What is CVE-2021-0056?

CVE-2021-0056 is a high-severity vulnerability in Intel Lapbc510, classified under Incorrect Permission Assignment for Critical Resource. CVSS score: 7.8/10. Published 2021-06-09.

How severe is CVE-2021-0056?

High severity. CVSS v3 base score is 7.8 out of 10.

Is CVE-2021-0056 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Intel Lapbc510

CVE-2021-0056

Insecure inherited permissions for the Intel(R) NUC M15 Laptop Kit Driver Pack software before updated version 1.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

EPSS: 0.002 (11.7th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

Intel Lapbc510
Intel Lapbc510_firmware
Intel Lapbc710
Intel Lapbc710_firmware
N/a Intel(r) Nuc M15 Laptop Kit Driver Pack Software — versions See references

Weakness classification (CWE)

CWE-732 — Incorrect Permission Assignment for Critical Resource

Public proof-of-concept exploits

References

secure@intel.com (x_refsource_MISC, Vendor Advisory)

Frequently asked questions

What is CVE-2021-0056?: CVE-2021-0056 is a high-severity vulnerability in Intel Lapbc510, classified under Incorrect Permission Assignment for Critical Resource. CVSS score: 7.8/10. Published 2021-06-09.
How severe is CVE-2021-0056?: High severity. CVSS v3 base score is 7.8 out of 10.
Is CVE-2021-0056 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.