CVE-2023-34086

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Aug 11, 2023
Updated: Nov 7, 2023
CWE ID 20

Summary

CVE-2023-34086 is a vulnerability affecting some Intel(R) NUC BIOS firmware. The issue involves improper input validation, which could enable a privileged user to potentially escalate their privileges through local access. This means an attacker with access to the system's BIOS could exploit this flaw to gain higher-level permissions, increasing their control over the system. The precise impact of this vulnerability depends on the specific BIOS version and configuration, but it poses a significant risk to system security. Users are encouraged to update their BIOS to the latest version to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share