Vulnerability-Lookup

CVE-2020-24448 (GCVE-0-2020-24448)

Vulnerability from cvelistv5 – Published: 2021-02-17 13:52 – Updated: 2024-08-04 15:12

Summary

Uncaught exception in some Intel(R) Graphics Drivers before version 15.33.51.5146 may allow an authenticated user to potentially enable denial of service via local access.

Severity

No CVSS data available.

CWE

denial of service

Assigner

intel

References

1 reference

URL	Tags
https://www.intel.com/content/www/us/en/security-…	x_refsource_MISC

Impacted products

1 product

Vendor	Product	Version
n/a	Intel(R) Graphics Drivers	Affected: before version 15.33.51.5146

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T15:12:08.715Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Intel(R) Graphics Drivers",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "before version 15.33.51.5146"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Uncaught exception in some Intel(R) Graphics Drivers before version 15.33.51.5146 may allow an authenticated user to potentially enable denial of service via local access."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "denial of service",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-02-17T13:52:06.000Z",
        "orgId": "6dda929c-bb53-4a77-a76d-48e79601a1ce",
        "shortName": "intel"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secure@intel.com",
          "ID": "CVE-2020-24448",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Intel(R) Graphics Drivers",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "before version 15.33.51.5146"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Uncaught exception in some Intel(R) Graphics Drivers before version 15.33.51.5146 may allow an authenticated user to potentially enable denial of service via local access."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "denial of service"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html",
              "refsource": "MISC",
              "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "6dda929c-bb53-4a77-a76d-48e79601a1ce",
    "assignerShortName": "intel",
    "cveId": "CVE-2020-24448",
    "datePublished": "2021-02-17T13:52:06.000Z",
    "dateReserved": "2020-08-19T00:00:00.000Z",
    "dateUpdated": "2024-08-04T15:12:08.715Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2020-24448",
      "date": "2026-05-25",
      "epss": "0.0005",
      "percentile": "0.15755"
    },
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:intel:graphics_drivers:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"15.33.51.5146\", \"matchCriteriaId\": \"6827410C-D115-4872-8FCA-109228B9A1BF\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Uncaught exception in some Intel(R) Graphics Drivers before version 15.33.51.5146 may allow an authenticated user to potentially enable denial of service via local access.\"}, {\"lang\": \"es\", \"value\": \"Una excepci\\u00f3n no detectada en algunos Intel\\u00ae Graphics Drivers versi\\u00f3n anterior a 15.33.51.5146, puede permitir a un usuario autenticado habilitar potencialmente una denegaci\\u00f3n de servicio por medio de un acceso local\"}]",
      "id": "CVE-2020-24448",
      "lastModified": "2024-11-21T05:14:50.727",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\", \"baseScore\": 5.5, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 3.6}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:L/Au:N/C:N/I:N/A:P\", \"baseScore\": 2.1, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"LOW\", \"exploitabilityScore\": 3.9, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2021-02-17T14:15:16.200",
      "references": "[{\"url\": \"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html\", \"source\": \"secure@intel.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
      "sourceIdentifier": "secure@intel.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-Other\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2020-24448\",\"sourceIdentifier\":\"secure@intel.com\",\"published\":\"2021-02-17T14:15:16.200\",\"lastModified\":\"2024-11-21T05:14:50.727\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Uncaught exception in some Intel(R) Graphics Drivers before version 15.33.51.5146 may allow an authenticated user to potentially enable denial of service via local access.\"},{\"lang\":\"es\",\"value\":\"Una excepci\u00f3n no detectada en algunos Intel\u00ae Graphics Drivers versi\u00f3n anterior a 15.33.51.5146, puede permitir a un usuario autenticado habilitar potencialmente una denegaci\u00f3n de servicio por medio de un acceso local\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:N/I:N/A:P\",\"baseScore\":2.1,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":3.9,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:intel:graphics_drivers:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"15.33.51.5146\",\"matchCriteriaId\":\"6827410C-D115-4872-8FCA-109228B9A1BF\"}]}]}],\"references\":[{\"url\":\"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html\",\"source\":\"secure@intel.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
  }
}

BDU:2021-00819

Vulnerability from fstec - Published: 09.02.2021

Title

Уязвимость драйвера графических систем Intel Graphics Drivers, связанная с ошибкой обработки исключениий, позволяющая нарушителю вызвать отказ в обслуживании

Description

Уязвимость драйвера графических систем Intel Graphics Drivers связана с ошибкой обработки исключениий. Эксплуатация уязвимости может позволить нарушителю вызвать отказ в обслуживании

Severity


                    
                      AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Vendor

Intel Corp.

