Vulnerability Description
Insecure inherited permissions in the Intel(R) PROSet/Wireless WiFi software installer for Windows 10 before version 22.40 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Intel | Ax210 Firmware | < 22.40 |
| Intel | Ax210 | - |
| Intel | Ax201 Firmware | < 22.40 |
| Intel | Ax201 | - |
| Intel | Ax200 Firmware | < 22.40 |
| Intel | Ax200 | - |
| Intel | Ac 9560 Firmware | < 22.40 |
| Intel | Ac 9560 | - |
| Intel | Ac 9462 Firmware | < 22.40 |
| Intel | Ac 9462 | - |
| Intel | Ac 9461 Firmware | < 22.40 |
| Intel | Ac 9461 | - |
| Intel | Ac 9260 Firmware | < 22.40 |
| Intel | Ac 9260 | - |
| Intel | Ac 8265 Firmware | < 22.40 |
| Intel | Ac 8265 | - |
| Intel | Ac 8260 Firmware | < 22.40 |
| Intel | Ac 8260 | - |
| Intel | Ac 3168 Firmware | < 22.40 |
| Intel | Ac 3168 | - |
Related Weaknesses (CWE)
References
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00509.Vendor Advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00509.Vendor Advisory
FAQ
What is CVE-2021-0064?
CVE-2021-0064 is a vulnerability with a CVSS score of 7.8 (HIGH). Insecure inherited permissions in the Intel(R) PROSet/Wireless WiFi software installer for Windows 10 before version 22.40 may allow an authenticated user to potentially enable escalation of privilege...
How severe is CVE-2021-0064?
CVE-2021-0064 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-0064?
Check the references section above for vendor advisories and patch information. Affected products include: Intel Ax210 Firmware, Intel Ax210, Intel Ax201 Firmware, Intel Ax201, Intel Ax200 Firmware.