Lucene search
IntelCVE-2023-33878HistoryNov 14, 2023 - 7:15 p.m.
CVE-2023-33878
2023-11-1419:15:27
CWE-249
CWE-22
intel
web.nvd.nist.gov
27
cve-2023-33878
intel
nuc
p14e
laptop
audio
install package
windows
privilege escalation
security vulnerability
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
10.5%
Path transversal in some Intelยฎ NUC P14E Laptop Element Audio Install Package software before version 156 for Windows may allow an authenticated user to potentially enable escalation of privilege via local access.
Affected configurations
Node
intelaudio_install_packageRange<1.0.0.156windows
intelnuc_p14e_laptop_element_cmcn1ccMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| intel | audio_install_package | * | cpe:2.3:a:intel:audio_install_package:*:*:*:*:*:windows:*:* |
| intel | nuc_p14e_laptop_element_cmcn1cc | - | cpe:2.3:h:intel:nuc_p14e_laptop_element_cmcn1cc:-:*:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "n/a",
"product": "Intel(R) NUC P14E Laptop Element Audio Install Package software",
"versions": [
{
"version": "before version 156 for Windows",
"status": "affected"
}
],
"defaultStatus": "unaffected"
}
]Related
prion
prion
Path traversal
2023-11-14 19:15:00
vulnrichment
vulnrichment
CVE-2023-33878
2023-11-14 19:04:48
cvelist
cvelist
CVE-2023-33878
2023-11-14 19:04:48
nvd
nvd
CVE-2023-33878
2023-11-14 19:15:27
intel
intel
Intelยฎ NUC Software Advisory
2023-11-14 00:00:00
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
10.5%
Related for CVE-2023-33878