Software Name

Intel Graphics Driver

Software Version

до 15.33.51.5146 (Intel Graphics Driver)

Possible Mitigations

Использование рекомендаций: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html

Reference

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html

CWE

CWE-248

JSON

To clipboard

{
  "CVSS 2.0": "AV:L/AC:L/Au:S/C:N/I:N/A:C",
  "CVSS 3.0": "AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Intel Corp.",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "\u0434\u043e 15.33.51.5146 (Intel Graphics Driver)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\nhttps://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "09.02.2021",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "23.03.2021",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "16.02.2021",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2021-00819",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2020-24448",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Intel Graphics Driver",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": null,
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u0430 \u0433\u0440\u0430\u0444\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c Intel Graphics Drivers, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u043e\u0448\u0438\u0431\u043a\u043e\u0439 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0438 \u0438\u0441\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u0438\u0439, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435 \u043f\u0435\u0440\u0435\u0445\u0432\u0430\u0447\u0435\u043d\u043d\u043e\u0435 \u0438\u0441\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u0435 (CWE-248)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u0430 \u0433\u0440\u0430\u0444\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c Intel Graphics Drivers \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043e\u0448\u0438\u0431\u043a\u043e\u0439 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0438 \u0438\u0441\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u0438\u0439. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u0441\u0443\u0440\u0441\u0430\u043c\u0438",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u041f\u0440\u0438\u043a\u043b\u0430\u0434\u043d\u043e\u0435 \u041f\u041e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-248",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 4,6)\n\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 5,5)"
}

CNVD-2021-10794

Vulnerability from cnvd - Published: 2021-02-19

Title

Intel®Graphics Drivers多代处理器拒绝服务漏洞（CNVD-2021-10794）

Description

英特尔是美国一家以研制CPU为主的公司，是全球最大的个人计算机零件和CPU制造商。 Intel®Graphics Drivers多代处理器拒绝服务漏洞，攻击者可利用该漏洞造成拒绝服务。

Severity

中

Patch Name

Intel®Graphics Drivers多代处理器拒绝服务漏洞（CNVD-2021-10794）的补丁

Patch Description

英特尔是美国一家以研制CPU为主的公司，是全球最大的个人计算机零件和CPU制造商。 Intel®Graphics Drivers多代处理器拒绝服务漏洞，攻击者可利用该漏洞造成拒绝服务。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

英特尔建议更新英特尔显卡驱动程序到最新版本，请关注官网信息及时更新： https://www.intel.cn/content/www/cn/zh/homepage.html 对于Windows *:https://downloadcenter.intel.com/search?keyword=intel+graphics Linux:请与您的Linux发行版供应商联系以获取更新。

Impacted products

Name
['Intel Intel® Graphics Drivers for 3rd Generation Intel® Processors <15.33.51.5146', 'Intel Intel® Graphics Drivers for 4rd Generation Intel® Processors <15.33.51.5146', 'Intel Intel® Graphics Drivers for 5rd Generation Intel® Processors <15.33.51.5146', 'Intel Intel® Graphics Drivers for 6rd Generation Intel® Processors <15.33.51.5146', 'Intel Intel® Graphics Drivers for 7rd Generation Intel® Processors <15.33.51.5146', 'Intel Intel® Graphics Drivers for 8rd Generation Intel® Processors <15.33.51.5146', 'Intel Intel® Graphics Drivers for 9rd Generation Intel® Processors <15.33.51.5146', 'Intel Intel® Graphics Drivers for 10rd Generation Intel® Processors <15.33.51.5146']

