Описание
Path transversal in some Intel(R) NUC Uniwill Service Driver for Intel(R) NUC M15 Laptop Kits - LAPRC510 & LAPRC710 Uniwill Service Driver installation software before version 1.0.1.7 for Intel(R) NUC Software Studio may allow an authenticated user to potentially enable escalation of privilege via local access.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.0.1.7 (исключая)
Одновременно
cpe:2.3:a:intel:nuc_uniwill_service_driver:*:*:*:*:*:*:*:*
Одно из
cpe:2.3:h:intel:nuc_m15_laptop_kit_evo_laprc510:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_m15_laptop_kit_evo_laprc710:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_m15_laptop_kit_laprc510:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:nuc_m15_laptop_kit_laprc710:-:*:*:*:*:*:*:*
EPSS
Процентиль: 25%
0.00085
Низкий
6.7 Medium
CVSS3
7.3 High
CVSS3
Дефекты
CWE-249
CWE-22
Связанные уязвимости
CVSS3: 6.7
github
около 2 лет назад
Path transversal in some Intel(R) NUC Uniwill Service Driver for Intel(R) NUC M15 Laptop Kits - LAPRC510 & LAPRC710 Uniwill Service Driver installation software before version 1.0.1.7 for Intel(R) NUC Software Studio may allow an authenticated user to potentially enable escalation of privilege via local access.
EPSS
Процентиль: 25%
0.00085
Низкий
6.7 Medium
CVSS3
7.3 High
CVSS3
Дефекты
CWE-249
CWE-22