CVE-2020-0557

HIGH

Intel Proset/wireless Wifi - Incorrect Permission Assignment

Title source: rule

Description

Insecure inherited permissions in Intel(R) PROSet/Wireless WiFi products before version 21.70 on Windows 10 may allow an authenticated user to potentially enable escalation of privilege via local access.

Exploits (1)

nomisec WRITEUP

by hessandrew · poc

https://github.com/hessandrew/CVE-2020-0557_INTEL-SA-00338

View Code ZIP pw:eip

References (1)

Core 1

Core References

Vendor Advisory x_refsource_misc

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00338.html

Scores

CVSS v3 7.8

EPSS 0.0007

EPSS Percentile 22.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-732

Status published

Products (1)

intel/proset\/wireless_wifi < 21.70.0.6

Published Apr 15, 2020

Tracked Since Feb 18, 2026