Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
intelIntel Security CenterINTEL:INTEL-SA-00449
HistoryNov 10, 2020 - 12:00 a.m.

Intel® DSA Advisory

2020-11-1000:00:00
Intel Security Center
www.intel.com
6
intel® dsa
denial of service
vulnerability
version 20.8.30.6
update
intel
coordinated disclosure
cve-2020-24460
eran shimony

EPSS

0

Percentile

12.6%

JSON

Summary:

A potential security vulnerability in the Intel® Driver & Support Assistant (DSA) may allow denial of service. Intel is releasing a software update to mitigate this potential vulnerability.

Vulnerability Details:

CVEID: CVE-2020-24460

Description: Incorrect default permissions in the Intel® DSA before version 20.8.30.6 may allow an authenticated user to potentially enable denial of service via local access.

CVSS Base Score: 5.3 Medium

CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:N/A:H

Affected Products:

Intel® DSA before version 20.8.30.6.

Recommendation:

Intel recommends updating the Intel® DSA to version 20.8.30.6 or later.

Updates are available for download at this location:

<https://downloadcenter.intel.com/download/28425/Intel-Driver-Support-Assistant?product=128824&gt;

Acknowledgements:

Intel would like to thank Eran Shimony for reporting this issue.

Intel, and nearly the entire technology industry, follows a disclosure practice called Coordinated Disclosure, under which a cybersecurity vulnerability is generally publicly disclosed only after mitigations are available.

Related

nvd 1
cve 1
prion 1
cvelist 1
nvd
nvd
CVE-2020-24460
2020-11-12 19:15:14
cve
cve
CVE-2020-24460
2020-11-12 19:15:14
prion
prion
Design/Logic Flaw
2020-11-12 19:15:00
cvelist
cvelist
CVE-2020-24460
2020-11-12 18:56:38

EPSS

0

Percentile

12.6%

JSON
Related for INTEL:INTEL-SA-00449
nvd1cve1prion1cvelist1