Privilege Escalation Vulnerability in Intel NUC P14E Laptop Element Software
CVE-2023-27382

6.7MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Nuc P14e Laptop Element Software For Windows 10
Vendor: CVE Published:; 10 May 2023

What is CVE-2023-27382?

The Intel NUC P14E Laptop Element software for Windows 10 prior to version 1.0.0.156 contains a flaw related to incorrect default permissions in the Audio Service. This opens a potential avenue for authenticated users to elevate their privileges through local access, potentially leading to unauthorized access to sensitive information or system control. Users are advised to upgrade their software to the latest version to mitigate this risk.

Affected Version(s)

Intel(R) NUC P14E Laptop Element software for Windows 10 before version 1.0.0.156

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

6.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 10, 2023
Vulnerability Reserved
Mar 4, 2023