Lucene search

[email protected]CVE-2020-0550

HistoryMar 12, 2020 - 10:15 p.m.

CVE-2020-0550

2020-03-1222:15:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cve-2020-0550

intel

data cache

information security

vulnerability

5.6 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

5.1 Medium

AI Score

Confidence

High

1.9 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

11.8%

JSON

Improper data forwarding in some data cache for some Intel® Processors may allow an authenticated user to potentially enable information disclosure via local access. The list of affected products is provided in intel-sa-00330: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00330.html

CPENameOperatorVersion
intel:xeon_e5-2658_v2intel xeon e5-2658 v2eq-
intel:core_i7-4500uintel core i7-4500ueq-
intel:core_i7-3632qmintel core i7-3632qmeq-
intel:xeon_d-1649nintel xeon d-1649neq-
intel:xeon_d-1633nintel xeon d-1633neq-
intel:xeon_d-1637intel xeon d-1637eq-
intel:xeon_d-1627intel xeon d-1627eq-
intel:xeon_d-1623nintel xeon d-1623neq-
intel:xeon_d-1622intel xeon d-1622eq-
intel:xeon_d-1653nintel xeon d-1653neq-

CPE	Name	Operator	Version
intel:xeon_e5-2658_v2	intel xeon e5-2658 v2	eq	-
intel:core_i7-4500u	intel core i7-4500u	eq	-
intel:core_i7-3632qm	intel core i7-3632qm	eq	-
intel:xeon_d-1649n	intel xeon d-1649n	eq	-
intel:xeon_d-1633n	intel xeon d-1633n	eq	-
intel:xeon_d-1637	intel xeon d-1637	eq	-
intel:xeon_d-1627	intel xeon d-1627	eq	-
intel:xeon_d-1623n	intel xeon d-1623n	eq	-
intel:xeon_d-1622	intel xeon d-1622	eq	-
intel:xeon_d-1653n	intel xeon d-1653n	eq	-