Vulnerability Name:

CVE-2020-0558 (CCN-179893)

Assigned:2019-10-28
Published:2020-04-14
Updated:2021-07-21
Summary:Improper buffer restrictions in kernel mode driver for Intel(R) PROSet/Wireless WiFi products before version 21.70 on Windows 10 may allow an unprivileged user to potentially enable denial of service via adjacent access.
CVSS v3 Severity:6.5 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
5.7 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Adjacent
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): High
4.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
3.8 Low (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Adjacent
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Low
CVSS v2 Severity:3.3 Low (CVSS v2 Vector: AV:A/AC:L/Au:N/C:N/I:N/A:P)
Exploitability Metrics:Access Vector (AV): Adjacent_Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
3.3 Low (CCN CVSS v2 Vector: AV:A/AC:L/Au:N/C:N/I:N/A:P)
Exploitability Metrics:Access Vector (AV): Adjacent_Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
Vulnerability Type:CWE-119
Vulnerability Consequences:Denial of Service
References:Source: MITRE
Type: CNA
CVE-2020-0558

Source: XF
Type: UNKNOWN
intel-cve20200558-dos(179893)

Source: CCN
Type: Lenovo Security Advisory: LEN-30550
Intel PROSet Wireless WiFi Software Advisory

Source: CCN
Type: INTEL-SA-00338
Intel PROSet/Wireless WiFi Software Advisory

Source: MISC
Type: Vendor Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00338.html

Source: CCN
Type: ZDI-20-494
Intel Wi-Fi Link Driver Netwtw04 Out-Of-Bounds Write Remote Code Execution Vulnerability

Source: CCN
Type: ZDI-20-495
Intel Wi-Fi Link Driver Netwtw06 Stack-based Buffer Overflow Remote Code Execution Vulnerability

Source: CCN
Type: ZDI-20-496
Intel Wi-Fi Link Driver Netwtw06 Out-Of-Bounds Write Remote Code Execution Vulnerability

Vulnerable Configuration:Configuration 1:
  • cpe:/a:intel:proset/wireless_wifi:*:*:*:*:*:*:*:* (Version < 21.70.0.6)
  • AND
  • cpe:/h:intel:wi-fi_6_ax200:-:*:*:*:*:*:*:*
  • OR cpe:/h:intel:wi-fi_6_ax201:-:*:*:*:*:*:*:*
  • OR cpe:/h:intel:wireless-ac_9260:-:*:*:*:*:*:*:*
  • OR cpe:/h:intel:wireless-ac_9461:-:*:*:*:*:*:*:*
  • OR cpe:/h:intel:wireless-ac_9462:-:*:*:*:*:*:*:*
  • OR cpe:/h:intel:wireless-ac_9560:-:*:*:*:*:*:*:*

    • Configuration 2:
  • cpe:/a:intel:proset/wireless_wifi:*:*:*:*:*:*:*:* (Version < 20.70.16.4)
  • AND
  • cpe:/h:intel:dual_band_wireless-ac_8260:-:*:*:*:*:*:*:*
  • OR cpe:/h:intel:dual_band_wireless-ac_8265:-:*:*:*:*:*:*:*

