CVE-2022-36372: Buffer Overflow
First published: Fri Aug 11 2023(Updated: )
Improper buffer restrictions in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access.
Credit: secure@intel.com secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Intel NUC 8 Compute Element CM8I3CB4N | ||
| Intel NUC 8 Compute Element CM8I3CB4N Firmware | ||
| Intel NUC 8 Compute Element CM8i5CB8N | ||
| Intel NUC 8 Compute Element CM8I5CB8N Firmware | ||
| Intel cm8i7cb8n firmware | ||
| Intel NUC 8 Compute Element CM8i7CB8N | ||
| Intel NUC 8 Compute Element CM8CCB Firmware | ||
| Intel NUC 8 Compute Element CM8CCB4R Firmware | ||
| Intel NUC 8 Compute Element CM8PCB4R | ||
| Intel NUC 8 Compute Element CM8PCB4R Firmware | ||
| Intel NUC Pro Board NUC8i3PNB Firmware | ||
| Intel NUC Pro Kit NUC8i3PNB Firmware | ||
| Intel NUC Pro Board NUC8i3PNH | ||
| Intel NUC Pro Kit NUC8i3PNH Firmware | ||
| Intel NUC 8 Pro Kit NUC8i3PNK Firmware | ||
| Intel NUC Pro Kit NUC8i3PNK Firmware | ||
| Intel NUC 8i3 PNB | ||
| Intel NUC Pro Board NUC8i3PNB Firmware | ||
| Intel NUC Pro Board NUC8i3PNH | ||
| Intel NUC Pro Board NUC8i3PNH Firmware | ||
| Intel NUC 8 i3 PNK Firmware | ||
| Intel NUC Pro Board NUC8i3PNK Firmware | ||
| Intel NUC 8 CCHB Firmware | ||
| Intel NUC Rugged Kit NUC8CCHB Firmware | ||
| Intel NUC 8 CCHBN Firmware | ||
| Intel NUC 8 CCHBN Firmware | ||
| Intel NUC Rugged Kit NUC8CCHKR | ||
| Intel NUC Rugged Kit NUC8CCHKrN Firmware | ||
| Intel NUC Rugged Kit NUC8CCHKrN Firmware | ||
| Intel NUC Rugged Kit NUC8CCHKrN Firmware | ||
| Intel NUC 9 Pro Compute Element NUC9V7QNB Firmware | ||
| Intel NUC Pro Compute Element NUC9V7QNB Firmware | ||
| Intel NUC9V7QNX Firmware | ||
| Intel NUC Pro Compute Element NUC9V7QNX Firmware | ||
| Intel NUC Pro Compute Element NUC9VXQNB | ||
| Intel NUC Pro Compute Element NUC9V7QNB Firmware | ||
| Intel NUC 9 VXQNX | ||
| Intel NUC 9 Pro Compute Element NUC9VXQNX | ||
| Intel NUC 8 Business NUC8i7HNKQC Firmware | ||
| Intel NUC 8 Business NUC8i7HNKQC Firmware | ||
| Intel NUC 8i7 HVKVAW Firmware | ||
| Intel NUC 8 Business NUC8i7HVKVA | ||
| Intel NUC 8i7 HVKVAW Firmware | ||
| Intel NUC Business NUC8i7HVKVAW Firmware | ||
| Intel NUC Business NUC8i7HVKVA Firmware | ||
| Intel NUC 8 Business NUC8i7HVK | ||
| Intel NUC 8 Business NUC8i7HNK Firmware | ||
| Intel NUC 8 Business NUC8i7HNK | ||
| Intel NUC enthusiast nuc8i7hnkqc firmware | ||
| Intel NUC 8 Enthusiast NUC8i7HNKQC | ||
| Intel NUC 8 Enthusiast NUC8i7HVKVA | ||
| Intel NUC 8 Enthusiast NUC8i7HVKVA | ||
| Intel NUC 8 Enthusiast NUC8i7HVKVAW Firmware | ||
| Intel NUC 8 Enthusiast NUC8i7HVK | ||
| Intel NUC 8 Enthusiast NUC8i7HVK Firmware | ||
| Intel NUC 8 Enthusiast NUC8i7HVK Firmware | ||
| Intel NUC 8 Enthusiast NUC8i7HNK Firmware | ||
| Intel NUC 8 Enthusiast NUC8i7HNK Firmware | ||
| Intel NUC 8i7 HN-KQC Firmware | ||
| Intel NUC kit nuc8i7hnkqc firmware | ||
| Intel NUC Business NUC8i7HVKVA Firmware | ||
| Intel NUC 8 i7 HVKVA | ||
| Intel NUC 8i7 HVKVAW Firmware | ||
| Intel NUC kit nuc8i7hvkvaw | ||
| Intel NUC 8i7HVK Firmware | ||
| Intel NUC Kit NUC8i7HVK | ||
| Intel NUC8i7HNK Firmware | ||
| Intel NUC kit NUC8i7HNK |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2022-36372?
