Skip to main content

Severity by source

NVD PRIMARY
7.8 HIGH
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

1
CVE Published
Apr 15, 2020 - 17:15 nvd
HIGH 7.8

DescriptionNVD

Improper buffer restrictions in firmware for some Intel(R) NUC may allow an authenticated user to potentially enable escalation of privilege via local access.

AnalysisAI

Improper buffer restrictions in firmware for some Intel(R) NUC may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Technical ContextAI

Improper buffer restrictions in firmware for some Intel(R) NUC may allow an authenticated user to potentially enable escalation of privilege via local access. Affected products include: Intel Nuc 8 Rugged Kit Nuc8Cchkr Firmware, Intel Nuc Board Nuc8Cchb Firmware, Intel Nuc 7 Essential Pc Nuc7Cjysal Firmware, Intel Nuc Kit Nuc7Cjyh Firmware, Intel Nuc Kit Nuc7Pjyh Firmware.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

CVE-2023-22312 HIGH
7.8 May 10

Improper access control for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation

CVE-2022-26124 HIGH
7.8 Nov 11

Improper buffer restrictions in BIOS firmware for some Intel(R) NUC Boards, Intel(R) NUC 8 Boards, Intel(R) NUC 8 Rugged

CVE-2020-24525 HIGH
7.8 Nov 12

Insecure inherited permissions in firmware update tool for some Intel(R) NUCs may allow an authenticated user to potenti

CVE-2020-12336 HIGH
7.8 Nov 12

Insecure default variable initialization in firmware for some Intel(R) NUCs may allow an authenticated user to potential

CVE-2020-0530 HIGH
7.8 Mar 12

Improper buffer restrictions in firmware for Intel(R) NUC may allow an authenticated user to potentially enable escalati

CVE-2023-32617 MEDIUM
6.7 Aug 11

Improper input validation in some Intel(R) NUC Rugged Kit, Intel(R) NUC Kit and Intel(R) Compute Element BIOS firmware m

CVE-2021-0067 MEDIUM
6.7 Jun 09

 Improper access control in system firmware for some Intel(R) NUCs may allow a privileged user to potentially enabl

CVE-2021-0054 MEDIUM
6.7 Jun 09

Improper buffer restrictions in system firmware for some Intel(R) NUCs may allow a privileged user to potentially enable

CVE-2020-12337 MEDIUM
6.7 Nov 12

Improper buffer restrictions in firmware for some Intel(R) NUCs may allow a privileged user to potentially enable escala

CVE-2020-0526 MEDIUM
6.7 Mar 12

Improper input validation in firmware for Intel(R) NUC may allow a privileged user to potentially enable escalation of p

CVE-2021-33086 MEDIUM
5.5 Nov 17

Out-of-bounds write in firmware for some Intel(R) NUCs may allow an authenticated user to potentially enable denial of s

Share

CVE-2020-0600 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy