CVE-2024-34163

HIGH EPSS 6.2%

Published Aug 14, 20241y ago · Modified Jun 17, 20261w ago

8.7 CVSS 4.0

High

Published Aug 14, 2024 1y ago

Last Modified Jun 17, 2026 1w ago

Description

Improper input validation in firmware for some Intel(R) NUC may allow a privileged user to potentially enableescalation of privilege via local access.

CVSS Details

Base Score

8.7

Exploitability

—

Impact

—

Vector string

CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector Local

Attack Complexity High

Privileges Required High

User Interaction None

Scope X

Threat Intelligence

EPSS Exploit Probability

6.2% percentile

Exploit & Patch Status

No Known Exploit

No Patch Available

Weaknesses 1

CWE-20 Improper Input Validation Validation

Affected Products 18

Vendor	Product	Version	Range
intel	nuc_x15_laptop_kit_lapbc510_firmware	*	<0083
intel	nuc_x15_laptop_kit_lapbc510	*	any
intel	nuc_x15_laptop_kit_lapbc710_firmware	*	<0083
intel	nuc_x15_laptop_kit_lapbc710	*	any
intel	nuc_x15_laptop_kit_lapac71g_firmware	*	<0065
intel	nuc_x15_laptop_kit_lapac71g	*	any
intel	nuc_x15_laptop_kit_lapac71h_firmware	*	<0065
intel	nuc_x15_laptop_kit_lapac71h	*	any
intel	nuc_x15_laptop_kit_lapkc51e_firmware	*	<0048
intel	nuc_x15_laptop_kit_lapkc51e	*	any
intel	nuc_x15_laptop_kit_lapkc71e_firmware	*	<0048
intel	nuc_x15_laptop_kit_lapkc71e	*	any
intel	nuc_x15_laptop_kit_lapkc71f_firmware	*	<0048
intel	nuc_x15_laptop_kit_lapkc71f	*	any
intel	nuc_x15_laptop_kit_laprc510_firmware	*	<0066
intel	nuc_x15_laptop_kit_laprc510	*	any
intel	nuc_x15_laptop_kit_laprc710_firmware	*	<0066
intel	nuc_x15_laptop_kit_laprc710	*	any

References 1

intel.com https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01022.html

Vendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.