CVE-2023-22444

MEDIUM

Intel(R) NUC - Info Disclosure

Title source: llm

Description

Improper initialization in some Intel(R) NUC 13 Extreme Compute Element, Intel(R) NUC 13 Extreme Kit, Intel(R) NUC 11 Performance Kit, Intel(R) NUC 11 Performance Mini PC, Intel(R) NUC Compute Element, Intel(R) NUC Laptop Kit, Intel(R) NUC Pro Kit, Intel(R) NUC Pro Board and Intel(R) NUC Pro Mini PC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access.

References (1)

[Vendor Advisory] http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00917.html

Scores

CVSS v3 6.0

EPSS 0.0003

EPSS Percentile 10.1%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-665

Status published

Products (50)

intel/nuc_11_compute_element_cm11ebc4w_firmware

intel/nuc_11_compute_element_cm11ebi38w_firmware

intel/nuc_11_compute_element_cm11ebi58w_firmware

intel/nuc_11_compute_element_cm11ebi716w_firmware

intel/nuc_11_enthusiast_kit_nuc11phki7c_firmware

intel/nuc_11_enthusiast_mini_pc_nuc11phki7caa_firmware

intel/nuc_11_essential_board_nuc11atbc4_firmware

intel/nuc_11_essential_kit_nuc11atkc2_firmware

intel/nuc_11_essential_kit_nuc11atkc4_firmware

intel/nuc_11_essential_kit_nuc11atkpe_firmware

... and 40 more

Published Aug 11, 2023

Tracked Since Feb 18, 2026