7.1

CVE-2019-11154

Improper directory permissions in Intel(R) PROSet/Wireless WiFi Software before version 21.40 may allow an authenticated user to potentially enable denial of service and information disclosure via local access.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IntelProset/wireless Wifi Version < 21.40
   IntelDual Band Wireless-ac 3165 Version-
   IntelDual Band Wireless-ac 3168 Version-
   IntelDual Band Wireless-ac 7265 (rev D) Version-
   IntelDual Band Wireless-ac 8260 Version-
   IntelDual Band Wireless-ac 8265 Version-
   IntelDual Band Wireless-n 7265 (rev D) Version-
   IntelWi-fi 6 Ax200 Version-
   IntelWi-fi 6 Ax201 Version-
   IntelWireless-ac 9260 Version-
   IntelWireless-ac 9461 Version-
   IntelWireless-ac 9462 Version-
   IntelWireless-ac 9560 Version-
   IntelWireless 7265 (rev D) Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.08% 0.214
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.1 1.8 5.2
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
nvd@nist.gov 3.6 3.9 4.9
AV:L/AC:L/Au:N/C:P/I:N/A:P
CWE-732 Incorrect Permission Assignment for Critical Resource

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.