7.8
CVE-2020-0557
- EPSS 0.07%
- Published 15.04.2020 17:15:13
- Last modified 21.11.2024 04:53:45
- Source secure@intel.com
- Teams watchlist Login
- Open Login
Insecure inherited permissions in Intel(R) PROSet/Wireless WiFi products before version 21.70 on Windows 10 may allow an authenticated user to potentially enable escalation of privilege via local access.
Data is provided by the National Vulnerability Database (NVD)
Intel ≫ Proset/wireless Wifi Version < 21.70.0.6
Intel ≫ Wi-fi 6 Ax200 Version-
Intel ≫ Wi-fi 6 Ax201 Version-
Intel ≫ Wireless-ac 9260 Version-
Intel ≫ Wireless-ac 9461 Version-
Intel ≫ Wireless-ac 9462 Version-
Intel ≫ Wireless-ac 9560 Version-
Intel ≫ Wi-fi 6 Ax201 Version-
Intel ≫ Wireless-ac 9260 Version-
Intel ≫ Wireless-ac 9461 Version-
Intel ≫ Wireless-ac 9462 Version-
Intel ≫ Wireless-ac 9560 Version-
Intel ≫ Proset/wireless Wifi Version < 20.70.16.4
Intel ≫ Proset/wireless Wifi Version < 19.51.27.1
Intel ≫ Dual Band Wireless-ac 3165 Version-
Intel ≫ Dual Band Wireless-ac 3168 Version-
Intel ≫ Dual Band Wireless-ac 7265 (rev D) Version-
Intel ≫ Dual Band Wireless-ac 3168 Version-
Intel ≫ Dual Band Wireless-ac 7265 (rev D) Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.07% | 0.229 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 4.6 | 3.9 | 6.4 |
AV:L/AC:L/Au:N/C:P/I:P/A:P
|
CWE-732 Incorrect Permission Assignment for Critical Resource
The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.