7.8

CVE-2020-0559

Insecure inherited permissions in some Intel(R) PROSet/Wireless WiFi products on Windows* 7 and 8.1 before version 21.40.5.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

Data is provided by the National Vulnerability Database (NVD)
IntelAc 3165 Firmware Version < 21.40.5.1
   MicrosoftWindows 7 Version-
   MicrosoftWindows 8.1 Version-
IntelAc 3168 Firmware Version < 21.40.5.1
   MicrosoftWindows 7 Version-
   MicrosoftWindows 8.1 Version-
IntelAc 7265 Firmware Version < 21.40.5.1
   MicrosoftWindows 7 Version-
   MicrosoftWindows 8.1 Version-
IntelAc 8260 Firmware Version < 21.40.5.1
   MicrosoftWindows 7 Version-
   MicrosoftWindows 8.1 Version-
IntelAc 8265 Firmware Version < 21.40.5.1
   MicrosoftWindows 7 Version-
   MicrosoftWindows 8.1 Version-
IntelAc 9260 Firmware Version < 21.40.5.1
   MicrosoftWindows 7 Version-
   MicrosoftWindows 8.1 Version-
IntelAc 9461 Firmware Version < 21.40.5.1
   MicrosoftWindows 7 Version-
   MicrosoftWindows 8.1 Version-
IntelAc 9462 Firmware Version < 21.40.5.1
   MicrosoftWindows 7 Version-
   MicrosoftWindows 8.1 Version-
IntelAc 9560 Firmware Version < 21.40.5.1
   MicrosoftWindows 7 Version-
   MicrosoftWindows 8.1 Version-
IntelAx200 Firmware Version < 21.40.5.1
   MicrosoftWindows 7 Version-
   MicrosoftWindows 8.1 Version-
IntelAx201 Firmware Version < 21.40.5.1
   MicrosoftWindows 7 Version-
   MicrosoftWindows 8.1 Version-
IntelAtom X5-e3930 Version-
IntelAtom X5-e3940 Version-
IntelAtom X7-e3950 Version-
IntelCeleron J1750 Version-
IntelCeleron J1800 Version-
IntelCeleron J1850 Version-
IntelCeleron J1900 Version-
IntelCeleron J3060 Version-
IntelCeleron J3160 Version-
IntelCeleron J3355 Version-
IntelCeleron J3355e Version-
IntelCeleron J3455 Version-
IntelCeleron J3455e Version-
IntelCeleron J4005 Version-
IntelCeleron J4025 Version-
IntelCeleron J4105 Version-
IntelCeleron J4125 Version-
IntelCeleron J6412 Version-
IntelCeleron J6413 Version-
IntelCeleron N2805 Version-
IntelCeleron N2806 Version-
IntelCeleron N2807 Version-
IntelCeleron N2808 Version-
IntelCeleron N2810 Version-
IntelCeleron N2815 Version-
IntelCeleron N2820 Version-
IntelCeleron N2830 Version-
IntelCeleron N2840 Version-
IntelCeleron N2910 Version-
IntelCeleron N2920 Version-
IntelCeleron N2930 Version-
IntelCeleron N2940 Version-
IntelCeleron N3000 Version-
IntelCeleron N3010 Version-
IntelCeleron N3050 Version-
IntelCeleron N3060 Version-
IntelCeleron N3150 Version-
IntelCeleron N3160 Version-
IntelCeleron N3350 Version-
IntelCeleron N3350e Version-
IntelCeleron N3450 Version-
IntelCeleron N4000 Version-
IntelCeleron N4020 Version-
IntelCeleron N4100 Version-
IntelCeleron N4120 Version-
IntelCeleron N4500 Version-
IntelCeleron N4505 Version-
IntelCeleron N5100 Version-
IntelCeleron N5105 Version-
IntelCeleron N6210 Version-
IntelCeleron N6211 Version-
IntelPentium J2850 Version-
IntelPentium J2900 Version-
IntelPentium J3710 Version-
IntelPentium J4205 Version-
IntelPentium J6426 Version-
IntelPentium N3510 Version-
IntelPentium N3520 Version-
IntelPentium N3530 Version-
IntelPentium N3540 Version-
IntelPentium N3700 Version-
IntelPentium N3710 Version-
IntelPentium N4200 Version-
IntelPentium N4200e Version-
IntelPentium N6415 Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.03% 0.058
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 4.6 3.9 6.4
AV:L/AC:L/Au:N/C:P/I:P/A:P
CWE-732 Incorrect Permission Assignment for Critical Resource

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.