Описание
Improper permissions in the installer for the Intel(R) Brand Verification Tool before version 11.0.0.1225 may allow an authenticated user to potentially enable escalation of privilege via local access.
Improper permissions in the installer for the Intel(R) Brand Verification Tool before version 11.0.0.1225 may allow an authenticated user to potentially enable escalation of privilege via local access.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2021-0086
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/H36U6CNREC436W6GYO7QUMJIVEA35SCV
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SVA2NY26MMXOODUMYZN5DCU3FXMBMBOB
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00516.html
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00546.html
- http://www.openwall.com/lists/oss-security/2021/06/08/7
- http://www.openwall.com/lists/oss-security/2021/06/09/2
- http://www.openwall.com/lists/oss-security/2021/06/10/1
Связанные уязвимости
CVSS3: 6.5
nvd
больше 4 лет назад
Observable response discrepancy in floating-point operations for some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.