CVE-2020-8672

CVE Database · CVE-2020-8672

CVE-2020-8672

· HIGHModified

CVSS v3.1

7.8

EPSS

0.34%

Published

Feb 2, 2021

Modified

Nov 21, 2024

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Out of bound read in BIOS firmware for 8th, 9th Generation Intel(R) Core(TM), Intel(R) Celeron(R) Processor 4000 Series Processors may allow an unauthenticated user to potentially enable elevation of privilege or denial of service via local access.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Weaknesses (CWE)

CWE-125

Affected Products (49)

intel · biosvulnerable

intel · celeron_4205u

intel · celeron_4305u

intel · celeron_4305ue

intel · core_i3_8100

intel · core_i3_8100f

intel · core_i3_8100t

intel · core_i3_8300

intel · core_i3_8300t

intel · core_i3_8350k

intel · core_i3_9100

intel · core_i3_9100f

intel · core_i3_9100t

· core_i3_9300

References (2)

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00356.html

Vendor Advisory

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00356.html

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs