CVE-2020-24458

Published: Feb 17, 2021Modified: Nov 21, 2024

5.2

Vector

CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:L

Exploitability: 0.9 / Impact: 4.2

Source: NVD

Description

Incomplete cleanup in some Intel(R) PROSet/Wireless WiFi and Killer (TM) drivers before version 22.0 may allow a privileged user to potentially enable information disclosure and denial of service<b> </b>via adjacent access.

Affected (2)

Products: Intel: Proset/wireless Wifi, Killer

Intel

2 products

Proset/wireless Wifi

Killer

Configuration A

1 vulnerable · 5 platform

Vulnerable Software	Affected Versions
Intel Proset/wireless Wifi	Before 22.0

Running on/with	Platform Versions
Intel Ac 9461	All versions
Intel Ac 9462	All versions
Intel Ac 9560	All versions
Intel Ax200	All versions
Intel Ax201	All versions

Configuration B

1 vulnerable · 2 platform

Vulnerable Software	Affected Versions
Intel Killer	Before 22.0

Running on/with	Platform Versions
Intel Ac 1550	All versions
Intel Ax1650	All versions

Related CWEs

CWE-459

Incomplete Cleanup

The product does not properly "clean up" and remove temporary or supporting resources after they have been used.

References (2)

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00448.html

Source: secure@intel.com

PatchVendor Advisory

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00448.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

Timeline

No history available yet.