Insecure inherited permissions in the installer for the Intel(R) NUC M15 Laptop Kit Keyboard LED Service driver pack before version 1.0.0.4 may allow an authenticated user to potentially enable escalation of privilege via local access.
References
Link | Resource |
---|---|
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00569.html | Vendor Advisory |
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00569.html | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 06:08
Type | Values Removed | Values Added |
---|---|---|
References | () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00569.html - Vendor Advisory |
19 Nov 2021, 20:42
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:intel:nuc_m15_laptop_kit_keyboard_led_service_driver_pack:*:*:*:*:*:*:*:* cpe:2.3:h:intel:nuc_m15_laptop_kit_lapbc710:-:*:*:*:*:*:*:* cpe:2.3:h:intel:nuc_m15_laptop_kit_lapbc510:-:*:*:*:*:*:*:* |
|
CVSS |
v2 : v3 : |
v2 : 7.2
v3 : 7.8 |
References | (MISC) https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00569.html - Vendor Advisory | |
CWE | CWE-732 |
17 Nov 2021, 19:24
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-11-17 19:15
Updated : 2024-11-21 06:08
NVD link : CVE-2021-33094
Mitre link : CVE-2021-33094
CVE.ORG link : CVE-2021-33094
JSON object : View
Products Affected
intel
- nuc_m15_laptop_kit_lapbc510
- nuc_m15_laptop_kit_keyboard_led_service_driver_pack
- nuc_m15_laptop_kit_lapbc710
CWE
CWE-732
Incorrect Permission Assignment for Critical Resource