I think the issue I have with what you're saying is you have a perception that a remote attack is anything that is done or actioned remotely. When the actual definition is far more muddy, most people define a Remote Attack as something akin to DNS poisoning, DOS, TCP sequence and desync attacks or even just a port a scan.
Now the semantic-e facetious c... in me perceives what you're actually getting across is a Remote Exploit.
However, a remote exploit that needs local access to actually run the in the first place is not a "Remote Attack" or even a "Remote Exploit". It is a local exploit/attack. To muddy it even further, if you use a remote exploit (like mimikatz) to garner local administrative creds to then action the local exploit (reflash bios), are the CTS Labs proposed vulnerabilities a remote attack.
The answer begins with n and ends in o.