MEDIUM✓ PATCH🇵🇱 Wersja polska

CVE-2023-33878

CVSS 6.7v3.1pub. 2023-11-14upd. 2024-11-21

Path transversal in some Intel(R) NUC P14E Laptop Element Audio Install Package software before version 156 for Windows may allow an authenticated user to potentially enable escalation of privilege via local access.

CVSS Vector
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
  • Intel Audio Install Package

    APP
    Intel
    < 1.0.0.156
  • Intel Nuc P14e Laptop Element Cmcn1cc

    HW
    Intel
    wszystkie wersje
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
Path Traversal
CWE
References

Related vulnerabilities

CVE-2021-45046CRITICAL9.0⚠ KEVten sam vendor

It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-defau...

CVE-2021-44228CRITICAL10.0⚠ KEVten sam vendor

Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features u...

CVE-2017-5689CRITICAL9.8⚠ KEVten sam vendor

An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs: Intel A...

CVE-2024-23497CRITICAL9.3PL ✓ten sam vendor

Out-of-bounds write w sterowniku Linux dla Intel Ethernet 800 Series — privilege escalation

CVE-2024-23981CRITICAL9.3PL ✓ten sam vendor

Błąd wrap-around w sterowniku Intel Ethernet 800 — privilege escalation