CVE-2022-32579

Published: Aug 18, 2022Modified: Feb 10, 2025

7.2

Vector

CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

Exploitability: 0.5 / Impact: 6.0

Source: NVD

Description

Improper initialization in the firmware for some Intel(R) NUC Laptop Kits before version BC0076 may allow a privileged user to potentially enable escalation of privilege via physical access.

Affected (2)

Products: Intel: Lapbc510 Firmware, Lapbc710 Firmware

Intel

2 products

Lapbc510 Firmware

Lapbc710 Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Intel Lapbc510 Firmware	Before bc0076

Running on/with	Platform Versions
Intel Lapbc510	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Intel Lapbc710 Firmware	Before bc0076

Running on/with	Platform Versions
Intel Lapbc710	All versions

Related CWEs

CWE-665

Improper Initialization

The product does not initialize or incorrectly initializes a resource, which might leave the resource in an unexpected state when it is accessed or used.

References (2)

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00712.html

Source: secure@intel.com

PatchVendor Advisory

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00712.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

Timeline

No history available yet.