CVE-2022-36349

MEDIUM

Intel NUC <MYi30060 - DoS

Title source: llm

Description

Insecure default variable initialization in BIOS firmware for some Intel(R) NUC Boards and Intel(R) NUC Kits before version MYi30060 may allow an authenticated user to potentially enable denial of service via local access.

References (1)

[Patch, Vendor Advisory] https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00752.html

Scores

CVSS v3 5.2

EPSS 0.0018

EPSS Percentile 38.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:L

Details

CWE

CWE-1188

Status published

Products (2)

intel/nuc_board_nuc5i3mybe_firmware < myi30060

intel/nuc_kit_nuc5i3myhe_firmware < myi30060

Published Nov 11, 2022

Tracked Since Feb 18, 2026