1. Home
  2. CVE Database
  3. CVE-2021-33095
HIGH · 7.8

CVE-2021-33095

Unquoted search path in the installer for the Intel(R) NUC M15 Laptop Kit Keyboard LED Service driver pack before version 1.0.0.4 may allow an authenticated user to potentially enable escalation of pr...

Vulnerability Description

Unquoted search path in the installer for the Intel(R) NUC M15 Laptop Kit Keyboard LED Service driver pack before version 1.0.0.4 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVSS Score

7.8

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
IntelNuc M15 Laptop Kit Keyboard Led Service Driver Pack< 1.0.0.4
IntelNuc M15 Laptop Kit Lapbc510-
IntelNuc M15 Laptop Kit Lapbc710-

Related Weaknesses (CWE)

CWE-428

References

FAQ

What is CVE-2021-33095?

CVE-2021-33095 is a vulnerability with a CVSS score of 7.8 (HIGH). Unquoted search path in the installer for the Intel(R) NUC M15 Laptop Kit Keyboard LED Service driver pack before version 1.0.0.4 may allow an authenticated user to potentially enable escalation of pr...

How severe is CVE-2021-33095?

CVE-2021-33095 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2021-33095?

Check the references section above for vendor advisories and patch information. Affected products include: Intel Nuc M15 Laptop Kit Keyboard Led Service Driver Pack, Intel Nuc M15 Laptop Kit Lapbc510, Intel Nuc M15 Laptop Kit Lapbc710.