    • Configuration 3:
  • cpe:/a:intel:proset/wireless_wifi:*:*:*:*:*:*:*:* (Version < 19.51.27.1)
  • AND
  • cpe:/h:intel:dual_band_wireless-ac_3165:-:*:*:*:*:*:*:*
  • OR cpe:/h:intel:dual_band_wireless-ac_3168:-:*:*:*:*:*:*:*
  • OR cpe:/h:intel:dual_band_wireless-ac_7265_(rev_d):-:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/h:intel:dual_band_wireless-ac_8260:-:*:*:*:*:*:*:*
  • OR cpe:/h:intel:dual_band_wireless-ac_8265:-:*:*:*:*:*:*:*
  • OR cpe:/h:intel:wi-fi_6_ax201:-:*:*:*:*:*:*:*
  • OR cpe:/h:intel:wi-fi_6_ax200:-:*:*:*:*:*:*:*
  • OR cpe:/h:intel:wireless-ac_9560:-:*:*:*:*:*:*:*
  • OR cpe:/h:intel:wireless-ac_9462:-:*:*:*:*:*:*:*
  • OR cpe:/h:intel:wireless-ac_9461:-:*:*:*:*:*:*:*
  • OR cpe:/h:intel:wireless-ac_9260:-:*:*:*:*:*:*:*
  • OR cpe:/h:intel:dual_band_wireless-ac_3168:-:*:*:*:*:*:*:*
  • OR cpe:/h:intel:dual_band_wireless-ac_3165:-:*:*:*:*:*:*:*
  • AND
  • cpe:/h:lenovo:thinkcentre_e93:-:*:*:*:*:*:*:*
  • OR cpe:/h:lenovo:thinkcentre_m6600:-:*:*:*:*:*:*:*
  • OR cpe:/h:lenovo:thinkcentre_m710s:-:*:*:*:*:*:*:*
  • OR cpe:/h:lenovo:thinkcentre_m710t:-:*:*:*:*:*:*:*
  • OR cpe:/h:lenovo:thinkcentre_e74:-:*:*:*:*:*:*:*
  • OR cpe:/h:lenovo:510-15ikl:-:*:*:*:*:*:*:*
  • OR cpe:/h:lenovo:510s-08ikl:-:*:*:*:*:*:*:*
  • OR cpe:/h:lenovo:ideacentre_300-20ish:-:*:*:*:*:*:*:*
  • OR cpe:/h:lenovo:ideacentre_300s-11ish:-:*:*:*:*:*:*:*
  • OR cpe:/h:lenovo:ideacentre_700:-:*:*:*:*:*:*:*
  • OR cpe:/h:lenovo:qitian_b4650:-:*:*:*:*:*:*:*
  • OR cpe:/h:lenovo:qitian_m4600:-:*:*:*:*:*:*:*
  • OR cpe:/h:lenovo:qitian_m4650:-:*:*:*:*:*:*:*
  • OR cpe:/h:lenovo:aio300-23isu(c5130):-:*:*:*:*:*:*:*
  • OR cpe:/h:lenovo:aio310-20iap:-:*:*:*:*:*:*:*
  • OR cpe:/h:lenovo:aio520-22ikl:-:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    intel proset/wireless wifi *
    intel wi-fi 6 ax200 -
    intel wi-fi 6 ax201 -
    intel wireless-ac 9260 -
    intel wireless-ac 9461 -
    intel wireless-ac 9462 -
    intel wireless-ac 9560 -
    intel proset/wireless wifi *
    intel dual band wireless-ac 8260 -
    intel dual band wireless-ac 8265 -
    intel proset/wireless wifi *
    intel dual band wireless-ac 3165 -
    intel dual band wireless-ac 3168 -
    intel dual band wireless-ac 7265 (rev d) -
    intel dual band wireless-ac 8260 -
    intel dual band wireless-ac 8265 -
    intel wi-fi 6 ax201 -
    intel wi-fi 6 ax200 -
    intel wireless-ac 9560 -
    intel wireless-ac 9462 -
    intel wireless-ac 9461 -
    intel wireless-ac 9260 -
    intel dual band wireless-ac 3168 -
    intel dual band wireless-ac 3165 -
    lenovo thinkcentre e93 -
    lenovo thinkcentre m6600 -
    lenovo thinkcentre m710s -
    lenovo thinkcentre m710t -
    lenovo thinkcentre e74 -
    lenovo 510-15ikl -
    lenovo 510s-08ikl -
    lenovo ideacentre 300-20ish -
    lenovo ideacentre 300s-11ish -
    lenovo ideacentre 700 -
    lenovo qitian b4650 -
    lenovo qitian m4600 -
    lenovo qitian m4650 -
    lenovo aio300-23isu(c5130) -
    lenovo aio310-20iap -
    lenovo aio520-22ikl -