Lucene search
HistoryNov 12, 2020 - 6:15 p.m.
CVE-2020-8738
intel bios platform
processors
privileged user
escalation of privilege
local access
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
CVSS3
6.7
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
12.6%
Improper conditions check in Intel BIOS platform sample code for some Intel® Processors before may allow a privileged user to potentially enable escalation of privilege via local access.
Affected configurations
Node
intelcore_i5-7640xMatch-
ORintelcore_i7-3820Match-
ORintelcore_i7-3920xmMatch-
ORintelcore_i7-3930kMatch-
ORintelcore_i7-3940xmMatch-
ORintelcore_i7-3960xMatch-
ORintelcore_i7-3970xMatch-
ORintelcore_i7-4820kMatch-
ORintelcore_i7-4930kMatch-
ORintelcore_i7-4930mxMatch-
ORintelcore_i7-4940mxMatch-
ORintelcore_i7-4960xMatch-
ORintelcore_i7-5820kMatch-
ORintelcore_i7-5930kMatch-
ORintelcore_i7-5960xMatch-
ORintelcore_i7-6800kMatch-
ORintelcore_i7-6850kMatch-
ORintelcore_i7-6900kMatch-
ORintelcore_i7-6950xMatch-
ORintelcore_i7-7740xMatch-
ORintelcore_i7-7800xMatch-
ORintelcore_i7-7820xMatch-
ORintelcore_i7-9800xMatch-
ORintelcore_i9-10900xMatch-
ORintelcore_i9-10920xMatch-
ORintelcore_i9-10940xMatch-
ORintelcore_i9-10980xeMatch-
ORintelcore_i9-7900xMatch-
ORintelcore_i9-7920xMatch-
ORintelcore_i9-7940xMatch-
ORintelcore_i9-7960xMatch-
ORintelcore_i9-7980xeMatch-
ORintelcore_i9-9820xMatch-
ORintelcore_i9-9900xMatch-
ORintelcore_i9-9920xMatch-
ORintelcore_i9-9940xMatch-
ORintelcore_i9-9960xMatch-
ORintelcore_i9-9980xeMatch-
ORintelxeon_bronze_3104Match-
ORintelxeon_bronze_3106Match-
ORintelxeon_bronze_3204Match-
ORintelxeon_bronze_3206rMatch-
ORintelxeon_gold_5115Match-
ORintelxeon_gold_5118Match-
ORintelxeon_gold_5119tMatch-
ORintelxeon_gold_5120Match-
ORintelxeon_gold_5120tMatch-
ORintelxeon_gold_5122Match-
ORintelxeon_gold_5215Match-
ORintelxeon_gold_5215lMatch-
ORintelxeon_gold_5217Match-
ORintelxeon_gold_5218Match-
ORintelxeon_gold_5218bMatch-
ORintelxeon_gold_5218nMatch-
ORintelxeon_gold_5218rMatch-
ORintelxeon_gold_5218tMatch-
ORintelxeon_gold_5220Match-
ORintelxeon_gold_5220rMatch-
ORintelxeon_gold_5220sMatch-
ORintelxeon_gold_5220tMatch-
ORintelxeon_gold_5222Match-
ORintelxeon_gold_6126Match-
ORintelxeon_gold_6126fMatch-
ORintelxeon_gold_6126tMatch-
ORintelxeon_gold_6128Match-
ORintelxeon_gold_6130Match-
ORintelxeon_gold_6130fMatch-
ORintelxeon_gold_6130tMatch-
ORintelxeon_gold_6132Match-
ORintelxeon_gold_6134Match-
ORintelxeon_gold_6136Match-
ORintelxeon_gold_6138Match-
ORintelxeon_gold_6138fMatch-
ORintelxeon_gold_6138pMatch-
ORintelxeon_gold_6138tMatch-
ORintelxeon_gold_6140Match-
ORintelxeon_gold_6142Match-
ORintelxeon_gold_6142fMatch-
