Vulnerability Details CVE-2023-28738
Improper input validation for some Intel NUC BIOS firmware before version JY0070 may allow a privileged user to potentially enable escalation of privilege via local access.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 18.1%
CVSS Severity
CVSS v3 Score 7.5
References
Products affected by CVE-2023-28738
-
cpe:2.3:h:intel:nuc_7_essential_nuc7cjysamn:-
-
cpe:2.3:h:intel:nuc_kit_nuc7cjyh:-
-
cpe:2.3:h:intel:nuc_kit_nuc7cjyhn:-
-
cpe:2.3:h:intel:nuc_kit_nuc7cjysal:-
-
cpe:2.3:h:intel:nuc_kit_nuc7pjyh:-
-
cpe:2.3:h:intel:nuc_kit_nuc7pjyhn:-
-
cpe:2.3:o:intel:nuc_7_essential_nuc7cjysamn_firmware:jyglkcpx.0071
-
cpe:2.3:o:intel:nuc_kit_nuc7cjyh_firmware:jyglkcpx.0071
-
cpe:2.3:o:intel:nuc_kit_nuc7cjyhn_firmware:jyglkcpx.0071
-
cpe:2.3:o:intel:nuc_kit_nuc7cjysal_firmware:jyglkcpx.0071
-
cpe:2.3:o:intel:nuc_kit_nuc7pjyh_firmware:jyglkcpx.0071
-
cpe:2.3:o:intel:nuc_kit_nuc7pjyhn_firmware:jyglkcpx.0071