Improper buffer restriction in some Intel(R) Wireless Bluetooth(R) products before version 21.110 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.
Conclusion & alert: CVE-2020-12321 is rated Moderate Risk (55.9/100): CVSS High severity, with medium exploitation likelihood (EPSS 0.97%). Mandatory action: Review affected assets and schedule remediation.
Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.
EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).
| # | Date | Old EPSS score | New EPSS score | Delta (New - Old) |
|---|---|---|---|---|
| 1 | 2026-06-15 | 0.31% | 0.97% | +0.66% |
| 2 | 2025-03-17 | 0.06% | 0.31% | +0.25% |
| 3 | 2023-03-07 | — | 0.06% | — |
Full EPSS history (7 records total)
CVSS metrics for this CVE.
| Base score | Version | Severity | Vector | Exploitability | Impact | Score source |
|---|---|---|---|---|---|---|
| 8.8 | 3.1 | HIGH |
|
2.8 | 5.9 | [email protected] |
| 5.8 | 2.0 | MEDIUM |
|
6.5 | 6.4 | [email protected] |
| vendor | priority | summary | link |
|---|---|---|---|
redhat
|
high | — | https://access.redhat.com/security/cve/CVE-2020-12321 |
suse
|
critical | CVE-2020-12321 severity critical: SUSE including 51 source package names (iwl100-firmware-39.31.5.1-101.el8_3.1, iwl100-firmware-39.31.5.1-80.el7_9, …), 104 product×package rows across 38 product lines (HPE Helion OpenStack 8, Image SLES12-SP5-SAP-Azure-LI-BYOS-Production, … (38 product lines)): Fixed 101, Known Not Affected 3. | https://www.suse.com/security/cve/CVE-2020-12321/ |
| Vendor | Product | Version | Raw CPE |
|---|---|---|---|
| intel | dual_band_wireless-ac_3168_firmware | < 21.110 | cpe:2.3:o:intel:dual_band_wireless-ac_3168_firmware:*:*:*:*:*:*:*:* |
| intel | dual_band_wireless-ac_8260_firmware | < 21.110 | cpe:2.3:o:intel:dual_band_wireless-ac_8260_firmware:*:*:*:*:*:*:*:* |
| intel | dual_band_wireless-ac_8265_firmware | < 21.110 | cpe:2.3:o:intel:dual_band_wireless-ac_8265_firmware:*:*:*:*:*:*:*:* |
| intel | wi-fi_6_ax200_firmware | < 21.110 | cpe:2.3:o:intel:wi-fi_6_ax200_firmware:*:*:*:*:*:*:*:* |
| intel | wi-fi_6_ax201_firmware | < 21.110 | cpe:2.3:o:intel:wi-fi_6_ax201_firmware:*:*:*:*:*:*:*:* |
| intel | wireless-ac_9260_firmware | < 21.110 | cpe:2.3:o:intel:wireless-ac_9260_firmware:*:*:*:*:*:*:*:* |
| intel | wireless-ac_9461_firmware | < 21.110 | cpe:2.3:o:intel:wireless-ac_9461_firmware:*:*:*:*:*:*:*:* |
| intel | wireless-ac_9462_firmware | < 21.110 | cpe:2.3:o:intel:wireless-ac_9462_firmware:*:*:*:*:*:*:*:* |
| intel | wireless-ac_9560_firmware | < 21.110 | cpe:2.3:o:intel:wireless-ac_9560_firmware:*:*:*:*:*:*:*:* |
| intel | wireless_7265_\(rev_d\)_firmware | < 21.110 | cpe:2.3:o:intel:wireless_7265_\(rev_d\)_firmware:*:*:*:*:*:*:*:* |
| intel | dual_band_wireless-ac_3165_firmware | < 21.110 | cpe:2.3:o:intel:dual_band_wireless-ac_3165_firmware:*:*:*:*:*:*:*:* |
| URL | Tags |
|---|---|
| https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00403 | Patch Vendor Advisory |