CVE-2020-0520

CVE Database · CVE-2020-0520

CVE-2020-0520

· HIGHModified

CVSS v3.1

7.8

EPSS

0.34%

Published

Mar 12, 2020

Modified

Nov 21, 2024

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Path traversal in igdkmd64.sys for Intel(R) Graphics Drivers before versions 15.45.30.5103, 15.40.44.5107, 15.36.38.5117 and 15.33.49.5100 may allow an authenticated user to potentially enable escalation of privilege or denial of service via local access.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Weaknesses (CWE)

CWE-22

Affected Products (4)

intel · graphics_driver (up to 15.33.49.5100)vulnerable

intel · graphics_driver (up to 15.36.38.5117)vulnerable

intel · graphics_driver (up to 15.40.44.5107)vulnerable

intel · graphics_driver (up to 15.45.30.5103)vulnerable

References (4)

https://security.netapp.com/advisory/ntap-20200320-0003/

Third Party Advisory