ORintelxeon_gold_6144Match-
ORintelxeon_gold_6146Match-
ORintelxeon_gold_6148Match-
ORintelxeon_gold_6148fMatch-
ORintelxeon_gold_6150Match-
ORintelxeon_gold_6152Match-
ORintelxeon_gold_6154Match-
ORintelxeon_gold_6208uMatch-
ORintelxeon_gold_6209uMatch-
ORintelxeon_gold_6210uMatch-
ORintelxeon_gold_6212uMatch-
ORintelxeon_gold_6222vMatch-
ORintelxeon_gold_6226Match-
ORintelxeon_gold_6226rMatch-
ORintelxeon_gold_6230Match-
ORintelxeon_gold_6230nMatch-
ORintelxeon_gold_6230rMatch-
ORintelxeon_gold_6230tMatch-
ORintelxeon_gold_6234Match-
ORintelxeon_gold_6238Match-
ORintelxeon_gold_6238lMatch-
ORintelxeon_gold_6238rMatch-
ORintelxeon_platinum_8153Match-
ORintelxeon_platinum_8156Match-
ORintelxeon_platinum_8158Match-
ORintelxeon_platinum_8160Match-
ORintelxeon_platinum_8160fMatch-
ORintelxeon_platinum_8160tMatch-
ORintelxeon_platinum_8164Match-
ORintelxeon_platinum_8168Match-
ORintelxeon_platinum_8170Match-
ORintelxeon_platinum_8176Match-
ORintelxeon_platinum_8176fMatch-
ORintelxeon_platinum_8180Match-
ORintelxeon_silver_4108Match-
ORintelxeon_silver_4109tMatch-
ORintelxeon_silver_4110Match-
ORintelxeon_silver_4112Match-
ORintelxeon_silver_4114Match-
ORintelxeon_silver_4114tMatch-
ORintelxeon_silver_4116Match-
ORintelxeon_silver_4116tMatch-
ORintelxeon_silver_4208Match-
ORintelxeon_silver_4209tMatch-
ORintelxeon_silver_4210Match-
ORintelxeon_silver_4210rMatch-
ORintelxeon_silver_4210tMatch-
ORintelxeon_silver_4214Match-
ORintelxeon_silver_4214rMatch-
ORintelxeon_silver_4214yMatch-
ORintelxeon_silver_4215Match-
ORintelxeon_silver_4215rMatch-
ORintelxeon_silver_4216Match-
ORintelxeon_w-10855mMatch-
ORintelxeon_w-10885mMatch-
ORintelxeon_w-1250Match-
ORintelxeon_w-1250eMatch-
ORintelxeon_w-1250pMatch-
ORintelxeon_w-1250teMatch-
ORintelxeon_w-1270Match-
ORintelxeon_w-1270eMatch-
ORintelxeon_w-1270pMatch-
ORintelxeon_w-1270teMatch-
ORintelxeon_w-1290Match-
ORintelxeon_w-1290eMatch-
ORintelxeon_w-1290pMatch-
ORintelxeon_w-1290tMatch-
ORintelxeon_w-1290teMatch-
ORintelxeon_w-2123Match-
ORintelxeon_w-2125Match-
ORintelxeon_w-2133Match-
ORintelxeon_w-2135Match-
ORintelxeon_w-2145Match-
ORintelxeon_w-2155Match-
ORintelxeon_w-2175Match-
ORintelxeon_w-2195Match-
ORintelxeon_w-2223Match-
ORintelxeon_w-2225Match-
ORintelxeon_w-2235Match-
ORintelxeon_w-2245Match-
ORintelxeon_w-2255Match-
ORintelxeon_w-2265Match-
ORintelxeon_w-2275Match-
ORintelxeon_w-2295Match-
ORintelxeon_w-3175xMatch-
ORintelxeon_w-3223Match-
ORintelxeon_w-3225Match-
ORintelxeon_w-3235Match-
ORintelxeon_w-3245Match-
ORintelxeon_w-3245mMatch-
ORintelxeon_w-3265Match-
ORintelxeon_w-3265mMatch-
ORintelxeon_w-3275Match-
ORintelxeon_w-3275mMatch-
intelbiosMatch-
Node
intelxeon_d-1513nMatch-
