What is CVE-2023-32617?

CVE-2023-32617 is a vulnerability in the BIOS firmware of some Intel(R) NUC Rugged Kit, Intel(R) NUC Kit, and Intel(R) Compute Element that allows a privileged user to potentially enable escalation of privilege via local access.

What is the severity of CVE-2023-32617?

The severity of CVE-2023-32617 is high, with a severity value of 6.7.

Which software is affected by CVE-2023-32617?

The affected software includes Intel Nuc Kit Nuc7i7bnhx1 Firmware, Intel Nuc 7 Home Nuc7i5bnkp Firmware, Intel Nuc 7 Home Nuc7i3bnhxf Firmware, Intel Nuc 7 Enthusiast Nuc7i7bnkq Firmware, Intel Nuc Kit Nuc7i3bnhx1 Firmware, Intel Nuc 7 Enthusiast Nuc7i7bnhxg Firmware, Intel Nuc 7 Home Nuc7i5bnhxf Firmware, Intel Nuc Kit Nuc7i5bnhx1 Firmware, Intel Nuc Board Nuc7i7bnb Firmware, Intel Nuc Board Nuc7i5bnb Firmware, Intel Nuc Board Nuc7i3bnb Firmware, Intel Nuc Kit Nuc7i5bnh Firmware, Intel Nuc Kit Nuc7i3bnk Firmware, Intel Nuc Kit Nuc7i5bnk Firmware, Intel Nuc Kit Nuc7i7bnh Firmware, Intel Nuc Kit Nuc7i3bnh Firmware, Intel Nuc 8 Rugged Kit Nuc8cchkrn Firmware, Intel Nuc 8 Rugged Board Nuc8cchbn Firmware, Intel Nuc 8 Rugged Kit Nuc8cchkr Firmware, Intel Nuc Board Nuc8cchb Firmware, Intel Nuc Kit Nuc6cayh Firmware, Intel Nuc Kit Nuc6cays Firmware, and Intel Compute Stick Stk2mv64cc Firmware.

How can I fix CVE-2023-32617?

To fix CVE-2023-32617, it is recommended to update the BIOS firmware of the affected Intel NUC devices to the latest version provided by Intel.

Where can I find more information about CVE-2023-32617?

You can find more information about CVE-2023-32617 on the Intel Security Center advisory page: [Intel-SA-00917](http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00917.html).

Vulnerability/
CVE-2023-32617

high

8.2

CWE

11/8/2023

2/8/2024

CVE-2023-32617: Input Validation

First published: Fri Aug 11 2023(Updated: )

Improper input validation in some Intel(R) NUC Rugged Kit, Intel(R) NUC Kit and Intel(R) Compute Element BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access.

Credit: secure@intel.com secure@intel.com

Affected Software	Affected Version	How to fix
Intel NUC kit NUC7i7BNHX1
Intel NUC kit NUC7i7BNHX1 firmware
Intel NUC 7 Home a Mini PC NUC7i5BNKP Firmware
Intel NUC 7 Home - NUC7i5BNKP
Intel NUC 7 Home Mini PC NUC7i3BNHXF Firmware
Intel NUC 7 Home NUC7i3BNHXF Firmware
Intel NUC7i7BNKQ Firmware
Intel NUC 7 Enthusiast NUC7i7BNKQ Firmware
Intel NUC7i3BNHX1 Firmware
Intel NUC kit NUC7i3BNHX1 firmware
Intel NUC 7 Enthusiast PC NUC7i7BNHXG Firmware
Intel NUC 7 Enthusiast NUC7i7BNHXG Firmware
Intel NUC 7 home a mini pc nuc7i5bnhxf firmware
Intel NUC 7 Home a Mini PC NUC7i5BNHXF
Intel NUC kit NUC7i5BNHx1
Intel NUC 7i5BNHX1
Intel NUC7i7BNB Firmware
Intel NUC Board NUC7i7BNB
Intel NUC Board NUC7i5BNB
Intel NUC Board NUC7i5BNB Firmware
Intel NUC7i3BNB Firmware
Intel NUC Board NUC7i3BNB Firmware
Intel NUC Kit NUC7i5BNH
Intel NUC Kit NUC7i5BNH
Intel NUC7i3BNK Firmware
Intel NUC Kit NUC7i3BNK Firmware
Intel NUC Kit NUC7i5BNK
Intel NUC Kit NUC7i5BNK Firmware
Intel NUC kit NUC7i7BNH
Intel NUC kit NUC7i7BNH firmware
Intel NUC Kit NUC7i3BNH
Intel NUC kit NUC7i3BNH firmware
Intel NUC 8 Rugged Kit
Intel NUC 8 Rugged Kit
Intel NUC 8 Rugged Board nuc8cchbn
Intel NUC 8 Rugged Board
Intel NUC Rugged Kit NUC8CCHKR
Intel NUC Rugged Kit NUC8CCHKR
Intel NUC 8 CCHB Firmware
Intel NUC 8 CCHB Firmware
Intel NUC6CAYH Firmware
Intel NUC kit nuc6cayh firmware
Intel NUC kit NUC6CAYS
Intel NUC6CAYS Firmware
Intel Compute Stick Firmware
Intel Compute Stick Firmware

