PT-2019-3992 · Intel · Intel Proset/Wireless Wifi

Published

2019-11-12

Updated

2021-07-21

CVE-2019-11154

CVSS v3.1

7.1

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Name of the Vulnerable Software and Affected Versions Intel(R) PROSet/Wireless WiFi Software versions prior to 21.40

Description The issue is related to improper directory permissions in the Intel(R) PROSet/Wireless WiFi Software, which may allow an authenticated user to potentially enable denial of service and information disclosure via local access. The vulnerability is associated with incorrect default permission settings, and its exploitation can lead to a denial of service and disclosure of protected information.

Recommendations For versions prior to 21.40, update to version 21.40 or later to resolve the issue.

Fix

Incorrect Permission

Incorrect Default Permissions

Improper Privilege Management

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-732CWE-276CWE-269

Related Identifiers

BDU:2019-04523

CVE-2019-11154

Affected Products

Intel Proset/Wireless Wifi

PT-2019-3992 · Intel · Intel Proset/Wireless Wifi

CVE-2019-11154

Weakness Enumeration

Related Identifiers

Affected Products

References · 4