CVE-2022-26024

Published Nov 11, 2022
Last updated 2 years ago
CVSS high 7.8
Overview

Description: Improper access control in the Intel(R) NUC HDMI Firmware Update Tool for NUC7i3DN, NUC7i5DN and NUC7i7DN before version 1.78.2.0.7 may allow an authenticated user to potentially enable escalation of privilege via local access.
Source: secure@intel.com
NVD status: Analyzed
Risk scores

CVSS 3.1

Type: Primary
Base score: 7.8
Impact score: 5.9
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH
Weaknesses

nvd@nist.gov: NVD-CWE-Other
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:intel:nuc7i3dnbe_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ECDBCC4B-D2E0-403C-8A12-FDDF54CB84BD",
            "versionEndExcluding": "1.78.2.0.7"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:intel:nuc7i3dnbe:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "014A2068-4A1E-4621-A3F9-6B69A3DE299C"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:intel:nuc7i3dnhe_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "64B6614D-147E-4FC1-988E-ED4A3BC67CD2",
            "versionEndExcluding": "1.78.2.0.7"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:intel:nuc7i3dnhe:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "0AD25295-C0A4-45CD-9EA0-0C4594A08076"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:intel:nuc7i3dnhnc_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "33D7B023-A227-4719-B3F6-6975E36E3B98",
            "versionEndExcluding": "1.78.2.0.7"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:intel:nuc7i3dnhnc:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "A98AB826-2534-464D-BAE2-00CBF29C8A6A"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:intel:nuc7i3dnke_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CCE5C5DE-ED5B-4CB9-AC84-A8A17F90C35B",
            "versionEndExcluding": "1.78.2.0.7"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:intel:nuc7i3dnke:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "4F1FA7AA-CDFE-49B9-8834-052AD3CFCC83"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:intel:nuc7i3dnktc_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E423ACAF-3994-4444-8B70-501736993337",
            "versionEndExcluding": "1.78.2.0.7"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:intel:nuc7i3dnktc:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "C20EF764-A1E5-4A14-9050-0FDB7114B149"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:intel:nuc7i5dnbe_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8856D4D8-A8DA-4172-906D-94DCD380230F",
            "versionEndExcluding": "1.78.2.0.7"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:intel:nuc7i5dnbe:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "117A5BF7-8CE6-4E7E-A303-BC36CB92E80D"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:intel:nuc7i5dnhe_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "87D03543-503B-4EA3-B30C-8535625C2F06",
            "versionEndExcluding": "1.78.2.0.7"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:intel:nuc7i5dnhe:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "A42BE9DE-6C99-498B-BE62-94D64E2C5E7B"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:intel:nuc7i5dnke_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8D1766FE-25E1-4F40-AEC4-1FD89721459F",
            "versionEndExcluding": "1.78.2.0.7"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:intel:nuc7i5dnke:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "28CCB3FE-E248-4765-B630-5AC815D8C1F0"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:intel:nuc7i7dnbe_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C69FF46A-816E-451E-9BB3-476EAA22B83D",
            "versionEndExcluding": "1.78.2.0.7"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:intel:nuc7i7dnbe:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "9491896A-6D0D-4A36-BD86-C7D3F9D67BC9"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:intel:nuc7i7dnhe_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EC9B7A26-4DD7-4E44-B892-77FF96CEFF64",
            "versionEndExcluding": "1.78.2.0.7"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:intel:nuc7i7dnhe:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "10457F25-B045-4DFE-99A3-5BADD314DCC5"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:intel:nuc7i7dnke_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C8DB3A4-60BF-405F-9A96-BF4785569675",
            "versionEndExcluding": "1.78.2.0.7"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:intel:nuc7i7dnke:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "6CDBA0B8-C076-43B1-AB5A-509DCDCB2932"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]
Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

References
