Insecure Permissions in Intel NUC Pro Software Suite Installation Software
CVE-2022-41700

7.8HIGH

Key Information:

Vendor: Intel
Status: Intel(r) Nuc Pro Software Suite Installation Software
Vendor: CVE Published:; 14 November 2023

Summary

The Intel NUC Pro Software Suite contains a vulnerability due to insecure inherited permissions within its installation software prior to version 2.0.0.9. This vulnerability may allow an authenticated user to escalate privileges through local access, potentially compromising system integrity. It is crucial for users to update their software to mitigate risks associated with this issue.

Affected Version(s)

Intel(R) NUC Pro Software Suite installation software before version 2.0.0.9

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 14, 2023
Vulnerability Reserved
Sep 29, 2022