Lucene search

[email protected]CVE-2019-11154

HistoryNov 14, 2019 - 5:15 p.m.

CVE-2019-11154

2019-11-1417:15:13

CWE-732

[email protected]

web.nvd.nist.gov

cve-2019-11154

directory permissions

intel

proset

wireless

wifi software

denial of service

information disclosure

nvd

3.6 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:N/A:P

7.1 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

7.2 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.7%

JSON

Improper directory permissions in Intel® PROSet/Wireless WiFi Software before version 21.40 may allow an authenticated user to potentially enable denial of service and information disclosure via local access.

Affected configurations

NVD

Node

intelproset\/wireless_wifiRange<21.40

AND

inteldual_band_wireless-ac_3165Match-

inteldual_band_wireless-ac_3168Match-

inteldual_band_wireless-ac_7265_\(rev_d\)Match-

inteldual_band_wireless-ac_8260Match-

inteldual_band_wireless-ac_8265Match-

inteldual_band_wireless-n_7265_\(rev_d\)Match-

intelwi-fi_6_ax200Match-

intelwi-fi_6_ax201Match-

intelwireless-ac_9260Match-

intelwireless-ac_9461Match-

intelwireless-ac_9462Match-

intelwireless-ac_9560Match-

intelwireless_7265_\(rev_d\)Match-

CPENameOperatorVersion
intel:proset\/wireless_wifiintel proset/wireless wifilt21.40

CPE	Name	Operator	Version
intel:proset\/wireless_wifi	intel proset/wireless wifi	lt	21.40

CNA Affected

[
  {
    "product": "Intel(R) PROSet/Wireless WiFi Software Security",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "See provided reference"
      }
    ]
  }
]