CVE-2021-33090
First published: Wed Nov 17 2021(Updated: )
Incorrect default permissionsin the software installer for the Intel(R) NUC HDMI Firmware Update Tool for NUC10i3FN, NUC10i5FN, NUC10i7FN before version 1.78.2.0.7 may allow an authenticated user to potentially enable escalation of privilege via local access.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Intel Nuc Hdmi Firmware Update Tool | <1.78.2.0.7 | |
| Intel Nuc10i3fn | ||
| Intel Nuc10i5fn | ||
| Intel Nuc10i7fn |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2021-33090?
CVE-2021-33090 is a vulnerability in the Intel(R) NUC HDMI Firmware Update Tool that allows an authenticated user to potentially enable escalation of privilege via local access.
What is the severity of CVE-2021-33090?
CVE-2021-33090 has a severity level of 7.8, which is considered high.
Which software is affected by CVE-2021-33090?
The Intel(R) NUC HDMI Firmware Update Tool versions before 1.78.2.0.7 are affected by CVE-2021-33090.
Can an authenticated user exploit CVE-2021-33090?
Yes, an authenticated user can potentially exploit CVE-2021-33090 and enable escalation of privilege via local access.
Where can I find more information about CVE-2021-33090?
More information about CVE-2021-33090 can be found at the following reference: [Intel Security Advisory Intel-SA-00568](https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00568.html).
- collector/nvd-index
- agent/weakness
- agent/references
- agent/author
- agent/severity
- agent/type
- agent/event
- agent/description
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/intel
- canonical/intel nuc hdmi firmware update tool
- canonical/intel nuc10i3fn
- canonical/intel nuc10i5fn
- canonical/intel nuc10i7fn