Improper Access Control in Intel NUC HDMI Firmware Update Tool for NUC7 Models
CVE-2022-26024

7.8HIGH

Key Information:

Vendor: Intel
Status: Intel(r) Nuc Hdmi Firmware Update Tool For Nuc7i3dn, Nuc7i5dn And Nuc7i7dn
Vendor: CVE Published:; 11 November 2022

What is CVE-2022-26024?

The Intel NUC HDMI Firmware Update Tool contains an improper access control vulnerability that affects the NUC7i3DN, NUC7i5DN, and NUC7i7DN models. This issue may allow an authenticated user to gain elevated privileges through local access before version 1.78.2.0.7. If exploited, it could potentially lead to unauthorized access and manipulation of system resources.

Affected Version(s)

Intel(R) NUC HDMI Firmware Update Tool for NUC7i3DN, NUC7i5DN and NUC7i7DN before version 1.78.2.0.7

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 11, 2022
Vulnerability Reserved
Mar 21, 2022