Insecure Inherited Permissions in Intel NUC Pro Software Suite
CVE-2022-46656

6.7MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Nuc Pro Software Suite
Vendor: CVE Published:; 10 May 2023

Summary

The Intel NUC Pro Software Suite suffers from insecure inherited permissions that could allow an authenticated user to gain elevated privileges through local access. This vulnerability affects versions prior to 2.0.0.3 and poses significant risks, as it may be exploited to execute unauthorized actions within the system. Users are advised to upgrade to the latest version to mitigate this potential threat.

Affected Version(s)

Intel(R) NUC Pro Software Suite before version 2.0.0.3

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

6.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
May 10, 2023
Vulnerability Reserved
Dec 7, 2022