CVE-2022-37334 Vulnerability Details

  /     /     /  

CVE-2022-37334 Metadata Quick Info

CVE Published: 11/11/2022 | CVE Updated: 03/08/2024 | CVE Year: 2022
Source: intel | Vendor: n/a | Product: Intel(R) NUC 11 Pro Kits and Intel(R) NUC 11 Pro Boards
Status : PUBLISHED

CVE-2022-37334 Description

Improper initialization in BIOS firmware for some Intel(R) NUC 11 Pro Kits and Intel(R) NUC 11 Pro Boards before version TNTGL357.0064 may allow an authenticated user to potentially enable escalation of privilege via local access.

Metrics

CVSS Version: 3.1 | Base Score: 7 HIGH
Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

l➤ Exploitability Metrics:
    Attack Vector (AV)*
    Attack Complexity (AC)*
    Privileges Required (PR)*
    User Interaction (UI)*
    Scope (S)*

l➤ Impact Metrics:
    Confidentiality Impact (C)*
    Integrity Impact (I)*
    Availability Impact (A)*

Weakness Enumeration (CWE)

CWE-ID:
CWE Name: escalation of privilege
Source: n/a

Common Attack Pattern Enumeration and Classification (CAPEC)

CAPEC-ID:
CAPEC Description:


Source: NVD (National Vulnerability Database).