CVE-2023-34349

CVSS 3.1 Score 6.4 of 10 (medium)

Details

Published Aug 11, 2023
Updated: Nov 7, 2023
CWE ID 421
CWE ID 362

Summary

CVE-2023-34349 is a newly discovered vulnerability affecting some Intel NUC BIOS firmware. This issue involves a race condition, which can enable a privileged user to potentially escalate their privileges through local access. By exploiting this vulnerability, an attacker could gain elevated system access, increasing the risk of unauthorized system modifications or data theft. Intel has urged users to update their BIOS firmware to address this vulnerability and mitigate potential threats. This race condition represents a significant security concern for Intel NUC users, particularly those with administrative access to their systems.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share