ORintelxeon_d-1518Match-
ORintelxeon_d-1520Match-
ORintelxeon_d-1521Match-
ORintelxeon_d-1523nMatch-
ORintelxeon_d-1527Match-
ORintelxeon_d-1528Match-
ORintelxeon_d-1529Match-
ORintelxeon_d-1531Match-
ORintelxeon_d-1533nMatch-
ORintelxeon_d-1537Match-
ORintelxeon_d-1539Match-
ORintelxeon_d-1540Match-
ORintelxeon_d-1541Match-
ORintelxeon_d-1543nMatch-
ORintelxeon_d-1548Match-
ORintelxeon_d-1553nMatch-
ORintelxeon_d-1557Match-
ORintelxeon_d-1559Match-
ORintelxeon_d-1567Match-
ORintelxeon_d-1571Match-
ORintelxeon_d-1577Match-
ORintelxeon_d-1602Match-
ORintelxeon_d-1622Match-
ORintelxeon_d-1623nMatch-
ORintelxeon_d-1627Match-
ORintelxeon_d-1633nMatch-
ORintelxeon_d-1637Match-
ORintelxeon_d-1649nMatch-
ORintelxeon_d-1653nMatch-
ORintelxeon_d-2123itMatch-
ORintelxeon_d-2141iMatch-
ORintelxeon_d-2142itMatch-
ORintelxeon_d-2143itMatch-
ORintelxeon_d-2145ntMatch-
ORintelxeon_d-2146ntMatch-
ORintelxeon_d-2161iMatch-
ORintelxeon_d-2163itMatch-
ORintelxeon_d-2166ntMatch-
ORintelxeon_d-2173itMatch-
ORintelxeon_d-2177ntMatch-
ORintelxeon_d-2183itMatch-
ORintelxeon_d-2187ntMatch-
ORintelxeon_e5-1428l_v3Match-
ORintelxeon_e5-1620_v3Match-
ORintelxeon_e5-1620_v4Match-
ORintelxeon_e5-1630_v3Match-
ORintelxeon_e5-1630_v4Match-
ORintelxeon_e5-1650_v3Match-
ORintelxeon_e5-1650_v4Match-
ORintelxeon_e5-1660_v3Match-
ORintelxeon_e5-1660_v4Match-
ORintelxeon_e5-1680_v3Match-
ORintelxeon_e5-1680_v4Match-
ORintelxeon_e5-2408l_v3Match-
ORintelxeon_e5-2418l_v3Match-
ORintelxeon_e5-2428l_v3Match-
ORintelxeon_e5-2438l_v3Match-
ORintelxeon_e5-2603_v3Match-
ORintelxeon_e5-2603_v4Match-
ORintelxeon_e5-2608l_v3Match-
ORintelxeon_e5-2608l_v4Match-
ORintelxeon_e5-2609_v3Match-
ORintelxeon_e5-2609_v4Match-
ORintelxeon_e5-2618l_v3Match-
ORintelxeon_e5-2618l_v4Match-
ORintelxeon_e5-2620_v3Match-
ORintelxeon_e5-2620_v4Match-
ORintelxeon_e5-2623_v3Match-
ORintelxeon_e5-2623_v4Match-
ORintelxeon_e5-2628l_v3Match-
ORintelxeon_e5-2628l_v4Match-
ORintelxeon_e5-2630_v3Match-
ORintelxeon_e5-2630_v4Match-
ORintelxeon_e5-2630l_v3Match-
ORintelxeon_e5-2630l_v4Match-
ORintelxeon_e5-2637_v3Match-
ORintelxeon_e5-2637_v4Match-
ORintelxeon_e5-2640_v3Match-
ORintelxeon_e5-2640_v4Match-
ORintelxeon_e5-2643_v3Match-
ORintelxeon_e5-2643_v4Match-
ORintelxeon_e5-2648l_v3Match-
ORintelxeon_e5-2648l_v4Match-
ORintelxeon_e5-2650_v3Match-
ORintelxeon_e5-2650_v4Match-
ORintelxeon_e5-2650l_v3Match-
ORintelxeon_e5-2650l_v4Match-
ORintelxeon_e5-2658_v3Match-
ORintelxeon_e5-2658_v4Match-
ORintelxeon_e5-2658a_v3Match-
ORintelxeon_e5-2660_v3Match-
ORintelxeon_e5-2660_v4Match-
ORintelxeon_e5-2667_v3Match-
ORintelxeon_e5-2667_v4Match-
ORintelxeon_e5-2670_v3Match-
ORintelxeon_e5-2680_v3Match-
ORintelxeon_e5-2680_v4Match-
