CVE-2022-36339: Input Validation
First published: Wed May 10 2023(Updated: )
Improper input validation in firmware for Intel(R) NUC 8 Compute Element, Intel(R) NUC 11 Compute Element, Intel(R) NUC 12 Compute Element may allow a privileged user to enable escalation of privilege via local access.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Intel CM8I3CB4N | <cbwhl357.0101 | |
| Intel CM8I3CB4N | ||
| Intel NUC8i5BEK Firmware | <cbwhl357.0101 | |
| Intel NUC 8i5BEH | ||
| Intel CM8I7CB8N Firmware | <cbwhl357.0101 | |
| Intel NUC 8i7 Behga | ||
| Intel CM8CCB4R Firmware | <cbwhl357.0101 | |
| Intel CM8CCB4R Firmware | ||
| Intel CM8PCB4R | <cbwhl357.0101 | |
| Intel NUC 8 Compute Element CM8PCB4R | ||
| Intel CM11EBI38W | <ebtgl357.0071 | |
| Intel Compute Module CM11EBI38W | ||
| Intel CM11EBI58W | <ebtgl357.0071 | |
| Intel NUC 11 Compute Element CM11EBI58W | ||
| Intel CM11EBI716W Firmware | <ebtgl357.0071 | |
| Intel cm11ebi716w firmware | ||
| Intel NUC 11 Compute Element CM11EBC4W Firmware | <ebtgl357.0071 | |
| Intel cm11ebc4w firmware | ||
| Intel NUC 12 Compute Element ELM12HBI3 Firmware | <hbadl357.0052 | |
| Intel ELM12HBI3 Firmware | ||
| Intel Elm12HBI5 | <hbadl357.0052 | |
| Intel Elm12HBI5 | ||
| Intel ELM12HBI7 Firmware | <hbadl357.0052 | |
| Intel ELM12HBI7 Firmware | ||
| Intel ELM12HBC | <hbadl357.0052 | |
| Intel NUC 12 Compute Element ELM12HBC |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2022-36339.
What is the severity of CVE-2022-36339?
The severity of CVE-2022-36339 is high.
Which software is affected by CVE-2022-36339?
Intel(R) NUC 8 Compute Element, Intel(R) NUC 11 Compute Element, and Intel(R) NUC 12 Compute Element firmware versions cbwhl357.0101 and earlier are affected by CVE-2022-36339.
How does CVE-2022-36339 enable escalation of privilege?
CVE-2022-36339 allows a privileged user to enable escalation of privilege via local access.
How can I fix CVE-2022-36339?
To fix CVE-2022-36339, update the firmware of your Intel NUC 8, NUC 11, or NUC 12 Compute Element to a version later than cbwhl357.0101.
- agent/type
- agent/references
- agent/severity
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/weakness
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/intel
- canonical/intel cm8i3cb4n
- canonical/intel nuc8i5bek firmware
- canonical/intel nuc 8i5beh
- canonical/intel cm8i7cb8n firmware
- canonical/intel nuc 8i7 behga
- canonical/intel cm8ccb4r firmware
- canonical/intel cm8pcb4r
- canonical/intel nuc 8 compute element cm8pcb4r
- canonical/intel cm11ebi38w
- canonical/intel compute module cm11ebi38w
- canonical/intel cm11ebi58w
- canonical/intel nuc 11 compute element cm11ebi58w
- canonical/intel cm11ebi716w firmware
- canonical/intel nuc 11 compute element cm11ebc4w firmware
- canonical/intel cm11ebc4w firmware
- canonical/intel nuc 12 compute element elm12hbi3 firmware
- canonical/intel elm12hbi3 firmware
- canonical/intel elm12hbi5
- canonical/intel elm12hbi7 firmware
- canonical/intel elm12hbc
- canonical/intel nuc 12 compute element elm12hbc