CVE-2020-0600
7.8
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability: 1.8 / Impact: 5.9
Source: NVD
Description
Improper buffer restrictions in firmware for some Intel(R) NUC may allow an authenticated user to potentially enable escalation of privilege via local access.
Affected (10)
Products: Intel: Nuc 8 Rugged Kit Nuc8cchkr Firmware, Nuc Board Nuc8cchb Firmware, Nuc 7 Essential Pc Nuc7cjysal Firmware, Nuc Kit Nuc7cjyh Firmware, Nuc Kit Nuc7pjyh Firmware, Nuc Kit Nuc6cays Firmware, Nuc Kit Nuc6cayh Firmware, Nuc Kit De3815tykhe Firmware, Nuc Board De3815tybe Firmware, Compute Stick Stck1a32wfc Firmware
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before chaplcel.0047 |
| Running on/with | Platform Versions |
|---|---|
Intel Nuc 8 Rugged Kit Nuc8cchkr | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Before chaplcel.0047 |
| Running on/with | Platform Versions |
|---|---|
Intel Nuc Board Nuc8cchb | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Before jyglkcpx.86a.0053 |
| Running on/with | Platform Versions |
|---|---|
Intel Nuc 7 Essential Pc Nuc7cjysal | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Before jyglkcpx.86a.0053 |
| Running on/with | Platform Versions |
|---|---|
Intel Nuc Kit Nuc7cjyh | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Before jyglkcpx.86a.0053 |
| Running on/with | Platform Versions |
|---|---|
Intel Nuc Kit Nuc7pjyh | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Before ayaplcel.86a0053 |
| Running on/with | Platform Versions |
|---|---|
Intel Nuc Kit Nuc6cays | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Before ayaplcel.86a0053 |
| Running on/with | Platform Versions |
|---|---|
Intel Nuc Kit Nuc6cayh | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Before tybyt20h.86a.0024 |
| Running on/with | Platform Versions |
|---|---|
Intel Nuc Kit De3815tykhe | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| Before tybyt20h.86a.0024 |
| Running on/with | Platform Versions |
|---|---|
Intel Nuc Board De3815tybe | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| Before fcbyt10h.86a |
| Running on/with | Platform Versions |
|---|---|
Intel Compute Stick Stck1a32wfc | All versions |
References (2)
Source: secure@intel.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.