Lucene search

[email protected]CVE-2020-24486

HistoryJun 09, 2021 - 7:15 p.m.

CVE-2020-24486

2021-06-0919:15:00

CWE-20

[email protected]

web.nvd.nist.gov

cve-2020-24486

input validation

firmware

intel processor

denial of service

nvd

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

7.3 High

AI Score

Confidence

High

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

0.0004 Low

EPSS

Percentile

12.1%

JSON

Improper input validation in the firmware for some Intel® Processors may allow an authenticated user to potentially enable denial of service via local access.

CPENameOperatorVersion
intel:biosintel bioseq-
netapp:cloud_backupnetapp cloud backupeq-
netapp:hci_storage_node_biosnetapp hci storage node bioseq-
netapp:solidfire_biosnetapp solidfire bioseq-
netapp:hci_compute_node_biosnetapp hci compute node bioseq-
netapp:aff_biosnetapp aff bioseq-
netapp:fas_biosnetapp fas bioseq-
netapp:e-series_biosnetapp e-series bioseq-
siemens:simatic_ipc547g_firmwaresiemens simatic ipc547g firmwareeq*

CPE	Name	Operator	Version
intel:bios	intel bios	eq	-
netapp:cloud_backup	netapp cloud backup	eq	-
netapp:hci_storage_node_bios	netapp hci storage node bios	eq	-
netapp:solidfire_bios	netapp solidfire bios	eq	-
netapp:hci_compute_node_bios	netapp hci compute node bios	eq	-
netapp:aff_bios	netapp aff bios	eq	-
netapp:fas_bios	netapp fas bios	eq	-
netapp:e-series_bios	netapp e-series bios	eq	-
siemens:simatic_ipc547g_firmware	siemens simatic ipc547g firmware	eq	*