CVE-2022-36349
MEDIUMIntel NUC Board NUC5i3MYBE & Kit NUC5i3MYHE < MYi30060 - DoS via Insecure Default Variable
Title source: llmDescription
Insecure default variable initialization in BIOS firmware for some Intel(R) NUC Boards and Intel(R) NUC Kits before version MYi30060 may allow an authenticated user to potentially enable denial of service via local access.
References (1)
Core 1
Core References
Patch, Vendor Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00752.html
Scores
CVSS v3
5.2
EPSS
0.0017
EPSS Percentile
6.7%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:L
Details
CWE
CWE-1188
Status
published
Products (2)
intel/nuc_board_nuc5i3mybe_firmware
< myi30060
intel/nuc_kit_nuc5i3myhe_firmware
< myi30060
Published
Nov 11, 2022
Tracked Since
Feb 18, 2026