CVE-2024-25561
14.08.2024, 14:15
Insecure inherited permissions in some Intel(R) HID Event Filter software installers before version 2.2.2.1 may allow an authenticated user to potentially enable escalation of privilege via local access.Enginsight
| Vendor | Product | Version |
|---|---|---|
| intel | hid_event_filter_driver | 𝑥 < 2.2.2.1 |
| intel | nuc_m15_laptop_kit_lapbc510_firmware | - |
| intel | nuc_m15_laptop_kit_lapbc710_firmware | - |
| intel | nuc_m15_laptop_kit_laprc510_firmware | - |
| intel | nuc_m15_laptop_kit_laprc710_firmware | - |
| intel | nuc_x15_laptop_kit_lapac71g_firmware | - |
| intel | nuc_x15_laptop_kit_lapac71h_firmware | - |
| intel | nuc_x15_laptop_kit_lapkc51e_firmware | - |
| intel | nuc_x15_laptop_kit_lapkc71e_firmware | - |
| intel | nuc_x15_laptop_kit_lapkc71f_firmware | - |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-277 - Insecure Inherited PermissionsA product defines a set of insecure permissions that are inherited by objects that are created by the program.
- CWE-732 - Incorrect Permission Assignment for Critical ResourceThe product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.