← Back

CVE-2020-12306

nvd nist
Published: Nov 12, 2020Modified: Nov 21, 2024

JSON object

Loading...
7.8
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability: 1.8 / Impact: 5.9
Source: NVD

Description

Incorrect default permissions in the Intel(R) RealSense(TM) D400 Series Dynamic Calibration Tool before version 2.11, may allow an authenticated user to potentially enable escalation of privilege via local access.

Affected (1)

Intel
1 product
Realsense D400 Series Dynamic Calibration Tool
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Realsense D400 Series Dynamic Calibration Tool
Before 2.11
Running on/withPlatform Versions
Microsoft
Windows
All versions

Related CWEs

CWE-276
Incorrect Default Permissions
During installation, installed file permissions are set to allow anyone to modify those files.

References (2)

Source: secure@intel.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.