CVE-2017-5701

high

Description

Insecure platform configuration in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows an attacker with physical presence to run arbitrary code via unauthorized firmware modification during BIOS Recovery.

References

Advisories

https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00084&languageid=en-fr

http://www.securityfocus.com/bid/101257

Details

Source: Mitre, NVD

Published: 2017-10-11

Updated: 2025-04-20

Risk Information

CVSS v2

Base Score: 4.4

Vector: CVSS2#AV:L/AC:M/Au:N/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.00074