Name

['Intel Intel® Graphics Drivers for 3rd Generation Intel® Processors <15.33.51.5146', 'Intel Intel® Graphics Drivers for 4rd Generation Intel® Processors <15.33.51.5146', 'Intel Intel® Graphics Drivers for 5rd Generation Intel® Processors <15.33.51.5146', 'Intel Intel® Graphics Drivers for 6rd Generation Intel® Processors <15.33.51.5146', 'Intel Intel® Graphics Drivers for 7rd Generation Intel® Processors <15.33.51.5146', 'Intel Intel® Graphics Drivers for 8rd Generation Intel® Processors <15.33.51.5146', 'Intel Intel® Graphics Drivers for 9rd Generation Intel® Processors <15.33.51.5146', 'Intel Intel® Graphics Drivers for 10rd Generation Intel® Processors <15.33.51.5146']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2020-24448"
    }
  },
  "description": "\u82f1\u7279\u5c14\u662f\u7f8e\u56fd\u4e00\u5bb6\u4ee5\u7814\u5236CPU\u4e3a\u4e3b\u7684\u516c\u53f8\uff0c\u662f\u5168\u7403\u6700\u5927\u7684\u4e2a\u4eba\u8ba1\u7b97\u673a\u96f6\u4ef6\u548cCPU\u5236\u9020\u5546\u3002\n\nIntel\u00aeGraphics Drivers\u591a\u4ee3\u5904\u7406\u5668\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002",
  "formalWay": "\u82f1\u7279\u5c14\u5efa\u8bae\u66f4\u65b0\u82f1\u7279\u5c14\u663e\u5361\u9a71\u52a8\u7a0b\u5e8f\u5230\u6700\u65b0\u7248\u672c\uff0c\u8bf7\u5173\u6ce8\u5b98\u7f51\u4fe1\u606f\u53ca\u65f6\u66f4\u65b0\uff1a\r\nhttps://www.intel.cn/content/www/cn/zh/homepage.html\r\n\u5bf9\u4e8eWindows *:https://downloadcenter.intel.com/search?keyword=intel+graphics\r\nLinux:\u8bf7\u4e0e\u60a8\u7684Linux\u53d1\u884c\u7248\u4f9b\u5e94\u5546\u8054\u7cfb\u4ee5\u83b7\u53d6\u66f4\u65b0\u3002",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2021-10794",
  "openTime": "2021-02-19",
  "patchDescription": "\u82f1\u7279\u5c14\u662f\u7f8e\u56fd\u4e00\u5bb6\u4ee5\u7814\u5236CPU\u4e3a\u4e3b\u7684\u516c\u53f8\uff0c\u662f\u5168\u7403\u6700\u5927\u7684\u4e2a\u4eba\u8ba1\u7b97\u673a\u96f6\u4ef6\u548cCPU\u5236\u9020\u5546\u3002\r\n\r\nIntel\u00aeGraphics Drivers\u591a\u4ee3\u5904\u7406\u5668\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002\r\n\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Intel\u00aeGraphics Drivers\u591a\u4ee3\u5904\u7406\u5668\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff08CNVD-2021-10794\uff09\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Intel Intel\u00ae Graphics Drivers for 3rd Generation Intel\u00ae Processors \u003c15.33.51.5146",
      "Intel Intel\u00ae Graphics Drivers for 4rd Generation Intel\u00ae Processors \u003c15.33.51.5146",
      "Intel Intel\u00ae Graphics Drivers for 5rd Generation Intel\u00ae Processors \u003c15.33.51.5146",
      "Intel Intel\u00ae Graphics Drivers for 6rd Generation Intel\u00ae Processors \u003c15.33.51.5146",
      "Intel Intel\u00ae Graphics Drivers for 7rd Generation Intel\u00ae Processors \u003c15.33.51.5146",
      "Intel Intel\u00ae Graphics Drivers for 8rd Generation Intel\u00ae Processors \u003c15.33.51.5146",
      "Intel Intel\u00ae Graphics Drivers for 9rd Generation Intel\u00ae Processors \u003c15.33.51.5146",
      "Intel Intel\u00ae Graphics Drivers for 10rd Generation Intel\u00ae Processors \u003c15.33.51.5146"
    ]
  },
  "serverity": "\u4e2d",
  "submitTime": "2021-02-18",
  "title": "Intel\u00aeGraphics Drivers\u591a\u4ee3\u5904\u7406\u5668\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff08CNVD-2021-10794\uff09"
}

FKIE_CVE-2020-24448

Vulnerability from fkie_nvd - Published: 2021-02-17 14:15 - Updated: 2024-11-21 05:14

Severity

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Summary

Uncaught exception in some Intel(R) Graphics Drivers before version 15.33.51.5146 may allow an authenticated user to potentially enable denial of service via local access.

References

	URL	Tags
	secure@intel.com	https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html	Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html	Vendor Advisory

Impacted products

	Vendor	Product	Version
	intel	graphics_drivers	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:intel:graphics_drivers:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "6827410C-D115-4872-8FCA-109228B9A1BF",
              "versionEndExcluding": "15.33.51.5146",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Uncaught exception in some Intel(R) Graphics Drivers before version 15.33.51.5146 may allow an authenticated user to potentially enable denial of service via local access."
    },
    {
      "lang": "es",
      "value": "Una excepci\u00f3n no detectada en algunos Intel\u00ae Graphics Drivers versi\u00f3n anterior a 15.33.51.5146, puede permitir a un usuario autenticado habilitar potencialmente una denegaci\u00f3n de servicio por medio de un acceso local"
    }
  ],
  "id": "CVE-2020-24448",
  "lastModified": "2024-11-21T05:14:50.727",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "LOW",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 2.1,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 5.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 3.6,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2021-02-17T14:15:16.200",
  "references": [
    {
      "source": "secure@intel.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html"
    }
  ],
  "sourceIdentifier": "secure@intel.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-JXX8-F36P-3CQ8

Vulnerability from github – Published: 2022-05-24 17:42 – Updated: 2022-05-24 17:42

Details

Uncaught exception in some Intel(R) Graphics Drivers before version 15.33.51.5146 may allow an authenticated user to potentially enable denial of service via local access.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2020-24448"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2021-02-17T14:15:00Z",
    "severity": "MODERATE"
  },
  "details": "Uncaught exception in some Intel(R) Graphics Drivers before version 15.33.51.5146 may allow an authenticated user to potentially enable denial of service via local access.",
  "id": "GHSA-jxx8-f36p-3cq8",
  "modified": "2022-05-24T17:42:27Z",
  "published": "2022-05-24T17:42:27Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-24448"
    },
    {
      "type": "WEB",
      "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

GSD-2020-24448

Vulnerability from gsd - Updated: 2023-12-13 01:22

Details

Uncaught exception in some Intel(R) Graphics Drivers before version 15.33.51.5146 may allow an authenticated user to potentially enable denial of service via local access.

