Описание
Path transversal in some Intel(R) NUC Kits NUC7i3DN, NUC7i5DN, NUC7i7DN HDMI firmware update tool software before version 1.79.1.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.79.1.1 (исключая)
Одновременно
cpe:2.3:o:intel:hdmi_firmware:*:*:*:*:*:*:*:*
Одно из
cpe:2.3:h:intel:nuc_7_business_nuc7i3dnhnc:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_7_business_nuc7i3dnktc:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_7_business_nuc7i5dnkpc:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_7_business_nuc7i5dnkpu:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_nuc7i3dnhe:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_nuc7i3dnke:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_nuc7i5dnhe:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_nuc7i5dnke:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_nuc7i7dnhe:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_nuc7i7dnke:-:*:*:*:*:*:*:*
EPSS
Процентиль: 27%
0.00096
Низкий
6.7 Medium
CVSS3
7.8 High
CVSS3
Дефекты
CWE-249
CWE-22
Связанные уязвимости
CVSS3: 6.7
github
около 2 лет назад
Path transversal in some Intel(R) NUC Kits NUC7i3DN, NUC7i5DN, NUC7i7DN HDMI firmware update tool software before version 1.79.1.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
EPSS
Процентиль: 27%
0.00096
Низкий
6.7 Medium
CVSS3
7.8 High
CVSS3
Дефекты
CWE-249
CWE-22