PT-2019-8874 · Intel · Intel Proset/Wireless Wifi

Published

2019-01-10

Updated

2019-10-03

CVE-2018-12177

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Intel(R) PROSet/Wireless WiFi Software versions prior to 20.90.0.7

Description The issue is related to improper directory permissions in the ZeroConfig service, which may allow an authorized user to potentially enable escalation of privilege via local access.

Recommendations For versions prior to 20.90.0.7, update to version 20.90.0.7 or later to resolve the issue.

Fix

Incorrect Permission

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-732

Related Identifiers

CVE-2018-12177

Affected Products

Intel Proset/Wireless Wifi

PT-2019-8874 · Intel · Intel Proset/Wireless Wifi

CVE-2018-12177

Weakness Enumeration

Related Identifiers

Affected Products

References · 3