CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2025-20104: Race condition in some Administrative Tools for some Intel(R) Network Adapters package before version 29.4 may allow an authenticated user to...

5.4 CVSS

Description

Race condition in some Administrative Tools for some Intel(R) Network Adapters package before version 29.4 may allow an authenticated user to potentially enable escalation of privilege via local access.

Classification

CVE ID: CVE-2025-20104

CVSS Base Severity: MEDIUM

CVSS Base Score: 5.4

CVSS Vector: CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Problem Types

Escalation of Privilege Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Affected Products

Vendor: n/a

Product: Administrative Tools for some Intel(R) Network Adapters package

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.01% (probability of being exploited)

EPSS Percentile: 1.15% (scored less or equal to compared to others)

EPSS Date: 2025-06-11 (when was this score calculated)

References

https://nvd.nist.gov/vuln/detail/CVE-2025-20104
https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01293.html

Timeline

2025-05-13 22:40:18 UTC
CVE

Race condition in some Administrative Tools for some Intel(R) Network Adapters package before version 29.4 may allow an authenticated user to...