CVE-2022-31477

MEDIUM

Intel(R) NUC BIOS - Info Disclosure

Title source: llm

Description

Improper initialization for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access.

References (1)

[Patch, Vendor Advisory] https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00777.html

Scores

CVSS v3 4.0

EPSS 0.0009

EPSS Percentile 25.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-665

Status published

Products (35)

intel/cm11ebc4w_firmware

intel/cm11ebi38w_firmware

intel/cm11ebi58w_firmware

intel/cm11ebi716w_firmware

intel/lapbc510_firmware

intel/lapbc710_firmware

intel/lapkc51e_firmware

intel/lapkc71e_firmware

intel/lapkc71f_firmware

intel/nuc11btmi7_firmware

... and 25 more

Published May 10, 2023

Tracked Since Feb 18, 2026