CVE-2022-36372 has a severity rating that indicates a potential escalation of privilege for privileged users.
How do I fix CVE-2022-36372?
Fixing CVE-2022-36372 involves updating the Intel NUC BIOS firmware to the latest version that addresses this vulnerability.
What systems are affected by CVE-2022-36372?
CVE-2022-36372 affects various models of Intel NUC 8 Compute Element and some related firmware versions.
Is local access required to exploit CVE-2022-36372?
Yes, local access is required for a privileged user to exploit CVE-2022-36372 and potentially escalate their privileges.
Who is responsible for mitigating CVE-2022-36372?
Users and administrators of affected Intel NUC systems are responsible for applying the necessary firmware updates to mitigate CVE-2022-36372.
- agent/author
- agent/type
- agent/references
- agent/severity
- agent/weakness
- agent/remedy
- agent/description
- agent/first-publish-date
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/tags
- collector/nvd-api
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/softwarecombine
- vendor/intel
- canonical/intel nuc 8 compute element cm8i3cb4n
- canonical/intel nuc 8 compute element cm8i3cb4n firmware
- canonical/intel nuc 8 compute element cm8i5cb8n
- canonical/intel nuc 8 compute element cm8i5cb8n firmware
- canonical/intel cm8i7cb8n firmware
- canonical/intel nuc 8 compute element cm8i7cb8n
- canonical/intel nuc 8 compute element cm8ccb firmware
- canonical/intel nuc 8 compute element cm8ccb4r firmware
- canonical/intel nuc 8 compute element cm8pcb4r
- canonical/intel nuc 8 compute element cm8pcb4r firmware
- canonical/intel nuc pro board nuc8i3pnb firmware
- canonical/intel nuc pro kit nuc8i3pnb firmware
- canonical/intel nuc pro board nuc8i3pnh
- canonical/intel nuc pro kit nuc8i3pnh firmware
- canonical/intel nuc 8 pro kit nuc8i3pnk firmware
- canonical/intel nuc pro kit nuc8i3pnk firmware
- canonical/intel nuc 8i3 pnb
- canonical/intel nuc pro board nuc8i3pnh firmware
- canonical/intel nuc 8 i3 pnk firmware
- canonical/intel nuc pro board nuc8i3pnk firmware
- canonical/intel nuc 8 cchb firmware
- canonical/intel nuc rugged kit nuc8cchb firmware
- canonical/intel nuc 8 cchbn firmware
- canonical/intel nuc rugged kit nuc8cchkr
- canonical/intel nuc rugged kit nuc8cchkrn firmware
- canonical/intel nuc 9 pro compute element nuc9v7qnb firmware
- canonical/intel nuc pro compute element nuc9v7qnb firmware
- canonical/intel nuc9v7qnx firmware
- canonical/intel nuc pro compute element nuc9v7qnx firmware
- canonical/intel nuc pro compute element nuc9vxqnb
- canonical/intel nuc 9 vxqnx
- canonical/intel nuc 9 pro compute element nuc9vxqnx
- canonical/intel nuc 8 business nuc8i7hnkqc firmware
- canonical/intel nuc 8i7 hvkvaw firmware
- canonical/intel nuc 8 business nuc8i7hvkva
- canonical/intel nuc business nuc8i7hvkvaw firmware
- canonical/intel nuc business nuc8i7hvkva firmware
- canonical/intel nuc 8 business nuc8i7hvk
- canonical/intel nuc 8 business nuc8i7hnk firmware
- canonical/intel nuc 8 business nuc8i7hnk
- canonical/intel nuc enthusiast nuc8i7hnkqc firmware
- canonical/intel nuc 8 enthusiast nuc8i7hnkqc
- canonical/intel nuc 8 enthusiast nuc8i7hvkva
- canonical/intel nuc 8 enthusiast nuc8i7hvkvaw firmware
- canonical/intel nuc 8 enthusiast nuc8i7hvk
- canonical/intel nuc 8 enthusiast nuc8i7hvk firmware
- canonical/intel nuc 8 enthusiast nuc8i7hnk firmware
- canonical/intel nuc 8i7 hn-kqc firmware
- canonical/intel nuc kit nuc8i7hnkqc firmware
- canonical/intel nuc 8 i7 hvkva
- canonical/intel nuc kit nuc8i7hvkvaw
- canonical/intel nuc 8i7hvk firmware
- canonical/intel nuc kit nuc8i7hvk
- canonical/intel nuc8i7hnk firmware
- canonical/intel nuc kit nuc8i7hnk