CVE-2025-20629 | THREATINT

Description

Insecure inherited permissions in the NVM Update Utility for some Intel(R) Ethernet Network Adapter E810 Series before version 4.60 may allow an authenticated user to potentially enable escalation of privilege via local access.

PUBLISHED Reserved 2024-11-06 | Published 2025-05-13 | Updated 2026-02-26 | Assigner intel

MEDIUM: 5.4CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

MEDIUM: 6.7CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

Problem types

Escalation of Privilege

Insecure Inherited Permissions

References

intel.com/...en/security-center/advisory/intel-sa-01295.html

cve.org (CVE-2025-20629)

nvd.nist.gov (CVE-2025-20629)

Download JSON