Vulnerability Details CVE-2020-24525
Insecure inherited permissions in firmware update tool for some Intel(R) NUCs may allow an authenticated user to potentially enable escalation of privilege via local access.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 10.3%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 4.6
References
Products affected by CVE-2020-24525
-
cpe:2.3:h:intel:nuc_8_mainstream-g_kit_nuc8i5inh:-
-
cpe:2.3:h:intel:nuc_8_mainstream-g_kit_nuc8i7inh:-
-
cpe:2.3:h:intel:nuc_8_mainstream-g_mini_pc_nuc8i5inh:-
-
cpe:2.3:h:intel:nuc_8_mainstream-g_mini_pc_nuc8i7inh:-
-
cpe:2.3:h:intel:nuc_8_pro_board_nuc8i3pnb:-
-
cpe:2.3:h:intel:nuc_8_pro_kit_nuc8i3pnh:-
-
cpe:2.3:h:intel:nuc_8_pro_kit_nuc8i3pnk:-
-
cpe:2.3:h:intel:nuc_8_pro_mini_pc_nuc8i3pnk:-
-
cpe:2.3:h:intel:nuc_8_rugged_kit_nuc8cchkr:-
-
cpe:2.3:h:intel:nuc_9_pro_kit_nuc9v7qnx:-
-
cpe:2.3:h:intel:nuc_9_pro_kit_nuc9vxqnx:-
-
cpe:2.3:h:intel:nuc_board_h27002-400:-
-
cpe:2.3:h:intel:nuc_board_h27002-401:-
-
cpe:2.3:h:intel:nuc_board_h27002-402:-
-
cpe:2.3:h:intel:nuc_board_h27002-404:-
-
cpe:2.3:h:intel:nuc_board_h27002-500:-
-
cpe:2.3:h:intel:nuc_board_nuc8cchb:-
-
cpe:2.3:h:intel:nuc_kit_h26998-401:-
-
cpe:2.3:h:intel:nuc_kit_h26998-402:-
-
cpe:2.3:h:intel:nuc_kit_h26998-403:-
-
cpe:2.3:h:intel:nuc_kit_h26998-404:-
-
cpe:2.3:h:intel:nuc_kit_h26998-405:-
-
cpe:2.3:h:intel:nuc_kit_h26998-500:-
-
cpe:2.3:o:intel:nuc_8_mainstream-g_kit_nuc8i5inh_firmware:inwhl357.0036
-
cpe:2.3:o:intel:nuc_8_mainstream-g_kit_nuc8i7inh_firmware:inwhl357.0036
-
cpe:2.3:o:intel:nuc_8_mainstream-g_mini_pc_nuc8i5inh_firmware:inwhl357.0036
-
cpe:2.3:o:intel:nuc_8_mainstream-g_mini_pc_nuc8i7inh_firmware:inwhl357.0036
-
cpe:2.3:o:intel:nuc_8_pro_board_nuc8i3pnb_firmware:pnwhl357.0037
-
cpe:2.3:o:intel:nuc_8_pro_kit_nuc8i3pnh_firmware:pnwhl357.0037
-
cpe:2.3:o:intel:nuc_8_pro_kit_nuc8i3pnk_firmware:pnwhl357.0037
-
cpe:2.3:o:intel:nuc_8_pro_mini_pc_nuc8i3pnk_firmware:pnwhl357.0037
-
cpe:2.3:o:intel:nuc_8_rugged_kit_nuc8cchkr_firmware:chaplcel.0049
-
cpe:2.3:o:intel:nuc_9_pro_kit_nuc9v7qnx_firmware:qncflx70.34
-
cpe:2.3:o:intel:nuc_9_pro_kit_nuc9vxqnx_firmware:qncflx70.34
-
cpe:2.3:o:intel:nuc_board_h27002-400_firmware:tybyt10h.86a
-
cpe:2.3:o:intel:nuc_board_h27002-401_firmware:tybyt10h.86a
-
cpe:2.3:o:intel:nuc_board_h27002-402_firmware:tybyt10h.86a
-
cpe:2.3:o:intel:nuc_board_h27002-404_firmware:tybyt10h.86a
-
cpe:2.3:o:intel:nuc_board_h27002-500_firmware:tybyt20h.86a
-
cpe:2.3:o:intel:nuc_board_nuc8cchb_firmware:chaplcel.0049
-
cpe:2.3:o:intel:nuc_kit_h26998-401_firmware:tybyt10h.86a
-
cpe:2.3:o:intel:nuc_kit_h26998-402_firmware:tybyt10h.86a
-
cpe:2.3:o:intel:nuc_kit_h26998-403_firmware:tybyt10h.86a
-
cpe:2.3:o:intel:nuc_kit_h26998-404_firmware:tybyt10h.86a
-
cpe:2.3:o:intel:nuc_kit_h26998-405_firmware:tybyt10h.86a
-
cpe:2.3:o:intel:nuc_kit_h26998-500_firmware:tybyt20h.86a