Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2017-3718

Improper setting of device configuration in system firmware for Intel(R) NUC kits may allow a privileged user to potentially enable escalation of privilege via physical access.

Published

2019-01-10T20:29:00.237

Last Modified

2024-11-21T03:26:01.080

Status

Modified

Source

[email protected]

Severity

CVSSv3.0: 6.2 (MEDIUM)

CVSSv2 Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

  • Access Vector: LOCAL
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: PARTIAL
  • Integrity Impact: PARTIAL
  • Availability Impact: PARTIAL
Exploitability Score

3.9

Impact Score

6.4

Weaknesses
  • Type: Primary
    NVD-CWE-noinfo
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System intel nuc_kit_firmware - Yes
Hardware intel nuc_kit_d33217gke - No
Hardware intel nuc_kit_d53427rke - No
Hardware intel nuc_kit_d54250wyb - No
Hardware intel nuc_kit_de3815tybe - No
Hardware intel nuc_kit_dn2820fykh - No
Hardware intel nuc_kit_nuc5cpyh - No
Hardware intel nuc_kit_nuc5i3myhe - No
Hardware intel nuc_kit_nuc5i5myhe - No
Hardware intel nuc_kit_nuc5i7ryh - No
Hardware intel nuc_kit_nuc5pgyh - No
Hardware intel nuc_kit_nuc6cays - No
Hardware intel nuc_kit_nuc6i5syh - No
Hardware intel nuc_kit_nuc6i7kyk - No
Hardware intel nuc_kit_nuc7cjyh - No
Hardware intel nuc_kit_nuc7i3dnhe - No
Hardware intel nuc_kit_nuc7i5dnke - No
Hardware intel nuc_kit_nuc7i7bnh - No
Hardware intel nuc_kit_nuc7i7dnke - No
Hardware intel nuc_kit_nuc8i7hnk - No
Operating System intel compute_card_firmware - Yes
Hardware intel compute_card_cd1iv128mk - No
Hardware intel compute_card_cd1m3128mk - No
Hardware intel compute_card_cd1p64gk - No
Operating System intel compute_stick_firmware - Yes
Hardware intel compute_stick_stck1a32wfc - No
Hardware intel compute_stick_stk1aw32sc - No
Hardware intel compute_stick_stk2m3w64cc - No
Hardware intel compute_stick_stk2mv64cc - No
References