Strix
26.1K

CVE-2020-0559

HIGHCVSS 7.8/10EPSS 0.29%

Last modified

CVE-2020-0559 is a high-severity vulnerability rated 7.8/10 on the CVSS scale. Insecure inherited permissions in some Intel(R) PROSet/Wireless WiFi products on Windows* 7 and 8.1 before version 21.40.5.1 may allow an authenticated user to potentially enable escalation of privilege via local access.. EPSS estimates a 0.29% chance of exploitation in the next 30 days.

Description

Insecure inherited permissions in some Intel(R) PROSet/Wireless WiFi products on Windows* 7 and 8.1 before version 21.40.5.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

Metrics

CVSS 3.1
7.8/10

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Probability
0.29%

20.5th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
IntelAc 3165 Firmware< 21.40.5.1
IntelAc 3168 Firmware< 21.40.5.1
IntelAc 7265 Firmware< 21.40.5.1
IntelAc 8260 Firmware< 21.40.5.1
IntelAc 8265 Firmware< 21.40.5.1
IntelAc 9260 Firmware< 21.40.5.1
IntelAc 9461 Firmware< 21.40.5.1
IntelAc 9462 Firmware< 21.40.5.1
IntelAc 9560 Firmware< 21.40.5.1
IntelAx200 Firmware< 21.40.5.1
IntelAx201 Firmware< 21.40.5.1
IntelAtom X5-E3930All versions
IntelAtom X5-E3940All versions
IntelAtom X7-E3950All versions
IntelCeleron J1750All versions
IntelCeleron J1800All versions
IntelCeleron J1850All versions
IntelCeleron J1900All versions
IntelCeleron J3060All versions
IntelCeleron J3160All versions
IntelCeleron J3355All versions
IntelCeleron J3355eAll versions
IntelCeleron J3455All versions
IntelCeleron J3455eAll versions
IntelCeleron J4005All versions
IntelCeleron J4025All versions
IntelCeleron J4105All versions
IntelCeleron J4125All versions
IntelCeleron J6412All versions
IntelCeleron J6413All versions
IntelCeleron N2805All versions
IntelCeleron N2806All versions
IntelCeleron N2807All versions
IntelCeleron N2808All versions
IntelCeleron N2810All versions
IntelCeleron N2815All versions
IntelCeleron N2820All versions
IntelCeleron N2830All versions
IntelCeleron N2840All versions
IntelCeleron N2910All versions
IntelCeleron N2920All versions
IntelCeleron N2930All versions
IntelCeleron N2940All versions
IntelCeleron N3000All versions
IntelCeleron N3010All versions
IntelCeleron N3050All versions
IntelCeleron N3060All versions
IntelCeleron N3150All versions
IntelCeleron N3160All versions
IntelCeleron N3350All versions

Showing 50 of 76 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2020-0559?
Insecure inherited permissions in some Intel(R) PROSet/Wireless WiFi products on Windows* 7 and 8.1 before version 21.40.5.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
How severe is CVE-2020-0559?
CVE-2020-0559 has a CVSS score of 7.8/10 (HIGH severity). The EPSS model estimates a 0.29% probability of exploitation in the next 30 days.
How do I fix CVE-2020-0559?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2020-0559?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST