Описание
Uncontrolled search path in some Intel(R) NUC Pro Chassis Element AverMedia Capture Card drivers before version 3.0.64.143 may allow an authenticated user to potentially enable escalation of privilege via local access.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 3.0.64.143 (исключая)
Одновременно
cpe:2.3:a:intel:avermedia_capture_card:*:*:*:*:*:*:*:*
Одно из
cpe:2.3:h:intel:nuc_pro_chassis_element_cmcm2fb:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_pro_chassis_element_cmcm2fbav:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_pro_chassis_element_cmcr1aba:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_pro_chassis_element_cmcr1abb:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_pro_chassis_element_cmcr1abc:-:*:*:*:*:*:*:*
EPSS
Процентиль: 21%
0.00068
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-427
Связанные уязвимости
github
больше 3 лет назад
Uncontrolled search path in some Intel(R) NUC Pro Chassis Element AverMedia Capture Card drivers before version 3.0.64.143 may allow an authenticated user to potentially enable escalation of privilege via local access.
EPSS
Процентиль: 21%
0.00068
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-427