Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
intelIntel Security CenterINTEL:INTEL-SA-00429
HistoryNov 10, 2020 - 12:00 a.m.

Intel® XTU Advisory

2020-11-1000:00:00
Intel Security Center
www.intel.com
7
JSON

Summary:

A potential security vulnerability in the Intel® Extreme Tuning Utility (XTU) may allow escalation of privilege.** **Intel is releasing software updates to mitigate this potential vulnerability.

Vulnerability Details:

CVEID: CVE-2020-12350

Description: Improper access control in the Intel® XTU before version 6.5.1.360 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVSS Base Score: 8.7 High

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:H/A:H

Affected Products:

Intel® XTU before version 6.5.1.360.

Recommendations:

Intel recommends updating the Intel® XTU to version 6.5.1.360 or later.

Updates are available for download at this location: <https://downloadcenter.intel.com/download/29183/Intel-Extreme-Tuning-Utility-Intel-XTU-?product=66427&gt;

Acknowledgements:

Intel would like to thank Andrew Hess (any1) for reporting this issue.

Intel, and nearly the entire technology industry, follows a disclosure practice called Coordinated Disclosure, under which a cybersecurity vulnerability is generally publicly disclosed only after mitigations are available.

Related

cve 1
hp 1
prion 1
threatpost 1
cve
cve
CVE-2020-12350
2020-11-12 19:15:00
hp
hp
HPSBHF03696 rev. 1 - Intel® Extreme Tuning Utility (XTU) November 2020 Security Update
2020-11-05 00:00:00
prion
prion
Improper access control
2020-11-12 19:15:00
threatpost
threatpost
Colossal Intel Update Anchored by Critical Privilege-Escalation Bugs
2020-11-10 20:59:04
JSON
Related for INTEL:INTEL-SA-00429
cve1hp1prion1threatpost1