Aliases

CVE-2020-24448

Aliases

CVE-2020-24448

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2020-24448",
    "description": "Uncaught exception in some Intel(R) Graphics Drivers before version 15.33.51.5146 may allow an authenticated user to potentially enable denial of service via local access.",
    "id": "GSD-2020-24448"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2020-24448"
      ],
      "details": "Uncaught exception in some Intel(R) Graphics Drivers before version 15.33.51.5146 may allow an authenticated user to potentially enable denial of service via local access.",
      "id": "GSD-2020-24448",
      "modified": "2023-12-13T01:22:12.237248Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "secure@intel.com",
        "ID": "CVE-2020-24448",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Intel(R) Graphics Drivers",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "before version 15.33.51.5146"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Uncaught exception in some Intel(R) Graphics Drivers before version 15.33.51.5146 may allow an authenticated user to potentially enable denial of service via local access."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "denial of service"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html",
            "refsource": "MISC",
            "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:intel:graphics_drivers:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "15.33.51.5146",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "secure@intel.com",
          "ID": "CVE-2020-24448"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Uncaught exception in some Intel(R) Graphics Drivers before version 15.33.51.5146 may allow an authenticated user to potentially enable denial of service via local access."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html",
              "refsource": "MISC",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 2.1,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "LOW",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "exploitabilityScore": 1.8,
          "impactScore": 3.6
        }
      },
      "lastModifiedDate": "2021-02-23T14:45Z",
      "publishedDate": "2021-02-17T14:15Z"
    }
  }
}

VAR-202102-0284

Vulnerability from variot - Updated: 2023-12-18 10:59

Uncaught exception in some Intel(R) Graphics Drivers before version 15.33.51.5146 may allow an authenticated user to potentially enable denial of service via local access. Intel(R) Graphics Drivers Contains an unspecified vulnerability.Denial of service (DoS) It may be put into a state. There is a security vulnerability in Intel Graphics Drivers. There is no information about this vulnerability at present. Please pay attention to CNNVD or manufacturer announcements at any time

