Vulnerabilities > CVE-2020-12369 - Out-of-bounds Write vulnerability in Intel Graphics Drivers

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

intel

CWE-787

NVD

Published: 2021-02-17

Updated: 2021-02-22

Summary

Out of bound write in some Intel(R) Graphics Drivers before version 26.20.100.8336 may allow a privileged user to potentially enable escalation of privilege via local access.

Vulnerable Configurations

Part	Description	Count
Application	Intel Intel Graphics Drivers 14.40 Intel Graphics Drivers 15.33 Intel Graphics Drivers 15.33.49.5100 Intel Graphics Drivers 15.33.50.5129 Intel Graphics Drivers 15.33.51.5146 Intel Graphics Drivers 15.33.53.5161 Intel Graphics Drivers 15.36 Intel Graphics Drivers 15.36.38.5117 Intel Graphics Drivers 15.36.39.5143 Intel Graphics Drivers 15.36.39.5144 Intel Graphics Drivers 15.36.39.5145 Intel Graphics Drivers 15.36.40.5162 Intel Graphics Drivers 15.40.0.0 Intel Graphics Drivers 15.40.42.5063 Intel Graphics Drivers 15.40.44.5107 Intel Graphics Drivers 15.40.45.5126 Intel Graphics Drivers 15.40.46.5143 Intel Graphics Drivers 15.40.46.5144 Intel Graphics Drivers 15.40.47.5166 Intel Graphics Drivers 15.45 Intel Graphics Drivers 15.45.0.0 Intel Graphics Drivers 15.45.26.5065 Intel Graphics Drivers 15.45.27.5068 Intel Graphics Drivers 15.45.29.5077 Intel Graphics Drivers 15.45.30.5103 Intel Graphics Drivers 15.45.31.5127 Intel Graphics Drivers 15.45.32.5145 Intel Graphics Drivers 15.45.32.5164 Intel Graphics Drivers 15.45.33.5164 Intel Graphics Drivers 26.20 Intel Graphics Drivers 26.20.100.6912 Intel Graphics Drivers 26.20.100.7000 Intel Graphics Drivers 26.20.100.7158 Intel Graphics Drivers 26.20.100.7212 Intel Graphics Drivers 26.20.100.7463 Intel Graphics Drivers 26.20.100.7584 Intel Graphics Drivers 26.20.100.7755 Intel Graphics Drivers 26.20.100.8141	39

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html