CVE-2020-24458

CWE-4593 documents3 sources

Severity

5.2MEDIUM

EPSS

0.1%

top 73.81%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Intel Killer Intel Proset\/wireless Wifi Intel(r) Proset Wireless Wifi AND Killer (tm) Drivers

Timeline

PublishedFeb 17

Latest updateMay 24

Description

Incomplete cleanup in some Intel(R) PROSet/Wireless WiFi and Killer (TM) drivers before version 22.0 may allow a privileged user to potentially enable information disclosure and denial of service via adjacent access.

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:LExploitability: 0.9 | Impact: 4.2

Affected Packages3 packages

▶CVEListV5intel(r)_proset/wireless_wifi_and_killer_(tm)_driversbefore version 22.0

▶NVDintel/proset\/wireless_wifi< 22.0

▶NVDintel/killer< 22.0

Patches

Patch: www.intel.com ↗Patch: www.intel.com ↗

🔴Vulnerability Details

GHSA

GHSA-w9mf-mf4g-64qg: Incomplete cleanup in some Intel(R) PROSet/Wireless WiFi and Killer (TM) drivers before version 22↗2022-05-24

▶

CVEList

CVE-2020-24458: Incomplete cleanup in some Intel(R) PROSet/Wireless WiFi and Killer (TM) drivers before version 22↗2021-02-17

▶