Incorrect Permissions in Intel DSA Vulnerability Impacting Local Access
CVE-2020-24460

5.5MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Dsa
Vendor: CVE Published:; 12 November 2020

What is CVE-2020-24460?

The Intel DSA prior to version 20.8.30.6 possesses incorrect default permissions that could enable an authenticated user to potentially initiate a denial of service. This vulnerability emphasizes the importance of strict permission controls to prevent unauthorized access and maintain system stability. Users and administrators are encouraged to review the security advisory provided by Intel for detailed mitigation steps.

Affected Version(s)

Intel(R) DSA before version 20.8.30.6

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_MISC

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 12, 2020
Vulnerability Reserved
Aug 19, 2020