Lucene search

K
cveIntelCVE-2020-12318
HistoryNov 12, 2020 - 6:15 p.m.

CVE-2020-12318

2020-11-1218:15:14
intel
web.nvd.nist.gov
28
cve-2020-12318
intel
proset
wireless
wifi
privilege escalation
local access
nvd

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.8

Confidence

High

EPSS

0

Percentile

12.6%

Protection mechanism failure in some Intel® PROSet/Wireless WiFi products before version 21.110 may allow an authenticated user to potentially enable escalation of privilege via local access.

Affected configurations

Nvd
Vulners
Node
intelproset\/wireless_wifiRange<21.110
AND
inteldual_band_wireless-ac_3165Match-
OR
inteldual_band_wireless-ac_3168Match-
OR
inteldual_band_wireless-ac_8260Match-
OR
inteldual_band_wireless-ac_8265Match-
OR
intelwi-fi_6_ax200Match-
OR
intelwi-fi_6_ax201Match-
OR
intelwireless-ac_9260Match-
OR
intelwireless-ac_9461Match-
OR
intelwireless-ac_9462Match-
OR
intelwireless-ac_9560Match-
OR
intelwireless_7265_\(rev_d\)Match-
VendorProductVersionCPE
intelproset\/wireless_wifi*cpe:2.3:a:intel:proset\/wireless_wifi:*:*:*:*:*:*:*:*
inteldual_band_wireless-ac_3165-cpe:2.3:h:intel:dual_band_wireless-ac_3165:-:*:*:*:*:*:*:*
inteldual_band_wireless-ac_3168-cpe:2.3:h:intel:dual_band_wireless-ac_3168:-:*:*:*:*:*:*:*
inteldual_band_wireless-ac_8260-cpe:2.3:h:intel:dual_band_wireless-ac_8260:-:*:*:*:*:*:*:*
inteldual_band_wireless-ac_8265-cpe:2.3:h:intel:dual_band_wireless-ac_8265:-:*:*:*:*:*:*:*
intelwi-fi_6_ax200-cpe:2.3:h:intel:wi-fi_6_ax200:-:*:*:*:*:*:*:*
intelwi-fi_6_ax201-cpe:2.3:h:intel:wi-fi_6_ax201:-:*:*:*:*:*:*:*
intelwireless-ac_9260-cpe:2.3:h:intel:wireless-ac_9260:-:*:*:*:*:*:*:*
intelwireless-ac_9461-cpe:2.3:h:intel:wireless-ac_9461:-:*:*:*:*:*:*:*
intelwireless-ac_9462-cpe:2.3:h:intel:wireless-ac_9462:-:*:*:*:*:*:*:*
Rows per page:
1-10 of 121

CNA Affected

[
  {
    "product": "Intel(R) PROSet/Wireless WiFi",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "before version 21.110"
      }
    ]
  }
]

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.8

Confidence

High

EPSS

0

Percentile

12.6%