Description
Improper buffer restrictions in firmware for Intel(R) NUC may allow an authenticated user to potentially enable escalation of privilege via local access. The list of affected products is provided in intel-sa-00343: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00343.html
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00343.html
Scores
CVSS v3
7.8
EPSS
0.0006
EPSS Percentile
17.7%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-120
Status
published
Products (50)
intel/compute_stick_stck1a32wfc_firmware
stck1a32wfc
intel/compute_stick_stck1a8lfc_firmware
stck1a8lfc
intel/compute_stick_stk1a32sc_firmware
sc0045
intel/compute_stick_stk1aw32sc_firmware
sc0045
intel/compute_stick_stk2m364cc_firmware
ccsklm30.86a.0062
intel/compute_stick_stk2m3w64cc_firmware
ccsklm30.86a.0062
intel/nuc_7_enthusiast_pc_nuc7i7bnhxg_firmware
bnkbl357.86a.0081
intel/nuc_7_essential_pc_nuc7cjysal_firmware
jyglkcpx.86a.0053
intel/nuc_7_home_a_mini_pc_nuc7i3bnhxf_firmware
bnkbl357.86a.0081
intel/nuc_7_home_a_mini_pc_nuc7i5bnhxf_firmware
bnkbl357.86a.0081
... and 40 more
Published
Mar 12, 2020
Tracked Since
Feb 18, 2026