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-202102-0284",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "graphics drivers",
        "scope": "lt",
        "trust": 1.0,
        "vendor": "intel",
        "version": "15.33.51.5146"
      },
      {
        "model": "intel graphics drivers",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "\u30a4\u30f3\u30c6\u30eb",
        "version": null
      },
      {
        "model": "intel graphics drivers",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "\u30a4\u30f3\u30c6\u30eb",
        "version": "15.33.51.5146"
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2020-016011"
      },
      {
        "db": "NVD",
        "id": "CVE-2020-24448"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:intel:graphics_drivers:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "15.33.51.5146",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2020-24448"
      }
    ]
  },
  "cve": "CVE-2020-24448",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "acInsufInfo": false,
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "author": "NVD",
            "availabilityImpact": "PARTIAL",
            "baseScore": 2.1,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 3.9,
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "obtainAllPrivilege": false,
            "obtainOtherPrivilege": false,
            "obtainUserPrivilege": false,
            "severity": "LOW",
            "trust": 1.0,
            "userInteractionRequired": false,
            "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "Low",
            "accessVector": "Local",
            "authentication": "None",
            "author": "NVD",
            "availabilityImpact": "Partial",
            "baseScore": 2.1,
            "confidentialityImpact": "None",
            "exploitabilityScore": null,
            "id": "CVE-2020-24448",
            "impactScore": null,
            "integrityImpact": "None",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "Low",
            "trust": 0.8,
            "userInteractionRequired": null,
            "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "PARTIAL",
            "baseScore": 2.1,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 3.9,
            "id": "VHN-178327",
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "severity": "LOW",
            "trust": 0.1,
            "vectorString": "AV:L/AC:L/AU:N/C:N/I:N/A:P",
            "version": "2.0"
          }
        ],
        "cvssV3": [
          {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "author": "NVD",
            "availabilityImpact": "HIGH",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 1.8,
            "impactScore": 3.6,
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "trust": 1.0,
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          {
            "attackComplexity": "Low",
            "attackVector": "Local",
            "author": "NVD",
            "availabilityImpact": "High",
            "baseScore": 5.5,
            "baseSeverity": "Medium",
            "confidentialityImpact": "None",
            "exploitabilityScore": null,
            "id": "CVE-2020-24448",
            "impactScore": null,
            "integrityImpact": "None",
            "privilegesRequired": "Low",
            "scope": "Unchanged",
            "trust": 0.8,
            "userInteraction": "None",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          }
        ],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2020-24448",
            "trust": 1.8,
            "value": "MEDIUM"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-202102-819",
            "trust": 0.6,
            "value": "MEDIUM"
          },
          {
            "author": "VULHUB",
            "id": "VHN-178327",
            "trust": 0.1,
            "value": "LOW"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-178327"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2020-016011"
      },
      {
        "db": "NVD",
        "id": "CVE-2020-24448"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202102-819"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Uncaught exception in some Intel(R) Graphics Drivers before version 15.33.51.5146 may allow an authenticated user to potentially enable denial of service via local access. Intel(R) Graphics Drivers Contains an unspecified vulnerability.Denial of service (DoS) It may be put into a state. There is a security vulnerability in Intel Graphics Drivers. There is no information about this vulnerability at present. Please pay attention to CNNVD or manufacturer announcements at any time",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2020-24448"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2020-016011"
      },
      {
        "db": "VULHUB",
        "id": "VHN-178327"
      }
    ],
    "trust": 1.71
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2020-24448",
        "trust": 2.5
      },
      {
        "db": "JVN",
        "id": "JVNVU93808918",
        "trust": 0.8
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2020-016011",
        "trust": 0.8
      },
      {
        "db": "LENOVO",
        "id": "LEN-51723",
        "trust": 0.6
      },
      {
        "db": "AUSCERT",
        "id": "ESB-2021.0472",
        "trust": 0.6
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202102-819",
        "trust": 0.6
      },
      {
        "db": "VULHUB",
        "id": "VHN-178327",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-178327"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2020-016011"
      },
      {
        "db": "NVD",
        "id": "CVE-2020-24448"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202102-819"
      }
    ]
  },
  "id": "VAR-202102-0284",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-178327"
      }
    ],
    "trust": 0.01
  },
  "last_update_date": "2023-12-18T10:59:14.015000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "INTEL-SA-00438",
        "trust": 0.8,
        "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html"
      },
      {
        "title": "Intel Graphics Drivers Security vulnerabilities",
        "trust": 0.6,
        "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=142581"
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2020-016011"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202102-819"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "NVD-CWE-Other",
        "trust": 1.0
      },
      {
        "problemtype": "Other (CWE-Other) [NVD Evaluation ]",
        "trust": 0.8
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2020-016011"
      },
      {
        "db": "NVD",
        "id": "CVE-2020-24448"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 1.7,
        "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html"
      },
      {
        "trust": 1.4,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2020-24448"
      },
      {
        "trust": 0.8,
        "url": "https://jvn.jp/vu/jvnvu93808918/index.html"
      },
      {
        "trust": 0.6,
        "url": "https://www.auscert.org.au/bulletins/esb-2021.0472"
      },
      {
        "trust": 0.6,
        "url": "https://support.lenovo.com/us/en/product_security/len-51723"
      },
      {
        "trust": 0.6,
        "url": "https://vigilance.fr/vulnerability/intel-graphics-drivers-multiple-vulnerabilities-34748"
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-178327"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2020-016011"
      },
      {
        "db": "NVD",
        "id": "CVE-2020-24448"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202102-819"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "VULHUB",
        "id": "VHN-178327"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2020-016011"
      },
      {
        "db": "NVD",
        "id": "CVE-2020-24448"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202102-819"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2021-02-17T00:00:00",
        "db": "VULHUB",
        "id": "VHN-178327"
      },
      {
        "date": "2021-11-01T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2020-016011"
      },
      {
        "date": "2021-02-17T14:15:16.200000",
        "db": "NVD",
        "id": "CVE-2020-24448"
      },
      {
        "date": "2021-02-09T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-202102-819"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2021-02-23T00:00:00",
        "db": "VULHUB",
        "id": "VHN-178327"
      },
      {
        "date": "2021-11-01T01:54:00",
        "db": "JVNDB",
        "id": "JVNDB-2020-016011"
      },
      {
        "date": "2021-02-23T14:45:13.053000",
        "db": "NVD",
        "id": "CVE-2020-24448"
      },
      {
        "date": "2022-03-10T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-202102-819"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "local",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-202102-819"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Intel(R)\u00a0Graphics\u00a0Drivers\u00a0 Vulnerability in",
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2020-016011"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "other",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-202102-819"
      }
    ],
    "trust": 0.6
  }
}

WID-SEC-W-2023-0820

Vulnerability from csaf_certbund - Published: 2021-02-09 23:00 - Updated: 2023-04-02 22:00

Summary

Intel Graphics Driver: Mehrere Schwachstellen

Severity

Hoch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Intel ist ein Hersteller von Grafikkarten. Ein Grafiktreiber, ist eine Software, die eine Interaktion mit angeschlossenen, eingebauten (Hardware) oder virtuellen Geräten ermöglicht.

