Insecure Inherited Permissions in Intel Hardware solutions

#VU96034 Insecure Inherited Permissions in Intel Hardware solutions

Published: 2024-08-15

Vulnerability identifier: #VU96034

Vulnerability risk: Low

CVSSv3.1: 5.8 [CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2024-25561

CWE-ID: CWE-277

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Intel NUC M15 Laptop Kit - LAPBC710
Hardware solutions / Firmware
Intel NUC M15 Laptop Kit - LAPBC510
Hardware solutions / Firmware
Intel NUC M15 Laptop Kit - LAPRC710
Hardware solutions / Firmware
Intel NUC M15 Laptop Kit - LAPRC510
Hardware solutions / Firmware
Intel NUC X15 Laptop Kit - LAPAC71G
Hardware solutions / Firmware
Intel NUC X15 Laptop Kit - LAPAC71H
Hardware solutions / Firmware
Intel NUC X15 Laptop Kit - LAPKC71F
Hardware solutions / Firmware
Intel NUC X15 Laptop Kit - LAPKC71E
Hardware solutions / Firmware
Intel NUC X15 Laptop Kit - LAPKC51E
Hardware solutions / Firmware
Intel Human Interface Device (HID) Event Filter
Hardware solutions / Firmware

Vendor: Intel

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to insecure inherited permissions, which leads to security restrictions bypass and privilege escalation.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Intel NUC M15 Laptop Kit - LAPBC710: All versions

Intel NUC M15 Laptop Kit - LAPBC510: All versions

Intel NUC M15 Laptop Kit - LAPRC710: All versions

Intel NUC M15 Laptop Kit - LAPRC510: All versions

Intel NUC X15 Laptop Kit - LAPAC71G: All versions

Intel NUC X15 Laptop Kit - LAPAC71H: All versions

Intel NUC X15 Laptop Kit - LAPKC71F: All versions

Intel NUC X15 Laptop Kit - LAPKC71E: All versions

Intel NUC X15 Laptop Kit - LAPKC51E: All versions

External links
http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01089.html

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.