Vulnerabilities > CVE-2020-24462 - Out-of-bounds Write vulnerability in Intel Graphics Drivers

CVSS 4.6 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

local

low complexity

intel

CWE-787

NVD

Published: 2021-02-17

Updated: 2021-02-23

Summary

Out of bounds write in the Intel(R) Graphics Driver before version 15.33.53.5161, 15.36.40.5162, 15.40.47.5166, 15.45.33.5164 and 27.20.100.8336 may allow an authenticated user to potentially enable an escalation of privilege via local access.

Vulnerable Configurations

Part	Description	Count
Application	Intel Intel Graphics Drivers 14.40 Intel Graphics Drivers 15.33 Intel Graphics Drivers 15.33.49.5100 Intel Graphics Drivers 15.33.50.5129 Intel Graphics Drivers 15.33.51.5146 Intel Graphics Drivers 15.36 Intel Graphics Drivers 15.36.38.5117 Intel Graphics Drivers 15.36.39.5143 Intel Graphics Drivers 15.36.39.5144 Intel Graphics Drivers 15.36.39.5145 Intel Graphics Drivers 15.40.0.0 Intel Graphics Drivers 15.40.42.5063 Intel Graphics Drivers 15.40.44.5107 Intel Graphics Drivers 15.40.45.5126 Intel Graphics Drivers 15.40.46.5143 Intel Graphics Drivers 15.40.46.5144 Intel Graphics Drivers 15.45.0.0 Intel Graphics Drivers 15.45.26.5065 Intel Graphics Drivers 15.45.27.5068 Intel Graphics Drivers 15.45.29.5077 Intel Graphics Drivers 15.45.30.5103 Intel Graphics Drivers 15.45.31.5127 Intel Graphics Drivers 15.45.32.5145 Intel Graphics Drivers 15.45.32.5164 Intel Graphics Drivers *	25

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html