNKN Firmware<fncml357.0059
Intel NUC10i7FNKN Firmware
Intel NUC 10i7FNKP Firmware<fncml357.0059
Intel NUC 10i7 FNKP
Intel NUC 10 Performance Kit NUC10i7FNKPA Firmware<fncml357.0059
Intel NUC 10 Performance Kit - NUC10i7FNK
Intel cm8i3cb4n<cbwhl357.0101
Intel CM8I3CB4N Firmware
Intel cm8i5cb8n<cbwhl357.0101
Intel cm8i5cb8n firmware
Intel cm8i7cb8n<cbwhl357.0101
Intel cm8i7cb8n firmware
Intel cm8ccb4r<cbwhl357.0101
Intel cm8ccb4r firmware
Intel CM8PCB4R<cbwhl357.0101
Intel CM8PCB4R
Intel NUC 8i3 PNB<pnwhl357.0050
Intel NUC 8i3 PNB
Intel NUC 8i3PNH<pnwhl357.0050
Intel NUC 8i3PNH
Intel NUC 8 i3 PNK Firmware<pnwhl357.0050
Intel NUC 8 Performance Kit NUC8i3PNK
Intel NUC9i5QN Firmware<qxcfl579.0071
Intel NUC9i5QN Firmware
Intel NUC 9i7QN Firmware<qxcfl579.0071
Intel NUC 9 Extreme
Intel nuc9i9qn firmware<qxcfl579.0071
Intel NUC 9i9QN

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2022-34147?

    The severity of CVE-2022-34147 is rated as moderate due to improper input validation in BIOS firmware.

  • How do I fix CVE-2022-34147?

    To fix CVE-2022-34147, users should update the affected Intel BIOS firmware to the latest version provided by Intel.

  • Which Intel systems are affected by CVE-2022-34147?

    CVE-2022-34147 affects various Intel NUC systems, including models from the NUC 9 Extreme, NUC 10, and NUC 8 series.

  • Is it safe to continue using devices affected by CVE-2022-34147 until I can update?

    Using affected devices without applying the firmware update may pose security risks, so it is advisable to update as soon as possible.

  • Who is impacted by CVE-2022-34147?

    Privileged users of the affected Intel systems are impacted by CVE-2022-34147 due to potential unauthorized access stemming from the vulnerability.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203