Never miss a vulnerability like this again

Reference Links

http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00917.html

Frequently Asked Questions

What is CVE-2023-32617?
CVE-2023-32617 is a vulnerability in the BIOS firmware of some Intel(R) NUC Rugged Kit, Intel(R) NUC Kit, and Intel(R) Compute Element that allows a privileged user to potentially enable escalation of privilege via local access.
What is the severity of CVE-2023-32617?
The severity of CVE-2023-32617 is high, with a severity value of 6.7.
Which software is affected by CVE-2023-32617?
The affected software includes Intel Nuc Kit Nuc7i7bnhx1 Firmware, Intel Nuc 7 Home Nuc7i5bnkp Firmware, Intel Nuc 7 Home Nuc7i3bnhxf Firmware, Intel Nuc 7 Enthusiast Nuc7i7bnkq Firmware, Intel Nuc Kit Nuc7i3bnhx1 Firmware, Intel Nuc 7 Enthusiast Nuc7i7bnhxg Firmware, Intel Nuc 7 Home Nuc7i5bnhxf Firmware, Intel Nuc Kit Nuc7i5bnhx1 Firmware, Intel Nuc Board Nuc7i7bnb Firmware, Intel Nuc Board Nuc7i5bnb Firmware, Intel Nuc Board Nuc7i3bnb Firmware, Intel Nuc Kit Nuc7i5bnh Firmware, Intel Nuc Kit Nuc7i3bnk Firmware, Intel Nuc Kit Nuc7i5bnk Firmware, Intel Nuc Kit Nuc7i7bnh Firmware, Intel Nuc Kit Nuc7i3bnh Firmware, Intel Nuc 8 Rugged Kit Nuc8cchkrn Firmware, Intel Nuc 8 Rugged Board Nuc8cchbn Firmware, Intel Nuc 8 Rugged Kit Nuc8cchkr Firmware, Intel Nuc Board Nuc8cchb Firmware, Intel Nuc Kit Nuc6cayh Firmware, Intel Nuc Kit Nuc6cays Firmware, and Intel Compute Stick Stk2mv64cc Firmware.
How can I fix CVE-2023-32617?
To fix CVE-2023-32617, it is recommended to update the BIOS firmware of the affected Intel NUC devices to the latest version provided by Intel.
Where can I find more information about CVE-2023-32617?
You can find more information about CVE-2023-32617 on the Intel Security Center advisory page: [Intel-SA-00917](http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00917.html).

agent/author
agent/type
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/severity
agent/references
agent/description
agent/first-publish-date
agent/event
agent/source
agent/weakness
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-api
agent/tags
agent/softwarecombine
vendor/intel
canonical/intel nuc kit nuc7i7bnhx1
canonical/intel nuc kit nuc7i7bnhx1 firmware
canonical/intel nuc 7 home a mini pc nuc7i5bnkp firmware
canonical/intel nuc 7 home - nuc7i5bnkp
canonical/intel nuc 7 home mini pc nuc7i3bnhxf firmware
canonical/intel nuc 7 home nuc7i3bnhxf firmware
canonical/intel nuc7i7bnkq firmware
canonical/intel nuc 7 enthusiast nuc7i7bnkq firmware
canonical/intel nuc7i3bnhx1 firmware
canonical/intel nuc kit nuc7i3bnhx1 firmware
canonical/intel nuc 7 enthusiast pc nuc7i7bnhxg firmware
canonical/intel nuc 7 enthusiast nuc7i7bnhxg firmware
canonical/intel nuc 7 home a mini pc nuc7i5bnhxf firmware
canonical/intel nuc 7 home a mini pc nuc7i5bnhxf
canonical/intel nuc kit nuc7i5bnhx1
canonical/intel nuc 7i5bnhx1
canonical/intel nuc7i7bnb firmware
canonical/intel nuc board nuc7i7bnb
canonical/intel nuc board nuc7i5bnb
canonical/intel nuc board nuc7i5bnb firmware
canonical/intel nuc7i3bnb firmware
canonical/intel nuc board nuc7i3bnb firmware
canonical/intel nuc kit nuc7i5bnh
canonical/intel nuc7i3bnk firmware
canonical/intel nuc kit nuc7i3bnk firmware
canonical/intel nuc kit nuc7i5bnk
canonical/intel nuc kit nuc7i5bnk firmware
canonical/intel nuc kit nuc7i7bnh
canonical/intel nuc kit nuc7i7bnh firmware
canonical/intel nuc kit nuc7i3bnh
canonical/intel nuc kit nuc7i3bnh firmware
canonical/intel nuc 8 rugged kit
canonical/intel nuc 8 rugged board nuc8cchbn
canonical/intel nuc 8 rugged board
canonical/intel nuc rugged kit nuc8cchkr
canonical/intel nuc 8 cchb firmware
canonical/intel nuc6cayh firmware
canonical/intel nuc kit nuc6cayh firmware
canonical/intel nuc kit nuc6cays
canonical/intel nuc6cays firmware
canonical/intel compute stick firmware