Insufficient Input Validation in Intel Graphics Drivers
CVE-2020-12366

7.8HIGH

Key Information:

Vendor: Intel
Status: Intel(r) Graphics Drivers
Vendor: CVE Published:; 17 February 2021

What is CVE-2020-12366?

An insufficient input validation vulnerability exists in Intel Graphics Drivers prior to version 27.20.100.8587, enabling a privileged user with local access to potentially escalate their privileges. This flaw could lead to unauthorized access and manipulation of critical system functions. It is essential for users to update their drivers to safeguard against exploitation and ensure the integrity of their systems.

Affected Version(s)

Intel(R) Graphics Drivers before version 27.20.100.8587

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 17, 2021
Vulnerability Reserved
Apr 28, 2020

JSON