Improper Access Control in Intel NUC Products
CVE-2022-32582

5.3MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Nuc Boards, Intel(r) Nuc 11 Performance Kit, Intel(r) Nuc 11 Performance Mini Pc, Intel(r) Nuc Pro Compute Element
Vendor: CVE Published:; 10 May 2023

What is CVE-2022-32582?

This vulnerability allows a privileged user to manipulate access controls in the firmware of various Intel NUC products, which can lead to the potential for a denial of service (DoS) due to unauthorized local access. For detailed information, refer to the Intel security advisory.

Affected Version(s)

Intel(R) NUC Boards, Intel(R) NUC 11 Performance Kit, Intel(R) NUC 11 Performance Mini PC, Intel(R) NUC Pro Compute Element See references

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 10, 2023
Vulnerability Reserved
Jun 19, 2022