Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
intelIntel Security CenterINTEL:INTEL-SA-00381
HistoryFeb 16, 2021 - 12:00 a.m.

2020.2 IPU - Intel® Processor Advisory

2021-02-1600:00:00
Intel Security Center
www.intel.com
17
JSON

Summary:

Potential security vulnerabilities in some Intel® Processors may allow information disclosure.** **Intel is releasing firmware updates to mitigate these potential vulnerabilities.

Vulnerability Details:

CVEID: CVE-2020-8698

Description: Improper isolation of shared resources in some Intel® Processors may allow an authenticated user to potentially enable information disclosure via local access.

CVSS Base Score: 5.5 Medium

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CVEID: CVE-2020-8696

Description: Improper removal of sensitive information before storage or transfer in some Intel® Processors may allow an authenticated user to potentially enable information disclosure via local access.

CVSS Base Score: 2.5 Low

CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N

Affected Products:

A list of impacted products can be found here.

Recommendations:

Intel recommends that users of affected Intel® Processors update to the latest version firmware provided by the system manufacturer that addresses these issues.

Intel has released microcode updates for the affected Intel® Processors that are currently supported on the public github repository.

On January 25, 2021 Intel has released new microcode updates to mitigate CVE-2020-8696 for Skylake server (50654) and Cascade Lake Server (50656 & 50657) processors. The new microcode update mitigates an issue when using an active JTAG agent like In Target Probe (ITP), Direct Connect Interface (DCI) or a Baseboard Management Controller (BMC) to take the CPU JTAG/TAP out of reset and then returning it to reset.

  • Skylake Server 02006a0a
  • Cascade Lake Server B-0 04003006
  • Cascade Lake Server B-1 05003006

Please see details below on access to the microcode:

GitHub*: Public Github: <https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files&gt;

To address this issue, an SGX TCB recovery will be required in Q4 2020. Refer to Intel® SGX Attestation Technical Details for more information on the SGX TCB recovery process.

Acknowledgements:

The following issues were found internally by Intel employees. Intel would like to thank Ezra Caltum, Joseph Nuzman, Nir Shildan and Ofir Joseff.

Intel, and nearly the entire technology industry, follows a disclosure practice called Coordinated Disclosure, under which a cybersecurity vulnerability is generally publicly disclosed only after mitigations are available.

