Vulnerabilities > CVE-2020-8692 - Unspecified vulnerability in Intel products

CVSS 6.7 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

intel

NVD

Published: 2020-11-12

Updated: 2021-07-21

Summary

Insufficient access control in the firmware of the Intel(R) Ethernet 700 Series Controllers before version 7.3 may allow a privileged user to potentially enable escalation of privilege and/or denial of service via local access.

Vulnerable Configurations

Part	Description	Count
OS	Intel Intel V710 AT2 Firmware * Intel X710 TM4 Firmware * Intel X710 AT2 Firmware * Intel Xxv710 AM2 Firmware * Intel Xxv710 AM1 Firmware * Intel X710 BM2 Firmware * Intel Xl710 BM2 Firmware * Intel Xl710 BM1 Firmware *	8
Hardware	Intel Intel V710 AT2 - Intel X710 TM4 - Intel X710 AT2 - Intel Xxv710 AM2 - Intel Xxv710 AM1 - Intel X710 BM2 - Intel Xl710 BM2 - Intel Xl710 BM1 -	8

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00380