What the vulnerability does
01Description
Improper access control for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable denial of service via local access.
CVSS base score
5.8/10
CVSS vector
CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:N/I:L/A:H
Key dates
02Disclosure timeline
May 10, 2023
CVE published
January 27, 2025
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2025-29939
CVE-2022-22190 Paragon Active Assurance Control Center: Information disclosure vulnerability in crafted URL
CVE-2026-33415 Discourse: Improper Access Control in discourse-ai Allows Unauthorized Category Content Exposure
CVE-2025-11853 Sismics Teedy API Endpoint file access control
CVE-2023-23908