Angriff: Ein lokaler Angreifer kann mehrere Schwachstellen im Intel Graphics Driver ausnutzen, um seine Privilegien zu erhöhen, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuführen.

Betroffene Betriebssysteme: - BIOS/Firmware - Appliance

CVE-2020-0518

Im Intel Graphics Driver existieren mehrere Schwachstellen. Die Schwachstellen sind zurückzuführen auf Fehler im Kontrollfluss, Out-of-Bounds-Schreibfehler, Fehler bei der Eingabevalidierung, Integer-Überläufen, unzureichende Zugriffskontrollen, Fehler mit Zeigern sowie auf Fehler mit nicht abgefangenen Ausnahmen. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erhöhen, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuführen.

Affected products

Known affected 17 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/o:lenovo:lenovo_computer:-`	—
Avaya Aura Experience Portal Avaya	`cpe:/a:avaya:aura_experience_portal:-`	—
Avaya Aura System Manager Avaya	`cpe:/a:avaya:aura_system_manager:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Avaya Aura Application Enablement Services Avaya	`cpe:/a:avaya:aura_application_enablement_services:-`	—
Intel Graphics Driver Intel	`cpe:/a:intel:graphic_driver:-`	—
Avaya Breeze Platform Avaya	`cpe:/a:avaya:breeze_platform:-`	—
Avaya Aura Session Manager Avaya	`cpe:/a:avaya:session_manager:-`	—
Avaya Aura Communication Manager Avaya	`cpe:/a:avaya:communication_manager:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Avaya Session Border Controller Avaya	`cpe:/h:avaya:session_border_controller:-`	—
Avaya Web License Manager Avaya	`cpe:/a:avaya:web_license_manager:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Avaya one-X Avaya	`cpe:/a:avaya:one-x:-`	—
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—

CVE-2020-0521

Affected products

Known affected 17 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/o:lenovo:lenovo_computer:-`	—
Avaya Aura Experience Portal Avaya	`cpe:/a:avaya:aura_experience_portal:-`	—
Avaya Aura System Manager Avaya	`cpe:/a:avaya:aura_system_manager:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Avaya Aura Application Enablement Services Avaya	`cpe:/a:avaya:aura_application_enablement_services:-`	—
Intel Graphics Driver Intel	`cpe:/a:intel:graphic_driver:-`	—
Avaya Breeze Platform Avaya	`cpe:/a:avaya:breeze_platform:-`	—
Avaya Aura Session Manager Avaya	`cpe:/a:avaya:session_manager:-`	—
Avaya Aura Communication Manager Avaya	`cpe:/a:avaya:communication_manager:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Avaya Session Border Controller Avaya	`cpe:/h:avaya:session_border_controller:-`	—
Avaya Web License Manager Avaya	`cpe:/a:avaya:web_license_manager:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Avaya one-X Avaya	`cpe:/a:avaya:one-x:-`	—
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—

CVE-2020-0544

Affected products

Known affected 17 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/o:lenovo:lenovo_computer:-`	—
Avaya Aura Experience Portal Avaya	`cpe:/a:avaya:aura_experience_portal:-`	—
Avaya Aura System Manager Avaya	`cpe:/a:avaya:aura_system_manager:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Avaya Aura Application Enablement Services Avaya	`cpe:/a:avaya:aura_application_enablement_services:-`	—
Intel Graphics Driver Intel	`cpe:/a:intel:graphic_driver:-`	—
Avaya Breeze Platform Avaya	`cpe:/a:avaya:breeze_platform:-`	—
Avaya Aura Session Manager Avaya	`cpe:/a:avaya:session_manager:-`	—
Avaya Aura Communication Manager Avaya	`cpe:/a:avaya:communication_manager:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Avaya Session Border Controller Avaya	`cpe:/h:avaya:session_border_controller:-`	—
Avaya Web License Manager Avaya	`cpe:/a:avaya:web_license_manager:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Avaya one-X Avaya	`cpe:/a:avaya:one-x:-`	—
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—

CVE-2020-12361

Affected products

Known affected 17 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/o:lenovo:lenovo_computer:-`	—
Avaya Aura Experience Portal Avaya	`cpe:/a:avaya:aura_experience_portal:-`	—
Avaya Aura System Manager Avaya	`cpe:/a:avaya:aura_system_manager:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Avaya Aura Application Enablement Services Avaya	`cpe:/a:avaya:aura_application_enablement_services:-`	—
Intel Graphics Driver Intel	`cpe:/a:intel:graphic_driver:-`	—
Avaya Breeze Platform Avaya	`cpe:/a:avaya:breeze_platform:-`	—
Avaya Aura Session Manager Avaya	`cpe:/a:avaya:session_manager:-`	—
Avaya Aura Communication Manager Avaya	`cpe:/a:avaya:communication_manager:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Avaya Session Border Controller Avaya	`cpe:/h:avaya:session_border_controller:-`	—
Avaya Web License Manager Avaya	`cpe:/a:avaya:web_license_manager:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Avaya one-X Avaya	`cpe:/a:avaya:one-x:-`	—
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—

