CVE-2024-34163: Input Validation
First published: Wed Aug 14 2024(Updated: )
Improper input validation in firmware for some Intel(R) NUC may allow a privileged user to potentially enableescalation of privilege via local access.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| Intel NUC Laptop Kit LAPBC510 Firmware | <0083 | |
| Intel NUC Laptop Kit LAPBC510 Firmware | ||
| All of | ||
| Intel lapbc710 firmware | <0083 | |
| Intel LAPBC710 | ||
| All of | ||
| Intel NUC Laptop Kits LAPAC71G Firmware | <0065 | |
| Intel NUC Laptop Kits LAPAC71G Firmware | ||
| All of | ||
| Intel LAPAC71H Firmware | <0065 | |
| Intel LAPAC71H Firmware | ||
| All of | ||
| Intel NUC x15 Laptop Kit LAPKC51E | <0048 | |
| Intel NUC x15 Laptop Kit | ||
| All of | ||
| Intel NUC x15 Laptop Kit lapkc51e firmware | <0048 | |
| Intel NUC Laptop Kit LAPKC71E | ||
| All of | ||
| Intel NUC X15 Laptop Kit LAPKC71F | <0048 | |
| Intel NUC x15 Laptop Kit | ||
| All of | ||
| Intel laprc510 firmware | <0066 | |
| Intel NUC Laptop Kit LAPRC510 Firmware | ||
| All of | ||
| Intel NUC Laptop Kit LAPRC710 Firmware | <0066 | |
| Intel NUC Laptop Kit LAPRC710 Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2024-34163?
CVE-2024-34163 has a medium severity rating due to improper input validation vulnerabilities that could lead to privilege escalation when exploited.
How do I fix CVE-2024-34163?
To fix CVE-2024-34163, update the firmware to the latest version provided by Intel for your NUC model.
Which products are affected by CVE-2024-34163?
CVE-2024-34163 affects various Intel NUC x15 Laptop Kit models with specific firmware versions up to 0083 or 0065 and 0048.
Can CVE-2024-34163 be exploited remotely?
No, CVE-2024-34163 requires local access to exploit the vulnerabilities.
What are the potential impacts of CVE-2024-34163?
Exploitation of CVE-2024-34163 may allow a local privileged user to escalate their privileges on the affected Intel NUC systems.
- agent/weakness
- agent/references
- agent/type
- agent/description
- agent/first-publish-date
- agent/author
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/intel
- canonical/intel nuc laptop kit lapbc510 firmware
- canonical/intel lapbc710 firmware
- canonical/intel lapbc710
- canonical/intel nuc laptop kits lapac71g firmware
- canonical/intel lapac71h firmware
- canonical/intel nuc x15 laptop kit lapkc51e
- canonical/intel nuc x15 laptop kit
- canonical/intel nuc x15 laptop kit lapkc51e firmware
- canonical/intel nuc laptop kit lapkc71e
- canonical/intel nuc x15 laptop kit lapkc71f
- canonical/intel laprc510 firmware
- canonical/intel nuc laptop kit laprc510 firmware
- canonical/intel nuc laptop kit laprc710 firmware