ID CVE-2020-12369 Type cve Reporter cve@mitre.org Modified 2021-02-22T19:44:00
Description
Out of bound write in some Intel(R) Graphics Drivers before version 26.20.100.8336 may allow a privileged user to potentially enable escalation of privilege via local access.
{"lenovo": [{"lastseen": "2021-02-23T15:28:28", "bulletinFamily": "info", "cvelist": ["CVE-2020-0518", "CVE-2020-12362", "CVE-2020-12366", "CVE-2020-0521", "CVE-2020-12367", "CVE-2020-12373", "CVE-2020-12372", "CVE-2020-0544", "CVE-2020-12385", "CVE-2020-12384", "CVE-2020-12369", "CVE-2020-12371", "CVE-2020-12363", "CVE-2020-8678", "CVE-2020-12370", "CVE-2020-12386", "CVE-2020-12368", "CVE-2020-24448", "CVE-2020-12361", "CVE-2020-24450", "CVE-2020-12365", "CVE-2020-12364"], "description": "**Lenovo Security Advisory: **LEN-51723\n\n**Potential Impact: **Privilege escalation, denial of service, information disclosure\n\n**Severity: **High\n\n**Scope of Impact: **Industry-wide\n\n**CVE Identifier: **CVE-2020-0518, CVE-2020-0521, CVE-2020-0544, CVE-2020-12361, CVE-2020-12362, CVE-2020-12363, CVE-2020-12364, CVE-2020-12365, CVE-2020-12366, CVE-2020-12367, CVE-2020-12368, CVE-2020-12369, CVE-2020-12370, CVE-2020-12371, CVE-2020-12372, CVE-2020-12373, CVE-2020-12384, CVE-2020-12385, CVE-2020-12386, CVE-2020-24448, CVE-2020-24450, CVE-2020-8678\n\n**Summary Description:**\n\nIntel reported potential security vulnerabilities in some Intel Graphics Drivers that may allow escalation of privilege, denial of service and/or information disclosure.\n\n**Mitigation Strategy for Customers (what you should do to protect yourself):**\n\nIntel recommends updating the Intel Graphics Drivers to the version (or newer) indicated for your model in the Product Impact section.\n", "edition": 5, "modified": "2021-02-18T13:50:47", "published": "2021-02-09T16:58:30", "id": "LENOVO:PS500393-INTEL-GRAPHICS-DRIVERS-ADVISORY-NOSID", "href": "https://support.lenovo.com/us/en/product_security/ps500393-intel-graphics-drivers-advisory", "title": "Intel Graphics Drivers Advisory - Lenovo Support US", "type": "lenovo", "cvss": {"score": 4.6, "vector": "AV:L/AC:L/Au:N/C:P/I:P/A:P"}}], "hp": [{"lastseen": "2021-02-23T15:28:36", "bulletinFamily": "software", "cvelist": ["CVE-2020-0518", "CVE-2020-12362", "CVE-2020-12366", "CVE-2020-0521", "CVE-2020-12367", "CVE-2020-12373", "CVE-2020-12372", "CVE-2020-0544", "CVE-2020-12385", "CVE-2020-12384", "CVE-2020-12369", "CVE-2020-12371", "CVE-2020-12363", "CVE-2020-8678", "CVE-2020-12370", "CVE-2020-12386", "CVE-2020-12368", "CVE-2020-24448", "CVE-2020-12361", "CVE-2020-24450", "CVE-2020-12365", "CVE-2020-12364"], "description": "## Potential Security Impact\nEscalation of Privilege, Denial of Service, and Information Disclosure\n\n**Source**: HP, HP Product Security Response Team (PSRT) \n\n**Reported By**: Intel \n\n## VULNERABILITY SUMMARY\nIntel has informed HP of a potential security vulnerabilities identified in some Intel\u00ae Graphics Drivers which may allow denial of service. Intel is releasing software updates to mitigate these potential vulnerabilities.\n\n## RESOLUTION\nIntel has released updates to mitigate the potential vulnerabilities. HP has identified the affected platforms and corresponding SoftPaqs with minimum versions that mitigate the potential vulnerabilities. See the affected platforms listed below.\n\nNewer versions may become available and identified minimum versions may become obsolete. If a SoftPaq Link becomes invalid, check the HP Customer Support - Software and Driver Downloads site to obtain the latest update for your product model. \n\nHP recommends keeping your system up to date with the latest firmware and software.\n", "edition": 2, "modified": "2021-02-09T00:00:00", "published": "2021-02-09T00:00:00", "id": "HP:C07023592", "href": "https://support.hp.com/us-en/document/c07023592", "title": "HPSBHF03719 rev. 1 - Intel\u00ae Graphics Drivers February 2021 Security Update", "type": "hp", "cvss": {"score": 4.6, "vector": "AV:L/AC:L/Au:N/C:P/I:P/A:P"}}]}