CVE-2020-12362

Affected products

Known affected 17 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/o:lenovo:lenovo_computer:-`	—
Avaya Aura Experience Portal Avaya	`cpe:/a:avaya:aura_experience_portal:-`	—
Avaya Aura System Manager Avaya	`cpe:/a:avaya:aura_system_manager:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Avaya Aura Application Enablement Services Avaya	`cpe:/a:avaya:aura_application_enablement_services:-`	—
Intel Graphics Driver Intel	`cpe:/a:intel:graphic_driver:-`	—
Avaya Breeze Platform Avaya	`cpe:/a:avaya:breeze_platform:-`	—
Avaya Aura Session Manager Avaya	`cpe:/a:avaya:session_manager:-`	—
Avaya Aura Communication Manager Avaya	`cpe:/a:avaya:communication_manager:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Avaya Session Border Controller Avaya	`cpe:/h:avaya:session_border_controller:-`	—
Avaya Web License Manager Avaya	`cpe:/a:avaya:web_license_manager:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Avaya one-X Avaya	`cpe:/a:avaya:one-x:-`	—
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—

CVE-2020-12363

Affected products

Known affected 17 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/o:lenovo:lenovo_computer:-`	—
Avaya Aura Experience Portal Avaya	`cpe:/a:avaya:aura_experience_portal:-`	—
Avaya Aura System Manager Avaya	`cpe:/a:avaya:aura_system_manager:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Avaya Aura Application Enablement Services Avaya	`cpe:/a:avaya:aura_application_enablement_services:-`	—
Intel Graphics Driver Intel	`cpe:/a:intel:graphic_driver:-`	—
Avaya Breeze Platform Avaya	`cpe:/a:avaya:breeze_platform:-`	—
Avaya Aura Session Manager Avaya	`cpe:/a:avaya:session_manager:-`	—
Avaya Aura Communication Manager Avaya	`cpe:/a:avaya:communication_manager:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Avaya Session Border Controller Avaya	`cpe:/h:avaya:session_border_controller:-`	—
Avaya Web License Manager Avaya	`cpe:/a:avaya:web_license_manager:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Avaya one-X Avaya	`cpe:/a:avaya:one-x:-`	—
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—

CVE-2020-12364

Affected products

Known affected 17 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/o:lenovo:lenovo_computer:-`	—
Avaya Aura Experience Portal Avaya	`cpe:/a:avaya:aura_experience_portal:-`	—
Avaya Aura System Manager Avaya	`cpe:/a:avaya:aura_system_manager:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Avaya Aura Application Enablement Services Avaya	`cpe:/a:avaya:aura_application_enablement_services:-`	—
Intel Graphics Driver Intel	`cpe:/a:intel:graphic_driver:-`	—
Avaya Breeze Platform Avaya	`cpe:/a:avaya:breeze_platform:-`	—
Avaya Aura Session Manager Avaya	`cpe:/a:avaya:session_manager:-`	—
Avaya Aura Communication Manager Avaya	`cpe:/a:avaya:communication_manager:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Avaya Session Border Controller Avaya	`cpe:/h:avaya:session_border_controller:-`	—
Avaya Web License Manager Avaya	`cpe:/a:avaya:web_license_manager:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Avaya one-X Avaya	`cpe:/a:avaya:one-x:-`	—
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—

CVE-2020-12365

Affected products

Known affected 17 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/o:lenovo:lenovo_computer:-`	—
Avaya Aura Experience Portal Avaya	`cpe:/a:avaya:aura_experience_portal:-`	—
Avaya Aura System Manager Avaya	`cpe:/a:avaya:aura_system_manager:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Avaya Aura Application Enablement Services Avaya	`cpe:/a:avaya:aura_application_enablement_services:-`	—
Intel Graphics Driver Intel	`cpe:/a:intel:graphic_driver:-`	—
Avaya Breeze Platform Avaya	`cpe:/a:avaya:breeze_platform:-`	—
Avaya Aura Session Manager Avaya	`cpe:/a:avaya:session_manager:-`	—
Avaya Aura Communication Manager Avaya	`cpe:/a:avaya:communication_manager:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Avaya Session Border Controller Avaya	`cpe:/h:avaya:session_border_controller:-`	—
Avaya Web License Manager Avaya	`cpe:/a:avaya:web_license_manager:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Avaya one-X Avaya	`cpe:/a:avaya:one-x:-`	—
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—

