Details of VAR-201612-0152

ID

VAR-201612-0152

CVE

CVE-2016-8103

TITLE

Intel Branded NUC Vulnerability in kit accessing system management mode

Trust: 0.8

sources: JVNDB: JVNDB-2016-006167

DESCRIPTION

SMM call out in all Intel Branded NUC Kits allows a local privileged user to access the System Management Mode and take full control of the platform. Intel BrandedNUCKits is a Mini computer series host kit from Intel Corporation of the United States. A vulnerability is obtained in the BIOS firmware in Intel Branded NUCKits

Trust: 2.52

sources: NVD: CVE-2016-8103 // JVNDB: JVNDB-2016-006167 // CNVD: CNVD-2016-12375 // BID: 95012 // VULHUB: VHN-96923

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2016-12375

AFFECTED PRODUCTS

vendor:	intel	model:	city bios	scope:	eq	version:	ccsklm30.86a	Trust: 1.6
vendor:	intel	model:	citry bios	scope:	lte	version:	scchtax5.86a	Trust: 1.0
vendor:	intel	model:	canyon bios	scope:	lte	version:	mybdwi30.86a	Trust: 1.0
vendor:	intel	model:	canyon bios	scope:	lte	version:	fybyt10h.86a	Trust: 1.0
vendor:	intel	model:	city bios	scope:	lte	version:	ccsklm30.86a	Trust: 1.0
vendor:	intel	model:	city bios	scope:	lte	version:	ccsklm5v.86a	Trust: 1.0
vendor:	intel	model:	canyon bios	scope:	lte	version:	pybwcel.86a	Trust: 1.0
vendor:	intel	model:	swift canyon bios	scope:	lte	version:	syskli35.86a	Trust: 1.0
vendor:	intel	model:	canyon bios	scope:	lte	version:	mybdwi5v.86a	Trust: 1.0
vendor:	intel	model:	canyon bios	scope:	lte	version:	kyskli70.86a	Trust: 1.0
vendor:	intel	model:	city bios	scope:	lte	version:	scchtax5.86a	Trust: 1.0
vendor:	intel	model:	canyon bios	scope:	lte	version:	rybdwi35.86a	Trust: 1.0
vendor:	intel	model:	canyon bios	scope:	-	version:	-	Trust: 0.8
vendor:	intel	model:	city bios	scope:	-	version:	-	Trust: 0.8
vendor:	intel	model:	compute stick stk1a32sc	scope:	eq	version:	(sterling city scchtax5.86a)	Trust: 0.8
vendor:	intel	model:	compute stick stk1aw32sc	scope:	eq	version:	(sterlig citry scchtax5.86a)	Trust: 0.8
vendor:	intel	model:	compute stick stk1aw32sc	scope:	eq	version:	(sterling city scchtax5.86a)	Trust: 0.8
vendor:	intel	model:	compute stick stk2m3w64cc	scope:	eq	version:	(cedar city - m3 ccsklm30.86a)	Trust: 0.8
vendor:	intel	model:	compute stick stk2m3w64cc	scope:	eq	version:	(cedar city - m5 ccsklm5v.86a)	Trust: 0.8
vendor:	intel	model:	compute stick stk2mv64cc	scope:	eq	version:	(cedar city - m3 ccsklm30.86a)	Trust: 0.8
vendor:	intel	model:	nuc kit dn2820fyb	scope:	eq	version:	(forest canyon fybyt10h.86a)	Trust: 0.8
vendor:	intel	model:	nuc kit nuc5cpyh	scope:	eq	version:	(pinnacle canyon - celeron pybwcel.86a)	Trust: 0.8
vendor:	intel	model:	nuc kit nuc5i3mybe	scope:	eq	version:	(maple canyon - i3 mybdwi30.86a)	Trust: 0.8
vendor:	intel	model:	nuc kit nuc5i3mybe	scope:	eq	version:	(maple canyon - i5 mybdwi5v.86a)	Trust: 0.8
vendor:	intel	model:	nuc kit nuc5i3ryb	scope:	eq	version:	(rock canyon - i3 rybdwi35.86a)	Trust: 0.8
vendor:	intel	model:	nuc kit nuc5i5ryb	scope:	eq	version:	(rock canyon - i5 rybdwi35.86a)	Trust: 0.8
vendor:	intel	model:	nuc kit nuc5i7rykh	scope:	eq	version:	(rock canyon - i7 rybdwi35.86a)	Trust: 0.8
vendor:	intel	model:	nuc kit nuc5pgyh	scope:	eq	version:	(grass canyon - pentium pybwcel.86a)	Trust: 0.8
vendor:	intel	model:	nuc kit nuc5ppyh	scope:	eq	version:	(pinnacle canyon - pentium pybwcel.86a)	Trust: 0.8
