Lucene search

K
redhatcveRedhat.comRH:CVE-2020-12653
HistoryMay 05, 2020 - 7:39 p.m.

CVE-2020-12653

2020-05-0519:39:50
redhat.com
access.redhat.com
19

0.0004 Low

EPSS

Percentile

5.1%

A flaw was found in the way the mwifiex_cmd_append_vsie_tlv() in Linux kernel’s Marvell WiFi-Ex driver handled vendor specific information elements. A local user could use this flaw to escalate their privileges on the system.

Mitigation

In order to mitigate this issue it is possible to prevent the affected code from being loaded by blacklisting the kernel module mwifiex. For instructions relating to how to blacklist a kernel module refer to: <https://access.redhat.com/solutions/41278&gt;