5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
0.0005 Low
EPSS
Percentile
15.9%
Severity: Medium
Date : 2021-02-27
CVE-ID : CVE-2020-8696 CVE-2020-8698
Package : intel-ucode
Type : information disclosure
Remote : No
Link : https://security.archlinux.org/AVG-1588
The package intel-ucode before version 20210216-1 is vulnerable to
information disclosure.
Upgrade to 20210216-1.
The problems have been fixed upstream in version 20210216.
None.
Improper removal of sensitive information before storage or transfer in
some Intelยฎ Processors may allow an authenticated user to potentially
enable information disclosure via local access.
Improper isolation of shared resources in some Intelยฎ Processors may
allow an authenticated user to potentially enable information
disclosure via local access.
An authenticated attacker could disclose information.
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00381.html
https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/releases/tag/microcode-20210216
https://security.archlinux.org/CVE-2020-8696
https://security.archlinux.org/CVE-2020-8698
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ArchLinux | any | any | intel-ucode | <ย 20210216-1 | UNKNOWN |
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
0.0005 Low
EPSS
Percentile
15.9%