CVE-2024-25561
EUVD-2024-2288914.08.2024, 14:15
Insecure inherited permissions in some Intel(R) HID Event Filter software installers before version 2.2.2.1 may allow an authenticated user to potentially enable escalation of privilege via local access.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| intel | hid_event_filter_driver | 𝑥 < 2.2.2.1 |
| intel | nuc_m15_laptop_kit_lapbc510_firmware | - |
| intel | nuc_m15_laptop_kit_lapbc710_firmware | - |
| intel | nuc_m15_laptop_kit_laprc510_firmware | - |
| intel | nuc_m15_laptop_kit_laprc710_firmware | - |
| intel | nuc_x15_laptop_kit_lapac71g_firmware | - |
| intel | nuc_x15_laptop_kit_lapac71h_firmware | - |
| intel | nuc_x15_laptop_kit_lapkc51e_firmware | - |
| intel | nuc_x15_laptop_kit_lapkc71e_firmware | - |
| intel | nuc_x15_laptop_kit_lapkc71f_firmware | - |
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
| Vendor | Product | Version | Source |
|---|---|---|---|
| intel | hid_event_filter_driver | 𝑥 < 2.2.2.1 | ADP |
| intel | nuc_m15_laptop_kit_lapbc510 | 𝑥 < * | ADP |
| intel | nuc_m15_laptop_kit_lapbc710 | 𝑥 < * | ADP |
| intel | nuc_m15_laptop_kit_laprc710 | 𝑥 < * | ADP |
| intel | nuc_m15_laptop_kit_laprc510 | 𝑥 < * | ADP |
| intel | nuc_x15_laptop_kit_lapac71g | 𝑥 < * | ADP |
| intel | nuc_x15_laptop_kit_lapac71h | 𝑥 < * | ADP |
| intel | nuc_x15_laptop_kit_lapkc71f | 𝑥 < * | ADP |
| intel | nuc_x15_laptop_kit_lapkc51e | 𝑥 < * | ADP |
Common Weakness Enumeration
- CWE-277 - Insecure Inherited PermissionsA product defines a set of insecure permissions that are inherited by objects that are created by the program.
- CWE-732 - Incorrect Permission Assignment for Critical ResourceThe product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.