ORintelxeon_e5-2683_v3Match-
ORintelxeon_e5-2683_v4Match-
ORintelxeon_e5-2687w_v3Match-
ORintelxeon_e5-2687w_v4Match-
ORintelxeon_e5-2690_v3Match-
ORintelxeon_e5-2690_v4Match-
ORintelxeon_e5-2695_v3Match-
ORintelxeon_e5-2695_v4Match-
ORintelxeon_e5-2697_v3Match-
ORintelxeon_e5-2697_v4Match-
ORintelxeon_e5-2697a_v4Match-
ORintelxeon_e5-2698_v3Match-
ORintelxeon_e5-2698_v4Match-
ORintelxeon_e5-2699_v3Match-
ORintelxeon_e5-2699_v4Match-
ORintelxeon_e5-2699a_v4Match-
ORintelxeon_e5-2699r_v4Match-
ORintelxeon_e5-4610_v3Match-
ORintelxeon_e5-4610_v4Match-
ORintelxeon_e5-4620_v3Match-
ORintelxeon_e5-4620_v4Match-
ORintelxeon_e5-4627_v3Match-
ORintelxeon_e5-4627_v4Match-
ORintelxeon_e5-4628l_v4Match-
ORintelxeon_e5-4640_v3Match-
ORintelxeon_e5-4640_v4Match-
ORintelxeon_e5-4648_v3Match-
ORintelxeon_e5-4650_v3Match-
ORintelxeon_e5-4650_v4Match-
ORintelxeon_e5-4655_v3Match-
ORintelxeon_e5-4655_v4Match-
ORintelxeon_e5-4660_v3Match-
ORintelxeon_e5-4660_v4Match-
ORintelxeon_e5-4667_v3Match-
ORintelxeon_e5-4667_v4Match-
ORintelxeon_e5-4669_v3Match-
ORintelxeon_e5-4669_v4Match-
ORintelxeon_e7-4809_v4Match-
ORintelxeon_e7-4820_v4Match-
ORintelxeon_e7-4830_v4Match-
ORintelxeon_e7-4850_v4Match-
ORintelxeon_e7-8860_v4Match-
ORintelxeon_e7-8867_v4Match-
ORintelxeon_e7-8870_v4Match-
ORintelxeon_e7-8880_v4Match-
ORintelxeon_e7-8890_v4Match-
ORintelxeon_e7-8891_v4Match-
ORintelxeon_e7-8893_v4Match-
ORintelxeon_e7-8894_v4Match-
intelbiosMatch-
Node
intelbiosMatch-
intelatom_c3308Match-
ORintelatom_c3336Match-
ORintelatom_c3338Match-
ORintelatom_c3338rMatch-
ORintelatom_c3436lMatch-
ORintelatom_c3508Match-
ORintelatom_c3538Match-
ORintelatom_c3558Match-
ORintelatom_c3558rMatch-
ORintelatom_c3708Match-
ORintelatom_c3750Match-
ORintelatom_c3758Match-
ORintelatom_c3758rMatch-
ORintelatom_c3808Match-
ORintelatom_c3830Match-
ORintelatom_c3850Match-
ORintelatom_c3858Match-
ORintelatom_c3950Match-
ORintelatom_c3955Match-
ORintelatom_c3958Match-
Node
netappcloud_backupMatch-
ORnetappfas\/aff_biosMatch-
ORnetapphci_compute_node_biosMatch-
ORnetapphci_storage_node_biosMatch-
ORnetappsolidfire_biosMatch-
Related
cvelist
cvelist
CVE-2020-8738
2020-11-12 18:04:29
prion
prion
Input validation
2020-11-12 18:15:00
cve
cve
CVE-2020-8738
2020-11-12 18:15:16
intel
intel
Intel BIOS Platform Sample Code Advisory
2020-11-10 00:00:00
lenovo
lenovo
Intel BIOS Platform Sample Code Advisory - Lenovo Support NL
2020-11-14 02:38:04
f5
f5
hp
hp
HPSBHF03705 rev. 6 - BIOS November 2020 Security Updates
2020-11-09 00:00:00
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
CVSS3
6.7
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
12.6%
Related for NVD:CVE-2020-8738