Path Traversal Vulnerability in Intel NUC P14E Laptop Element Audio Install Package
CVE-2023-33878

6.7MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Nuc P14e Laptop Element Audio Install Package Software
Vendor: CVE Published:; 14 November 2023

What is CVE-2023-33878?

A vulnerability in the Intel NUC P14E Laptop Element Audio Install Package software prior to version 156 for Windows can allow an authenticated user to exploit a path traversal issue. By manipulating file paths, an attacker could gain access to restricted directories and potentially escalate privileges through local access. This flaw poses risks for system security and user data integrity.

Affected Version(s)

Intel(R) NUC P14E Laptop Element Audio Install Package software before version 156 for Windows

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

6.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 14, 2023
Vulnerability Reserved
Jun 2, 2023