MEDIUM✓ PATCH🇵🇱 Wersja polska

CVE-2023-32278

CVSS 6.7v3.1pub. 2023-11-14upd. 2024-11-21

Path transversal in some Intel(R) NUC Uniwill Service Driver for Intel(R) NUC M15 Laptop Kits - LAPRC510 & LAPRC710 Uniwill Service Driver installation software before version 1.0.1.7 for Intel(R) NUC Software Studio may allow an authenticated user to potentially enable escalation of privilege via local access.

CVSS Vector
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
  • Intel Nuc M15 Laptop Kit Evo Laprc510

    HW
    Intel
    wszystkie wersje
  • Intel Nuc M15 Laptop Kit Evo Laprc710

    HW
    Intel
    wszystkie wersje
  • Intel Nuc M15 Laptop Kit Laprc510

    HW
    Intel
    wszystkie wersje
  • Intel Nuc M15 Laptop Kit Laprc710

    HW
    Intel
    wszystkie wersje
  • Intel Nuc Uniwill Service Driver

    APP
    Intel
    < 1.0.1.7
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
Path Traversal
CWE
References

Related vulnerabilities

CVE-2024-25561MEDIUM5.4ten sam produkt

Insecure inherited permissions in some Intel(R) HID Event Filter software installers before version 2.2.2.1 ma...

CVE-2023-22444MEDIUM6.0ten sam produkt

Improper initialization in some Intel(R) NUC 13 Extreme Compute Element, Intel(R) NUC 13 Extreme Kit, Intel(R)...

CVE-2021-45046CRITICAL9.0⚠ KEVten sam vendor

It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-defau...

CVE-2021-44228CRITICAL10.0⚠ KEVten sam vendor

Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features u...

CVE-2017-5689CRITICAL9.8⚠ KEVten sam vendor

An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs: Intel A...