Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-26024

Improper access control in the Intel(R) NUC HDMI Firmware Update Tool for NUC7i3DN, NUC7i5DN and NUC7i7DN before version 1.78.2.0.7 may allow an authenticated user to potentially enable escalation of privilege via local access.

Published

2022-11-11T16:15:12.053

Last Modified

2025-01-29T21:15:13.287

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.7 (MEDIUM)

Weaknesses

Type: Primary
NVD-CWE-Other
Type: Secondary
CWE-281

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	intel	nuc7i3dnbe_firmware	< 1.78.2.0.7	Yes
Hardware	intel	nuc7i3dnbe	-	No
Operating System	intel	nuc7i3dnhe_firmware	< 1.78.2.0.7	Yes
Hardware	intel	nuc7i3dnhe	-	No
Operating System	intel	nuc7i3dnhnc_firmware	< 1.78.2.0.7	Yes
Hardware	intel	nuc7i3dnhnc	-	No
Operating System	intel	nuc7i3dnke_firmware	< 1.78.2.0.7	Yes
Hardware	intel	nuc7i3dnke	-	No
Operating System	intel	nuc7i3dnktc_firmware	< 1.78.2.0.7	Yes
Hardware	intel	nuc7i3dnktc	-	No
Operating System	intel	nuc7i5dnbe_firmware	< 1.78.2.0.7	Yes
Hardware	intel	nuc7i5dnbe	-	No
Operating System	intel	nuc7i5dnhe_firmware	< 1.78.2.0.7	Yes
Hardware	intel	nuc7i5dnhe	-	No
Operating System	intel	nuc7i5dnke_firmware	< 1.78.2.0.7	Yes
Hardware	intel	nuc7i5dnke	-	No
Operating System	intel	nuc7i7dnbe_firmware	< 1.78.2.0.7	Yes
Hardware	intel	nuc7i7dnbe	-	No
Operating System	intel	nuc7i7dnhe_firmware	< 1.78.2.0.7	Yes
Hardware	intel	nuc7i7dnhe	-	No
Operating System	intel	nuc7i7dnke_firmware	< 1.78.2.0.7	Yes
Hardware	intel	nuc7i7dnke	-	No

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00689.html Vendor Advisory ([email protected])
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00689.html Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)