Описание
Insecure inherited permissions in some Intel(R) Wireless Adapter Driver installation software for Intel(R) NUC Kits & Mini PCs before version 22.190.0.3 for Windows may allow an authenticated user to potentially enable escalation of privilege via local access.
Уязвимые конфигурации
Конфигурация 1Версия до 22.40.0 (исключая)
Одновременно
cpe:2.3:o:intel:nuc_kit_wireless_adapter_driver_installer:*:*:*:*:*:windows_10:*:*
Одно из
cpe:2.3:h:intel:nuc_8_rugged_kit_nuc8cchkr:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_board_nuc8cchb:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_nuc5pgyh:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_nuc5ppyh:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_nuc6cayh:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_kit_nuc6cays:-:*:*:*:*:*:*:*
EPSS
Процентиль: 25%
0.00087
Низкий
6.7 Medium
CVSS3
7.8 High
CVSS3
Дефекты
CWE-277
CWE-276
Связанные уязвимости
CVSS3: 7.8
github
около 3 лет назад
Incorrect default permissions in the installer software for some Intel(r) NUC Kit Wireless Adapter drivers for Windows 10 before version 22.40 may allow an authenticated user to potentially enable escalation of privilege via local access.
EPSS
Процентиль: 25%
0.00087
Низкий
6.7 Medium
CVSS3
7.8 High
CVSS3
Дефекты
CWE-277
CWE-276