vendor:	intel	model:	nuc kit nuc6i3syb	scope:	eq	version:	(swift canyon - i3 syskli35.86a)	Trust: 0.8
vendor:	intel	model:	nuc kit nuc6i5syb	scope:	eq	version:	(swift canyon - i5 syskli35.86a)	Trust: 0.8
vendor:	intel	model:	nuc kit nuc6i7kyb	scope:	eq	version:	(skull canyon - i7 kyskli70.86a)	Trust: 0.8
vendor:	intel	model:	swift canyon bios	scope:	-	version:	-	Trust: 0.8
vendor:	intel	model:	branded nuc kits	scope:	-	version:	-	Trust: 0.6
vendor:	intel	model:	canyon bios	scope:	eq	version:	mybdwi5v.86a	Trust: 0.6
vendor:	intel	model:	city bios	scope:	eq	version:	ccsklm5v.86a	Trust: 0.6
vendor:	intel	model:	canyon bios	scope:	eq	version:	fybyt10h.86a	Trust: 0.6
vendor:	intel	model:	citry bios	scope:	eq	version:	scchtax5.86a	Trust: 0.6
vendor:	intel	model:	swift canyon bios	scope:	eq	version:	syskli35.86a	Trust: 0.6
vendor:	intel	model:	canyon bios	scope:	eq	version:	kyskli70.86a	Trust: 0.6
vendor:	intel	model:	canyon bios	scope:	eq	version:	rybdwi35.86a	Trust: 0.6
vendor:	intel	model:	city bios	scope:	eq	version:	scchtax5.86a	Trust: 0.6
vendor:	intel	model:	canyon bios	scope:	eq	version:	mybdwi30.86a	Trust: 0.6
vendor:	intel	model:	swift canyon bios syskli35.86a	scope:	-	version:	-	Trust: 0.3
vendor:	intel	model:	city bios scchtax5.86a	scope:	-	version:	-	Trust: 0.3
vendor:	intel	model:	city bios ccsklm5v.86a	scope:	-	version:	-	Trust: 0.3
vendor:	intel	model:	city bios ccsklm30.86a	scope:	-	version:	-	Trust: 0.3
vendor:	intel	model:	citry bios scchtax5.86a	scope:	-	version:	-	Trust: 0.3
vendor:	intel	model:	canyon bios rybdwi35.86a	scope:	-	version:	-	Trust: 0.3
vendor:	intel	model:	canyon bios pybwcel.86a	scope:	-	version:	-	Trust: 0.3
vendor:	intel	model:	canyon bios mybdwi5v.86a	scope:	-	version:	-	Trust: 0.3
vendor:	intel	model:	canyon bios mybdwi30.86a	scope:	-	version:	-	Trust: 0.3
vendor:	intel	model:	canyon bios kyskli70.86a	scope:	-	version:	-	Trust: 0.3
vendor:	intel	model:	canyon bios fybyt10h.86a	scope:	-	version:	-	Trust: 0.3

sources: CNVD: CNVD-2016-12375 // BID: 95012 // JVNDB: JVNDB-2016-006167 // CNNVD: CNNVD-201612-195 // NVD: CVE-2016-8103

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2016-8103
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2016-8103
value:	MEDIUM
Trust: 0.8
CNVD:	CNVD-2016-12375
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-201612-195
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-96923
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2016-8103
severity:	MEDIUM
baseScore:	6.8
vectorString:	AV:L/AC:L/AU:S/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.1
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2016-12375
severity:	MEDIUM
baseScore:	4.6
vectorString:	AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	3.9
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
VULHUB:	VHN-96923
severity:	MEDIUM
baseScore:	6.8
vectorString:	AV:L/AC:L/AU:S/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.1
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2016-8103
baseSeverity:	MEDIUM
baseScore:	6.7
vectorString:	CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	HIGH
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	0.8
impactScore:	5.9
version:	3.0
Trust: 1.8

sources: CNVD: CNVD-2016-12375 // VULHUB: VHN-96923 // JVNDB: JVNDB-2016-006167 // CNNVD: CNNVD-201612-195 // NVD: CVE-2016-8103

