CVE-2024-25561

Insecure inherited permissions in some Intel(R) HID Event Filter software installers before version 2.2.2.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVSS v3.0 7.8 HIGH

7.8^/10

CVSS v3.0 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01089.html	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:intel:hid_event_filter_driver:*:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:intel:nuc_m15_laptop_kit_lapbc510_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc_m15_laptop_kit_lapbc510:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:intel:nuc_m15_laptop_kit_lapbc710_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc_m15_laptop_kit_lapbc710:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:intel:nuc_m15_laptop_kit_laprc510_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc_m15_laptop_kit_laprc510:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:intel:nuc_m15_laptop_kit_laprc710_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc_m15_laptop_kit_laprc710:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:intel:nuc_x15_laptop_kit_lapac71g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc_x15_laptop_kit_lapac71g:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:intel:nuc_x15_laptop_kit_lapac71h_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc_x15_laptop_kit_lapac71h:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:intel:nuc_x15_laptop_kit_lapkc51e_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc_x15_laptop_kit_lapkc51e:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:intel:nuc_x15_laptop_kit_lapkc71e_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc_x15_laptop_kit_lapkc71e:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:intel:nuc_x15_laptop_kit_lapkc71f_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:nuc_x15_laptop_kit_lapkc71f:-:*:*:*:*:*:*:*

History

25 Feb 2025, 19:32

Type	Values Removed	Values Added
First Time		Intel nuc M15 Laptop Kit Laprc710 Firmware Intel nuc M15 Laptop Kit Laprc510 Firmware Intel nuc X15 Laptop Kit Lapac71g Firmware Intel nuc M15 Laptop Kit Lapbc510 Firmware Intel nuc X15 Laptop Kit Lapac71h Firmware Intel nuc X15 Laptop Kit Lapkc51e Firmware Intel nuc M15 Laptop Kit Lapbc710 Firmware Intel nuc X15 Laptop Kit Lapkc71e Firmware Intel nuc X15 Laptop Kit Lapkc71f Firmware
CPE	cpe:2.3:a:intel:nuc_m15_laptop_kit_laprc510:-:::::::* cpe:2.3:a:intel:nuc_m15_laptop_kit_lapbc710:-:::::::* cpe:2.3:a:intel:hid_event_filter_driver:2.2.2.1:::::::* cpe:2.3:a:intel:nuc_m15_laptop_kit_lapbc510:-:::::::* cpe:2.3:a:intel:nuc_m15_laptop_kit_laprc710:-:::::::*	cpe:2.3:o:intel:nuc_m15_laptop_kit_lapbc710_firmware:-:::::::* cpe:2.3:o:intel:nuc_m15_laptop_kit_lapbc510_firmware:-:::::::* cpe:2.3:h:intel:nuc_m15_laptop_kit_lapbc710:-:::::::* cpe:2.3:o:intel:nuc_x15_laptop_kit_lapac71g_firmware:-:::::::* cpe:2.3:o:intel:nuc_x15_laptop_kit_lapkc71f_firmware:-:::::::* cpe:2.3:a:intel:hid_event_filter_driver:::::::: cpe:2.3:o:intel:nuc_m15_laptop_kit_laprc510_firmware:-:::::::* cpe:2.3:o:intel:nuc_x15_laptop_kit_lapkc71e_firmware:-:::::::* cpe:2.3:h:intel:nuc_m15_laptop_kit_laprc510:-:::::::* cpe:2.3:h:intel:nuc_m15_laptop_kit_laprc710:-:::::::* cpe:2.3:o:intel:nuc_m15_laptop_kit_laprc710_firmware:-:::::::* cpe:2.3:o:intel:nuc_x15_laptop_kit_lapac71h_firmware:-:::::::* cpe:2.3:o:intel:nuc_x15_laptop_kit_lapkc51e_firmware:-:::::::* cpe:2.3:h:intel:nuc_m15_laptop_kit_lapbc510:-:::::::*

12 Sep 2024, 18:50

Type	Values Removed	Values Added
CWE		CWE-732
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 7.8
CPE		cpe:2.3:h:intel:nuc_x15_laptop_kit_lapac71g:-:::::::* cpe:2.3:h:intel:nuc_x15_laptop_kit_lapkc71e:-:::::::* cpe:2.3:a:intel:hid_event_filter_driver:2.2.2.1:::::::* cpe:2.3:a:intel:nuc_m15_laptop_kit_lapbc510:-:::::::* cpe:2.3:h:intel:nuc_x15_laptop_kit_lapac71h:-:::::::* cpe:2.3:a:intel:nuc_m15_laptop_kit_lapbc710:-:::::::* cpe:2.3:a:intel:nuc_m15_laptop_kit_laprc510:-:::::::* cpe:2.3:h:intel:nuc_x15_laptop_kit_lapkc71f:-:::::::* cpe:2.3:h:intel:nuc_x15_laptop_kit_lapkc51e:-:::::::* cpe:2.3:a:intel:nuc_m15_laptop_kit_laprc710:-:::::::*
First Time		Intel nuc X15 Laptop Kit Lapac71h Intel nuc X15 Laptop Kit Lapkc71e Intel nuc M15 Laptop Kit Lapbc710 Intel Intel nuc X15 Laptop Kit Lapac71g Intel nuc M15 Laptop Kit Lapbc510 Intel nuc M15 Laptop Kit Laprc710 Intel nuc X15 Laptop Kit Lapkc71f Intel nuc X15 Laptop Kit Lapkc51e Intel hid Event Filter Driver Intel nuc M15 Laptop Kit Laprc510
References	~~() https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01089.html -~~	() https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01089.html - Vendor Advisory

14 Aug 2024, 14:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-08-14 14:15

Updated : 2025-02-25 19:32

NVD link : CVE-2024-25561

Mitre link : CVE-2024-25561

JSON object : View

Products Affected

intel

hid_event_filter_driver
nuc_m15_laptop_kit_laprc510
nuc_x15_laptop_kit_lapkc71f
nuc_x15_laptop_kit_lapkc71f_firmware
nuc_x15_laptop_kit_lapac71h
nuc_x15_laptop_kit_lapac71g_firmware
nuc_m15_laptop_kit_laprc510_firmware
nuc_x15_laptop_kit_lapac71h_firmware
nuc_x15_laptop_kit_lapkc51e
nuc_x15_laptop_kit_lapac71g
nuc_x15_laptop_kit_lapkc71e
nuc_x15_laptop_kit_lapkc51e_firmware
nuc_m15_laptop_kit_lapbc710
nuc_m15_laptop_kit_lapbc510_firmware
nuc_m15_laptop_kit_laprc710
nuc_x15_laptop_kit_lapkc71e_firmware
nuc_m15_laptop_kit_lapbc710_firmware
nuc_m15_laptop_kit_laprc710_firmware
nuc_m15_laptop_kit_lapbc510

CWE

CWE-732

Incorrect Permission Assignment for Critical Resource

7.8 /10