Insecure Default Variable Initialization in Intel NUC Boards and Kits
CVE-2022-36349
5.2MEDIUM
Key Information:
- Vendor
Intel
- Vendor
- CVE Published:
- 11 November 2022
What is CVE-2022-36349?
A potential security issue exists in the BIOS firmware of specific Intel NUC Boards and NUC Kits prior to version MYi30060. This vulnerability stems from insecure default variable initialization, which may allow an authenticated user to exploit the flaw and induce a denial of service through local access. Users of these systems are encouraged to update to the latest versions to mitigate the risks. More details can be found in the Intel security advisory.
Affected Version(s)
Intel(R) NUC Boards and Intel(R) NUC Kits before version MYi30060