Privilege Escalation Vulnerability in Intel Data Migration Software
CVE-2020-0547

7.8HIGH

Key Information:

Vendor: Intel
Status: Intel(r) Data Migration Software
Vendor: CVE Published:; 15 April 2020

Summary

The installer for Intel Data Migration Software versions 3.3 and earlier is affected by a security flaw due to incorrect default permissions. This vulnerability may allow an authenticated user to escalate their privileges locally, potentially leading to unauthorized access and manipulation of the system. It is crucial for users of affected versions to review security settings and apply necessary updates to mitigate this risk.

Affected Version(s)

Intel(R) Data Migration Software See provided reference

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 15, 2020
Vulnerability Reserved
Oct 28, 2019