CVE-2023-34349

moderate-risk
Published 2023-08-11

Race condition in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access.

Do I need to act?

-
0.04% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
4
CVSS 4.6/10 Medium
LOCAL / LOW complexity

Affected Products (20)

Nuc Performance Kit And Mini Pc Nuc10I3Fnh Firmware
Nuc Performance Kit And Mini Pc Nuc10I3Fnhf Firmware
Nuc Performance Kit And Mini Pc Nuc10I3Fnhfa Firmware
Nuc Performance Kit And Mini Pc Nuc10I3Fnhja Firmware
Nuc Performance Kit And Mini Pc Nuc10I3Fnhn Firmware
Nuc Performance Kit And Mini Pc Nuc10I3Fnk Firmware
Nuc Performance Kit And Mini Pc Nuc10I3Fnkn Firmware
Nuc Performance Kit And Mini Pc Nuc10I5Fnh Firmware
Nuc Performance Kit And Mini Pc Nuc10I5Fnhca Firmware
Nuc Performance Kit And Mini Pc Nuc10I5Fnhf Firmware
Nuc Performance Kit And Mini Pc Nuc10I5Fnhja Firmware
Nuc Performance Kit And Mini Pc Nuc10I5Fnhj Firmware
Nuc Performance Kit And Mini Pc Nuc10I5Fnhn Firmware
Nuc Performance Kit And Mini Pc Nuc10I5Fnk Firmware
Nuc Performance Kit And Mini Pc Nuc10I5Fnkn Firmware
Nuc Performance Kit And Mini Pc Nuc10I5Fnkpa Firmware
Nuc Performance Kit And Mini Pc Nuc10I5Fnkp Firmware
Nuc Performance Kit And Mini Pc Nuc10I7Fnh Firmware
Nuc Performance Kit And Mini Pc Nuc10I7Fnhaa Firmware
Nuc Performance Kit And Mini Pc Nuc10I7Fnhc Firmware

Affected Vendors

Intel

References (2)

Patch http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00917.h...
Patch http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00917.h...
49
/ 100
moderate-risk
Severity 16/34 · Moderate
Exploitability 0/34 · Minimal
Exposure 33/34 · Critical