{"api_version":"1","generated_at":"2026-04-23T02:58:29+00:00","cve":"CVE-2020-24462","urls":{"html":"https://cve.report/CVE-2020-24462","api":"https://cve.report/api/cve/CVE-2020-24462.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2020-24462","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2020-24462"},"summary":{"title":"CVE-2020-24462","description":"Out of bounds write in the Intel(R) Graphics Driver before version 15.33.53.5161, 15.36.40.5162, 15.40.47.5166, 15.45.33.5164 and 27.20.100.8336 may allow an authenticated user to potentially enable an escalation of privilege via local access.","state":"PUBLIC","assigner":"secure@intel.com","published_at":"2021-02-17 14:15:00","updated_at":"2021-02-23 14:51:00"},"problem_types":["CWE-787"],"metrics":[],"references":[{"url":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html","name":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html","refsource":"MISC","tags":["Vendor Advisory"],"title":"INTEL-SA-00438","mime":"text/html","httpstatus":"200","archivestatus":"0"},{"url":"https://www.cve.org/CVERecord?id=CVE-2020-24462","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2020-24462","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2020","cve_id":"24462","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"intel","cpe5":"graphics_drivers","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2020","cve_id":"24462","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"intel","cpe5":"graphics_drivers","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"data_type":"CVE","data_format":"MITRE","data_version":"4.0","CVE_data_meta":{"ID":"CVE-2020-24462","ASSIGNER":"secure@intel.com","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"vendor_name":"n/a","product":{"product_data":[{"product_name":"Intel(R) Graphics Driver","version":{"version_data":[{"version_value":"before version 15.33.53.5161, 15.36.40.5162, 15.40.47.5166, 15.45.33.5164 and 27.20.100.8336"}]}}]}}]}},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n escalation of privilege"}]}]},"references":{"reference_data":[{"refsource":"MISC","name":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html","url":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html"}]},"description":{"description_data":[{"lang":"eng","value":"Out of bounds write in the Intel(R) Graphics Driver before version 15.33.53.5161, 15.36.40.5162, 15.40.47.5166, 15.45.33.5164 and 27.20.100.8336 may allow an authenticated user to potentially enable an escalation of privilege via local access."}]}},"nvd":{"publishedDate":"2021-02-17 14:15:00","lastModifiedDate":"2021-02-23 14:51:00","problem_types":["CWE-787"],"metrics":{"baseMetricV3":{"cvssV3":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH","baseScore":7.8,"baseSeverity":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9},"baseMetricV2":{"cvssV2":{"version":"2.0","vectorString":"AV:L/AC:L/Au:N/C:P/I:P/A:P","accessVector":"LOCAL","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL","baseScore":4.6},"severity":"MEDIUM","exploitabilityScore":3.9,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}},"configurations":{"CVE_data_version":"4.0","nodes":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:intel:graphics_drivers:*:*:*:*:*:*:*:*","versionEndExcluding":"15.33.53.5161","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:intel:graphics_drivers:*:*:*:*:*:*:*:*","versionStartIncluding":"15.40.0.0","versionEndExcluding":"15.40.47.5166","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:intel:graphics_drivers:*:*:*:*:*:*:*:*","versionStartIncluding":"15.36","versionEndExcluding":"15.36.40.5162","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:intel:graphics_drivers:*:*:*:*:*:*:*:*","versionStartIncluding":"27.20","versionEndExcluding":"27.20.100.8336","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:intel:graphics_drivers:*:*:*:*:*:*:*:*","versionStartIncluding":"15.45.0.0","versionEndExcluding":"15.45.33.5164","cpe_name":[]}]}]}},"legacy_mitre":{"record":{"CveYear":"2020","CveId":"24462","Ordinal":"185872","Title":"CVE-2020-24462","CVE":"CVE-2020-24462","Year":"2020"},"notes":[{"CveYear":"2020","CveId":"24462","Ordinal":"1","NoteData":"Out of bounds write in the Intel(R) Graphics Driver before version 15.33.53.5161, 15.36.40.5162, 15.40.47.5166, 15.45.33.5164 and 27.20.100.8336 may allow an authenticated user to potentially enable an escalation of privilege via local access.","Type":"Description","Title":null},{"CveYear":"2020","CveId":"24462","Ordinal":"2","NoteData":"2021-02-17","Type":"Other","Title":"Published"},{"CveYear":"2020","CveId":"24462","Ordinal":"3","NoteData":"2021-02-17","Type":"Other","Title":"Modified"}]}}}