CVE-2020-12321

EUVD-2020-4633
Improper buffer restriction in some Intel(R) Wireless Bluetooth(R) products before version 21.110 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.8 HIGH
ADJACENT_NETWORK
LOW
NONE
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 51%
Affected Products (NVD)
VendorProductVersion
inteldual_band_wireless-ac_3168_firmware
𝑥
< 21.110
inteldual_band_wireless-ac_8260_firmware
𝑥
< 21.110
inteldual_band_wireless-ac_8265_firmware
𝑥
< 21.110
intelwi-fi_6_ax200_firmware
𝑥
< 21.110
intelwi-fi_6_ax201_firmware
𝑥
< 21.110
intelwireless-ac_9260_firmware
𝑥
< 21.110
intelwireless-ac_9461_firmware
𝑥
< 21.110
intelwireless-ac_9462_firmware
𝑥
< 21.110
intelwireless-ac_9560_firmware
𝑥
< 21.110
intelwireless_7265_\(rev_d\)_firmware
𝑥
< 21.110
inteldual_band_wireless-ac_3165_firmware
𝑥
< 21.110
𝑥
= Vulnerable software versions
References
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00403
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00403