Related

nessus 70
openvas 21
f5 1
redhat 22
archlinux 1
mageia 2
fedora 3
cloudfoundry 3
citrix 1
suse 4
osv 6
ubuntu 3
debian 1
centos 2
oraclelinux 5
prion 2
alpinelinux 1
debiancve 2
cve 2
redhatcve 2
ubuntucve 2
veracode 2
amazon 1
almalinux 1
rocky 1
ics 1
lenovo 1
hp 1
nessus
nessus
Oracle Linux 6 : microcode_ctl (ELSA-2020-5084)
2020-11-17 00:00:00
RHEL 6 : microcode_ctl (RHSA-2020:5189)
2020-11-24 00:00:00
RHEL 6 : microcode_ctl (RHSA-2020:5084)
2020-11-11 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2021-0140)
2022-01-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:3372-1)
2021-06-09 00:00:00
Ubuntu: Security Advisory (USN-4628-3)
2021-05-19 00:00:00
f5
f5
K63290144 : Intel processor vulnerabilities CVE-2020-8696 and CVE-2020-8698
2020-11-20 00:00:00
redhat
redhat
(RHSA-2020:5189) Moderate: microcode_ctl security, bug fix and enhancement update
2020-11-23 18:41:54
(RHSA-2020:5084) Moderate: microcode_ctl security, bug fix, and enhancement update
2020-11-11 09:27:51
(RHSA-2020:5184) Moderate: microcode_ctl security, bug fix and enhancement update
2020-11-23 17:19:29
archlinux
archlinux
[ASA-202102-34] intel-ucode: information disclosure
2021-02-27 00:00:00
mageia
mageia
Updated microcode package fixes security vulnerabilities
2021-03-17 09:16:07
Updated microcode package fixes security vulnerabilities
2020-11-14 00:20:36
fedora
fedora
[SECURITY] Fedora 33 Update: microcode_ctl-2.1-43.fc33
2020-11-22 01:27:43
[SECURITY] Fedora 31 Update: microcode_ctl-2.1-39.2.fc31
2020-11-20 01:29:29
[SECURITY] Fedora 32 Update: microcode_ctl-2.1-39.3.fc32
2020-11-29 01:15:00
cloudfoundry
cloudfoundry
USN-4628-2: Intel Microcode regression | Cloud Foundry
2020-12-11 00:00:00
USN-4628-1: Intel Microcode vulnerabilities | Cloud Foundry
2020-12-11 00:00:00
USN-4628-3: Intel Microcode vulnerabilities | Cloud Foundry
2021-06-11 00:00:00
citrix
citrix
Citrix Hypervisor Security Update
2020-11-12 04:00:00
suse
suse
Security update for ucode-intel (important)
2020-11-29 00:00:00
Security update for ucode-intel (important)
2020-11-27 00:00:00
Security update for ucode-intel (moderate)
2020-11-15 00:00:00
osv
osv
intel-microcode - security update
2021-02-06 00:00:00
intel-microcode vulnerabilities
2020-11-11 06:56:58
intel-microcode regression
2020-11-12 01:14:30
ubuntu
ubuntu
Intel Microcode regression
2020-11-12 00:00:00
Intel Microcode vulnerabilities
2021-05-17 00:00:00
Intel Microcode vulnerabilities
2020-11-11 00:00:00
debian
debian
[SECURITY] [DLA 2546-1] intel-microcode security update
2021-02-05 18:48:10
centos
centos
microcode_ctl security update
2020-11-19 13:47:47
microcode_ctl security update
2021-08-09 15:29:53
oraclelinux
oraclelinux
microcode_ctl security, bug fix and enhancement update
2020-11-17 00:00:00
microcode_ctl security, bug fix, and enhancement update
2020-11-17 00:00:00
microcode_ctl security, bug fix, and enhancement update
2020-11-17 00:00:00
prion
prion
Design/Logic Flaw
2020-11-12 18:15:00
Input validation
2020-11-12 18:15:00
alpinelinux
alpinelinux
CVE-2020-8698
2020-11-12 18:15:00
debiancve
debiancve
CVE-2020-8698
2020-11-12 18:15:00
CVE-2020-8696
2020-11-12 18:15:00
cve
cve
CVE-2020-8698
2020-11-12 18:15:00
CVE-2020-8696
2020-11-12 18:15:00
redhatcve
redhatcve
CVE-2020-8698
2022-05-14 12:39:12
CVE-2020-8696
2021-08-01 16:11:20
ubuntucve
ubuntucve
CVE-2020-8698
2020-11-10 00:00:00
CVE-2020-8696
2020-11-10 00:00:00
veracode
veracode
Information Disclosure
2020-11-12 07:53:06
Information Disclosure
2020-11-12 07:53:05
amazon
amazon
Medium: microcode_ctl
2021-06-16 20:37:00
almalinux
almalinux
Important: microcode_ctl security, bug fix and enhancement update
2021-08-09 09:19:57
rocky
rocky
microcode_ctl security, bug fix and enhancement update
2021-08-09 09:19:57
ics
ics
Siemens Industrial PCs and CNC devices (Update A)
2022-12-15 12:00:00
lenovo
lenovo
Multi-vendor BIOS Security Vulnerabilities (November 2020) - Lenovo Support NL
2020-11-04 15:47:25
hp
hp
HPSBHF03705 rev. 6 - BIOS November 2020 Security Updates
2020-11-09 00:00:00
JSON
Related for INTEL:INTEL-SA-00381
nessus70openvas21f51redhat22archlinux1mageia2fedora3cloudfoundry3citrix1suse4osv6ubuntu3debian1centos2oraclelinux5prion2alpinelinux1debiancve2cve2redhatcve2ubuntucve2veracode2amazon1almalinux1rocky1ics1lenovo1hp1