Lucene search

[email protected]CVE-2023-38541

HistoryJan 19, 2024 - 8:15 p.m.

CVE-2023-38541

2024-01-1920:15:10

CWE-732

CWE-277

[email protected]

web.nvd.nist.gov

cve-2023-38541

insecure permissions

intel hid event filter

windows 10

escalation of privilege

nvd

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.7 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Insecure inherited permissions in some Intel HID Event Filter drivers for Windows 10 for some Intel NUC laptop software installers before version 2.2.2.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

Affected configurations

Vulners

NVD

Node

intelhid_event_filter_driverRange<2.2.2.1

CPENameOperatorVersion
intel:hid_event_filter_driverintel hid event filter driverle2.2.2.1

CPE	Name	Operator	Version
intel:hid_event_filter_driver	intel hid event filter driver	le	2.2.2.1

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "Intel HID Event Filter drivers for Windows 10 for some Intel NUC laptop software installers",
    "versions": [
      {
        "version": "before version 2.2.2.1",
        "status": "affected"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

References

www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00964.html

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.7 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

Related for CVE-2023-38541

cvelist1 prion1 nvd1 intel1