CVE-2020-24503
5.5
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Exploitability: 1.8 / Impact: 3.6
Source: NVD
Description
Insufficient access control in some Intel(R) Ethernet E810 Adapter drivers for Linux before version 1.0.4 may allow an authenticated user to potentially enable information disclosure via local access.
Affected (1)
Products: Intel: Ethernet Network Adapter E810 Firmware
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.0.4 |
| Running on/with | Platform Versions |
|---|---|
Intel Ethernet Network Adapter E810 Cqda1 | All versions |
Intel Ethernet Network Adapter E810 Cqda1 For Ocp | All versions |
Intel Ethernet Network Adapter E810 Cqda1 For Ocp 3.0 | All versions |
Intel Ethernet Network Adapter E810 Cqda2 | All versions |
Intel Ethernet Network Adapter E810 Cqda2 For Ocp 3.0 | All versions |
Intel Ethernet Network Adapter E810 Xxvda2 | All versions |
Intel Ethernet Network Adapter E810 Xxvda2 For Ocp | All versions |
Intel Ethernet Network Adapter E810 Xxvda2 For Ocp 3.0 | All versions |
Intel Ethernet Network Adapter E810 Xxvda4 | All versions |
References (2)
Source: secure@intel.com
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Timeline
No history available yet.