Intel Lapbc710 Firmware vulnerabilities

13 known vulnerabilities affecting intel/lapbc710_firmware.

Total CVEs
13
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH8MEDIUM5

Vulnerabilities

Page 1 of 1
CVE-2022-37327MEDIUMCVSS 5.5fixed in bctgl357.00782023-05-10
CVE-2022-37327 [MEDIUM] CWE-20 CVE-2022-37327: Improper input validation in BIOS firmware for Intel(R) NUC, Intel(R) NUC Performance Kit, Intel(R) Improper input validation in BIOS firmware for Intel(R) NUC, Intel(R) NUC Performance Kit, Intel(R) NUC Performance Mini PC, Intel(R) NUC 8 Compute Element, Intel(R) NUC Pro Kit, Intel(R) NUC Pro Board, Intel(R) NUC 11 Compute Element, Intel(R) NUC 12 Compute Element, Intel(R) NUC Extreme, Intel(R) NUC 12 Extreme Compute Element, Intel(R) NUC Laptop K
nvd
CVE-2022-33209HIGHCVSS 7.8fixed in bc00762022-08-18
CVE-2022-33209 [HIGH] CWE-20 CVE-2022-33209: Improper input validation in the firmware for some Intel(R) NUC Laptop Kits before version BC0076 ma Improper input validation in the firmware for some Intel(R) NUC Laptop Kits before version BC0076 may allow a privileged user to potentially enable escalation of privilege via local access.
nvd
CVE-2022-27493HIGHCVSS 7.8fixed in bc00762022-08-18
CVE-2022-27493 [HIGH] CWE-665 CVE-2022-27493: Improper initialization in the firmware for some Intel(R) NUC Laptop Kits before version BC0076 may Improper initialization in the firmware for some Intel(R) NUC Laptop Kits before version BC0076 may allow a privileged user to potentially enable an escalation of privilege via local access.
nvd
CVE-2022-28858HIGHCVSS 7.8fixed in bc00762022-08-18
CVE-2022-28858 [HIGH] CWE-119 CVE-2022-28858: Improper buffer restriction in the firmware for some Intel(R) NUC Laptop Kits before version BC0076 Improper buffer restriction in the firmware for some Intel(R) NUC Laptop Kits before version BC0076 may allow a privileged user to potentially enable escalation of privilege via local access.
nvd
CVE-2022-32579HIGHCVSS 7.2fixed in bc00762022-08-18
CVE-2022-32579 [HIGH] CWE-665 CVE-2022-32579: Improper initialization in the firmware for some Intel(R) NUC Laptop Kits before version BC0076 may Improper initialization in the firmware for some Intel(R) NUC Laptop Kits before version BC0076 may allow a privileged user to potentially enable escalation of privilege via physical access.
nvd
CVE-2022-34488HIGHCVSS 7.8fixed in bc00762022-08-18
CVE-2022-34488 [HIGH] CWE-119 CVE-2022-34488: Improper buffer restrictions in the firmware for some Intel(R) NUC Laptop Kits before version BC0076 Improper buffer restrictions in the firmware for some Intel(R) NUC Laptop Kits before version BC0076 may allow a privileged user to potentially enable escalation of privilege via local access.
nvd
CVE-2022-34345MEDIUMCVSS 6.2fixed in bc00762022-08-18
CVE-2022-34345 [MEDIUM] CWE-20 CVE-2022-34345: Improper input validation in the firmware for some Intel(R) NUC Laptop Kits before version BC0076 ma Improper input validation in the firmware for some Intel(R) NUC Laptop Kits before version BC0076 may allow a privileged user to potentially enable escalation of privilege via physical access.
nvd
CVE-2022-24297MEDIUMCVSS 6.7fixed in bctgl357.00652022-05-12
CVE-2022-24297 [MEDIUM] CVE-2022-24297: Improper buffer restrictions in firmware for some Intel(R) NUCs may allow a privileged user to poten Improper buffer restrictions in firmware for some Intel(R) NUCs may allow a privileged user to potentially enable escalation of privilege via local access.
nvd
CVE-2022-21237MEDIUMCVSS 6.7fixed in bctgl357.00652022-05-12
CVE-2022-21237 [MEDIUM] CWE-119 CVE-2022-21237: Improper buffer access in firmware for some Intel(R) NUCs may allow a privileged user to potentially Improper buffer access in firmware for some Intel(R) NUCs may allow a privileged user to potentially enable escalation of privilege via local access.
nvd
CVE-2022-24382MEDIUMCVSS 6.7fixed in bctgl357.00652022-05-12
CVE-2022-24382 [MEDIUM] CWE-20 CVE-2022-24382: Improper input validation in firmware for some Intel(R) NUCs may allow a privileged user to potentia Improper input validation in firmware for some Intel(R) NUCs may allow a privileged user to potentially enable escalation of privilege via local access.
nvd
CVE-2021-0057HIGHCVSS 7.8fixed in 1.12021-06-09
CVE-2021-0057 [HIGH] CWE-427 CVE-2021-0057: Uncontrolled search path in the Intel(R) NUC M15 Laptop Kit Driver Pack software before updated vers Uncontrolled search path in the Intel(R) NUC M15 Laptop Kit Driver Pack software before updated version 1.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
nvd
CVE-2021-0056HIGHCVSS 7.8fixed in 1.12021-06-09
CVE-2021-0056 [HIGH] CWE-732 CVE-2021-0056: Insecure inherited permissions for the Intel(R) NUC M15 Laptop Kit Driver Pack software before updat Insecure inherited permissions for the Intel(R) NUC M15 Laptop Kit Driver Pack software before updated version 1.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
nvd
CVE-2021-0058HIGHCVSS 7.8fixed in 1.12021-06-09
CVE-2021-0058 [HIGH] CWE-276 CVE-2021-0058: Incorrect default permissions in the Intel(R) NUC M15 Laptop Kit Driver Pack software before updated Incorrect default permissions in the Intel(R) NUC M15 Laptop Kit Driver Pack software before updated version 1.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
nvd