CVE-2022-36370
First published: Fri Nov 11 2022(Updated: )
Improper authentication in BIOS firmware for some Intel(R) NUC Boards and Intel(R) NUC Kits before version MYi30060 may allow a privileged user to potentially enable escalation of privilege via local access.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Intel Nuc Kit Nuc5i3myhe Firmware | <myi30060 | |
| Intel Nuc Kit Nuc5i3myhe | ||
| Intel Nuc Board Nuc5i3mybe Firmware | <myi30060 | |
| Intel Nuc Board Nuc5i3mybe |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this security advisory?
The vulnerability ID for this security advisory is CVE-2022-36370.
What is the severity of CVE-2022-36370?
The severity of CVE-2022-36370 is 7.8 (High).
Which Intel NUC Boards and Kits are affected by CVE-2022-36370?
The Intel NUC Boards and Kits affected by CVE-2022-36370 are NUC5i3MYHE and NUC5i3MYBE.
What is the potential impact of CVE-2022-36370?
The potential impact of CVE-2022-36370 is that a privileged user may be able to enable escalation of privilege via local access.
How can I fix the CVE-2022-36370 vulnerability?
To fix the CVE-2022-36370 vulnerability, you should update the BIOS firmware for the affected Intel NUC Boards and Kits to version MYi30060 or later.
- collector/nvd-index
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/tags
- agent/type
- agent/description
- agent/event
- agent/remedy
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/intel
- canonical/intel nuc kit nuc5i3myhe firmware
- canonical/intel nuc kit nuc5i3myhe
- canonical/intel nuc board nuc5i3mybe firmware
- canonical/intel nuc board nuc5i3mybe