CVE-2024-25561

CVE Database · CVE-2024-25561

CVE-2024-25561

· MEDIUMAnalyzed

CVSS v3.1

6.7

CVSS v4.0

5.4

EPSS

0.12%

Published

Aug 14, 2024

Modified

Feb 25, 2025

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Insecure inherited permissions in some Intel(R) HID Event Filter software installers before version 2.2.2.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVSS Vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

Weaknesses (CWE)

CWE-277CWE-732

Affected Products (19)

intel · hid_event_filter_driver (up to 2.2.2.1)vulnerable

intel · nuc_m15_laptop_kit_lapbc510_firmwarevulnerable

intel · nuc_m15_laptop_kit_lapbc510

intel · nuc_m15_laptop_kit_lapbc710_firmwarevulnerable

intel · nuc_m15_laptop_kit_lapbc710

intel · nuc_m15_laptop_kit_laprc510_firmwarevulnerable

intel · nuc_m15_laptop_kit_laprc510

intel · nuc_m15_laptop_kit_laprc710_firmwarevulnerable

intel · nuc_m15_laptop_kit_laprc710

intel · nuc_x15_laptop_kit_lapac71g_firmwarevulnerable

· nuc_x15_laptop_kit_lapac71g

References (1)

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01089.html

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs