← Back

CVE-2020-12289

nvd nist
Published: Jun 9, 2021Modified: Nov 21, 2024

JSON object

Loading...
5.5
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Exploitability: 1.8 / Impact: 3.6
Source: NVD

Description

Out-of-bounds write in some Intel(R) Thunderbolt(TM) controllers may allow an authenticated user to potentially enable denial of service via local access.

Affected (13)

Intel
13 products
Jhl6240 Thunderbolt 3 Firmware
Jhl6340 Thunderbolt 3 Firmware
Jhl6540 Thunderbolt 3 Firmware
Jhl7040 Thunderbolt 3 Retimer Firmware
Jhl7340 Thunderbolt 3 Firmware
Jhl7440 Thunderbolt 3 Firmware
Jhl7540 Thunderbolt 3 Firmware
Jhl8010r Usb Retimer Firmware
Dsl5320 Thunderbolt 2 Firmware
Dsl5520 Thunderbolt 2 Firmware
Dsl6340 Thunderbolt 3 Firmware
Dsl6540 Thunderbolt 3 Firmware
Jhl8040r Thunderbolt 4 Retimer Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Jhl6240 Thunderbolt 3 Firmware
Before 21
Running on/withPlatform Versions
Intel
Jhl6240 Thunderbolt 3
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Jhl6340 Thunderbolt 3 Firmware
Before 46
Running on/withPlatform Versions
Intel
Jhl6340 Thunderbolt 3
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Jhl6540 Thunderbolt 3 Firmware
Before 46
Running on/withPlatform Versions
Intel
Jhl6540 Thunderbolt 3
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Jhl7040 Thunderbolt 3 Retimer Firmware
Before 22
Running on/withPlatform Versions
Intel
Jhl7040 Thunderbolt 3 Retimer
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Jhl7340 Thunderbolt 3 Firmware
Before 60
Running on/withPlatform Versions
Intel
Jhl7340 Thunderbolt 3
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Jhl7440 Thunderbolt 3 Firmware
Before 60
Running on/withPlatform Versions
Intel
Jhl7440 Thunderbolt 3
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Jhl7540 Thunderbolt 3 Firmware
Before 60
Running on/withPlatform Versions
Intel
Jhl7540 Thunderbolt 3
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Jhl8010r Usb Retimer Firmware
Before 41
Running on/withPlatform Versions
Intel
Jhl8010r Usb Retimer
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Dsl5320 Thunderbolt 2 Firmware
All versions
Running on/withPlatform Versions
Intel
Dsl5320 Thunderbolt 2
All versions
Configuration J
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Dsl5520 Thunderbolt 2 Firmware
All versions
Running on/withPlatform Versions
Intel
Dsl5520 Thunderbolt 2
All versions
Configuration K
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Dsl6340 Thunderbolt 3 Firmware
All versions
Running on/withPlatform Versions
Intel
Dsl6340 Thunderbolt 3
All versions
Configuration L
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Dsl6540 Thunderbolt 3 Firmware
All versions
Running on/withPlatform Versions
Intel
Dsl6540 Thunderbolt 3
All versions
Configuration M
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Jhl8040r Thunderbolt 4 Retimer Firmware
Before 41
Running on/withPlatform Versions
Intel
Jhl8040r Thunderbolt 4 Retimer
All versions

Related CWEs

CWE-787
Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.

References (2)

Source: secure@intel.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.