PROBLEMTYPE DATA

problemtype:

CWE-264

Trust: 1.9

sources: VULHUB: VHN-96923 // JVNDB: JVNDB-2016-006167 // NVD: CVE-2016-8103

THREAT TYPE

local

Trust: 0.9

sources: BID: 95012 // CNNVD: CNNVD-201612-195

TYPE

permissions and access control

Trust: 0.6

sources: CNNVD: CNNVD-201612-195

CONFIGURATIONS

sources: JVNDB: JVNDB-2016-006167

PATCH

title:	INTEL-SA-00057	url:	https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00057&languageid=en-fr	Trust: 0.8
title:	IntelBrandedNUCKits permission to get the patch for the vulnerability	url:	https://www.cnvd.org.cn/patchInfo/show/86031	Trust: 0.6
title:	Intel Branded NUC Kits Security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=66236	Trust: 0.6

sources: CNVD: CNVD-2016-12375 // JVNDB: JVNDB-2016-006167 // CNNVD: CNNVD-201612-195

EXTERNAL IDS

db:	NVD	id:	CVE-2016-8103	Trust: 3.4
db:	BID	id:	95012	Trust: 1.4
db:	JVNDB	id:	JVNDB-2016-006167	Trust: 0.8
db:	CNNVD	id:	CNNVD-201612-195	Trust: 0.7
db:	CNVD	id:	CNVD-2016-12375	Trust: 0.6
db:	VULHUB	id:	VHN-96923	Trust: 0.1

sources: CNVD: CNVD-2016-12375 // VULHUB: VHN-96923 // BID: 95012 // JVNDB: JVNDB-2016-006167 // CNNVD: CNNVD-201612-195 // NVD: CVE-2016-8103

REFERENCES

url:	https://security-center.intel.com/advisory.aspx?intelid=intel-sa-00057&languageid=en-fr	Trust: 2.5
url:	http://www.securityfocus.com/bid/95012	Trust: 1.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-8103	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2016-8103	Trust: 0.8
url:	http://www.intel.com/	Trust: 0.3
url:	https://security-center.intel.com/advisory.aspx?intelid=intel-sa-00057&languageid=en-fr	Trust: 0.1

sources: CNVD: CNVD-2016-12375 // VULHUB: VHN-96923 // BID: 95012 // JVNDB: JVNDB-2016-006167 // CNNVD: CNNVD-201612-195 // NVD: CVE-2016-8103

CREDITS

Dmytro Oleksiuk

Trust: 0.3

sources: BID: 95012

SOURCES

db:	CNVD	id:	CNVD-2016-12375
db:	VULHUB	id:	VHN-96923
db:	BID	id:	95012
db:	JVNDB	id:	JVNDB-2016-006167
db:	CNNVD	id:	CNNVD-201612-195
db:	NVD	id:	CVE-2016-8103

LAST UPDATE DATE

2024-11-23T22:18:12.869000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2016-12375	date:	2016-12-16T00:00:00
db:	VULHUB	id:	VHN-96923	date:	2016-12-27T00:00:00
db:	BID	id:	95012	date:	2017-01-12T04:04:00
db:	JVNDB	id:	JVNDB-2016-006167	date:	2016-12-14T00:00:00
db:	CNNVD	id:	CNNVD-201612-195	date:	2016-12-09T00:00:00
db:	NVD	id:	CVE-2016-8103	date:	2024-11-21T02:58:57.210

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2016-12375	date:	2016-12-16T00:00:00
db:	VULHUB	id:	VHN-96923	date:	2016-12-08T00:00:00
db:	BID	id:	95012	date:	2016-10-03T00:00:00
db:	JVNDB	id:	JVNDB-2016-006167	date:	2016-12-14T00:00:00
db:	CNNVD	id:	CNNVD-201612-195	date:	2016-12-09T00:00:00
db:	NVD	id:	CVE-2016-8103	date:	2016-12-08T17:59:01.583