Vulnerabilities > CVE-2020-0527 - Unspecified vulnerability in Intel products

CVSS 4.4 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

local

low complexity

intel

NVD

Published: 2020-06-15

Updated: 2021-07-21

Summary

Insufficient control flow management in firmware for some Intel(R) Data Center SSDs may allow a privileged user to potentially enable information disclosure via local access.

Vulnerable Configurations

Part	Description	Count
OS	Intel Intel SSD D3 S4510 Firmware * Intel SSD DC P4510 Firmware * Intel SSD DC P4610 Firmware * Intel SSD DC P4618 Firmware - Intel SSD DC P4511 Firmware *	5
Hardware	Intel Intel SSD D3 S4510 - Intel SSD DC P4510 - Intel SSD DC P4610 - Intel SSD DC P4618 - Intel SSD DC P4511 -	5

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00266.html