CVE-2024-25561

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-25561
Insecure inherited permissions in some Intel(R) HID Event Filter software installers before version 2.2.2.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

6.7 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 0.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity HIGH

Privileges Required LOW

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01089.html Vendor Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:intel:hid_event_filter_driver:*:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:intel:nuc_m15_laptop_kit_lapbc510_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_m15_laptop_kit_lapbc510:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:intel:nuc_m15_laptop_kit_lapbc710_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_m15_laptop_kit_lapbc710:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:intel:nuc_m15_laptop_kit_laprc510_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_m15_laptop_kit_laprc510:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:intel:nuc_m15_laptop_kit_laprc710_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_m15_laptop_kit_laprc710:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:intel:nuc_x15_laptop_kit_lapac71g_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_x15_laptop_kit_lapac71g:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:intel:nuc_x15_laptop_kit_lapac71h_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_x15_laptop_kit_lapac71h:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:intel:nuc_x15_laptop_kit_lapkc51e_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_x15_laptop_kit_lapkc51e:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:intel:nuc_x15_laptop_kit_lapkc71e_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_x15_laptop_kit_lapkc71e:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:intel:nuc_x15_laptop_kit_lapkc71f_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_x15_laptop_kit_lapkc71f:-:*:*:*:*:*:*:*
History

25 Feb 2025, 19:32

Type Values Removed Values Added
CPE cpe:2.3:a:intel:nuc_m15_laptop_kit_laprc710:-:*:*:*:*:*:*:*
cpe:2.3:a:intel:nuc_m15_laptop_kit_lapbc710:-:*:*:*:*:*:*:*
cpe:2.3:a:intel:nuc_m15_laptop_kit_lapbc510:-:*:*:*:*:*:*:*
cpe:2.3:a:intel:nuc_m15_laptop_kit_laprc510:-:*:*:*:*:*:*:*
cpe:2.3:a:intel:hid_event_filter_driver:2.2.2.1:*:*:*:*:*:*:*		 cpe:2.3:o:intel:nuc_x15_laptop_kit_lapkc71e_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:intel:nuc_x15_laptop_kit_lapac71g_firmware:-:*:*:*:*:*:*:*
cpe:2.3:a:intel:hid_event_filter_driver:*:*:*:*:*:*:*:*
cpe:2.3:o:intel:nuc_x15_laptop_kit_lapkc71f_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_m15_laptop_kit_laprc510:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_m15_laptop_kit_laprc710:-:*:*:*:*:*:*:*
cpe:2.3:o:intel:nuc_m15_laptop_kit_lapbc710_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:intel:nuc_x15_laptop_kit_lapac71h_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:intel:nuc_m15_laptop_kit_laprc710_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_m15_laptop_kit_lapbc510:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_m15_laptop_kit_lapbc710:-:*:*:*:*:*:*:*
cpe:2.3:o:intel:nuc_m15_laptop_kit_lapbc510_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:intel:nuc_x15_laptop_kit_lapkc51e_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:intel:nuc_m15_laptop_kit_laprc510_firmware:-:*:*:*:*:*:*:*
First Time Intel nuc M15 Laptop Kit Laprc710 Firmware
Intel nuc X15 Laptop Kit Lapkc71f Firmware
Intel nuc X15 Laptop Kit Lapac71h Firmware
Intel nuc X15 Laptop Kit Lapac71g Firmware
Intel nuc M15 Laptop Kit Lapbc510 Firmware
Intel nuc X15 Laptop Kit Lapkc51e Firmware
Intel nuc M15 Laptop Kit Laprc510 Firmware
Intel nuc X15 Laptop Kit Lapkc71e Firmware
Intel nuc M15 Laptop Kit Lapbc710 Firmware
CVSS v2 : unknown
v3 : 7.8 		v2 : unknown
v3 : 6.7

12 Sep 2024, 18:50

Type Values Removed Values Added
CPE cpe:2.3:a:intel:nuc_m15_laptop_kit_lapbc510:-:*:*:*:*:*:*:*
cpe:2.3:a:intel:nuc_m15_laptop_kit_laprc710:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_x15_laptop_kit_lapkc71f:-:*:*:*:*:*:*:*
cpe:2.3:a:intel:hid_event_filter_driver:2.2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:intel:nuc_m15_laptop_kit_laprc510:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_x15_laptop_kit_lapkc51e:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_x15_laptop_kit_lapac71g:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_x15_laptop_kit_lapac71h:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_x15_laptop_kit_lapkc71e:-:*:*:*:*:*:*:*
cpe:2.3:a:intel:nuc_m15_laptop_kit_lapbc710:-:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : 6.7 		v2 : unknown
v3 : 7.8
First Time Intel nuc X15 Laptop Kit Lapkc51e
Intel nuc X15 Laptop Kit Lapac71g
Intel nuc X15 Laptop Kit Lapkc71e
Intel hid Event Filter Driver
Intel
Intel nuc M15 Laptop Kit Laprc710
Intel nuc M15 Laptop Kit Lapbc510
Intel nuc X15 Laptop Kit Lapac71h
Intel nuc X15 Laptop Kit Lapkc71f
Intel nuc M15 Laptop Kit Lapbc710
Intel nuc M15 Laptop Kit Laprc510
CWE CWE-732
Summary
  • (es) Los permisos heredados inseguros en algunos instaladores del software Intel(R) HID Event Filter anteriores a la versión 2.2.2.1 pueden permitir que un usuario autenticado habilite potencialmente la escalada de privilegios a través del acceso local.
References () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01089.html - () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01089.html - Vendor Advisory

14 Aug 2024, 14:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-08-14 14:15

Updated : 2025-02-25 19:32

NVD link : CVE-2024-25561

Mitre link : CVE-2024-25561

CVE.ORG link : CVE-2024-25561

JSON object : View

Products Affected

intel

  • nuc_m15_laptop_kit_laprc710_firmware
  • nuc_x15_laptop_kit_lapkc51e_firmware
  • nuc_x15_laptop_kit_lapkc71f_firmware
  • nuc_x15_laptop_kit_lapac71h
  • hid_event_filter_driver
  • nuc_x15_laptop_kit_lapkc71e_firmware
  • nuc_x15_laptop_kit_lapac71g_firmware
  • nuc_m15_laptop_kit_lapbc710
  • nuc_m15_laptop_kit_laprc510_firmware
  • nuc_x15_laptop_kit_lapkc51e
  • nuc_x15_laptop_kit_lapkc71e
  • nuc_m15_laptop_kit_laprc510
  • nuc_x15_laptop_kit_lapac71h_firmware
  • nuc_x15_laptop_kit_lapkc71f
  • nuc_m15_laptop_kit_lapbc510
  • nuc_m15_laptop_kit_laprc710
  • nuc_m15_laptop_kit_lapbc710_firmware
  • nuc_x15_laptop_kit_lapac71g
  • nuc_m15_laptop_kit_lapbc510_firmware
CWE
CWE-277

Insecure Inherited Permissions

CWE-732

Incorrect Permission Assignment for Critical Resource