CVE-2020-12366

Affected products

Known affected 17 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/o:lenovo:lenovo_computer:-`	—
Avaya Aura Experience Portal Avaya	`cpe:/a:avaya:aura_experience_portal:-`	—
Avaya Aura System Manager Avaya	`cpe:/a:avaya:aura_system_manager:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Avaya Aura Application Enablement Services Avaya	`cpe:/a:avaya:aura_application_enablement_services:-`	—
Intel Graphics Driver Intel	`cpe:/a:intel:graphic_driver:-`	—
Avaya Breeze Platform Avaya	`cpe:/a:avaya:breeze_platform:-`	—
Avaya Aura Session Manager Avaya	`cpe:/a:avaya:session_manager:-`	—
Avaya Aura Communication Manager Avaya	`cpe:/a:avaya:communication_manager:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Avaya Session Border Controller Avaya	`cpe:/h:avaya:session_border_controller:-`	—
Avaya Web License Manager Avaya	`cpe:/a:avaya:web_license_manager:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Avaya one-X Avaya	`cpe:/a:avaya:one-x:-`	—
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—

CVE-2020-12367

Affected products

Known affected 17 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/o:lenovo:lenovo_computer:-`	—
Avaya Aura Experience Portal Avaya	`cpe:/a:avaya:aura_experience_portal:-`	—
Avaya Aura System Manager Avaya	`cpe:/a:avaya:aura_system_manager:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Avaya Aura Application Enablement Services Avaya	`cpe:/a:avaya:aura_application_enablement_services:-`	—
Intel Graphics Driver Intel	`cpe:/a:intel:graphic_driver:-`	—
Avaya Breeze Platform Avaya	`cpe:/a:avaya:breeze_platform:-`	—
Avaya Aura Session Manager Avaya	`cpe:/a:avaya:session_manager:-`	—
Avaya Aura Communication Manager Avaya	`cpe:/a:avaya:communication_manager:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Avaya Session Border Controller Avaya	`cpe:/h:avaya:session_border_controller:-`	—
Avaya Web License Manager Avaya	`cpe:/a:avaya:web_license_manager:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Avaya one-X Avaya	`cpe:/a:avaya:one-x:-`	—
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—

CVE-2020-12368

Affected products

Known affected 17 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/o:lenovo:lenovo_computer:-`	—
Avaya Aura Experience Portal Avaya	`cpe:/a:avaya:aura_experience_portal:-`	—
Avaya Aura System Manager Avaya	`cpe:/a:avaya:aura_system_manager:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Avaya Aura Application Enablement Services Avaya	`cpe:/a:avaya:aura_application_enablement_services:-`	—
Intel Graphics Driver Intel	`cpe:/a:intel:graphic_driver:-`	—
Avaya Breeze Platform Avaya	`cpe:/a:avaya:breeze_platform:-`	—
Avaya Aura Session Manager Avaya	`cpe:/a:avaya:session_manager:-`	—
Avaya Aura Communication Manager Avaya	`cpe:/a:avaya:communication_manager:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Avaya Session Border Controller Avaya	`cpe:/h:avaya:session_border_controller:-`	—
Avaya Web License Manager Avaya	`cpe:/a:avaya:web_license_manager:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Avaya one-X Avaya	`cpe:/a:avaya:one-x:-`	—
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—

CVE-2020-12369

Affected products

Known affected 17 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/o:lenovo:lenovo_computer:-`	—
Avaya Aura Experience Portal Avaya	`cpe:/a:avaya:aura_experience_portal:-`	—
Avaya Aura System Manager Avaya	`cpe:/a:avaya:aura_system_manager:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Avaya Aura Application Enablement Services Avaya	`cpe:/a:avaya:aura_application_enablement_services:-`	—
Intel Graphics Driver Intel	`cpe:/a:intel:graphic_driver:-`	—
Avaya Breeze Platform Avaya	`cpe:/a:avaya:breeze_platform:-`	—
Avaya Aura Session Manager Avaya	`cpe:/a:avaya:session_manager:-`	—
Avaya Aura Communication Manager Avaya	`cpe:/a:avaya:communication_manager:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Avaya Session Border Controller Avaya	`cpe:/h:avaya:session_border_controller:-`	—
Avaya Web License Manager Avaya	`cpe:/a:avaya:web_license_manager:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Avaya one-X Avaya	`cpe:/a:avaya:one-x:-`	—
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—

CVE-2020-12370

Affected products

Known affected 17 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/o:lenovo:lenovo_computer:-`	—
Avaya Aura Experience Portal Avaya	`cpe:/a:avaya:aura_experience_portal:-`	—
Avaya Aura System Manager Avaya	`cpe:/a:avaya:aura_system_manager:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Avaya Aura Application Enablement Services Avaya	`cpe:/a:avaya:aura_application_enablement_services:-`	—
Intel Graphics Driver Intel	`cpe:/a:intel:graphic_driver:-`	—
Avaya Breeze Platform Avaya	`cpe:/a:avaya:breeze_platform:-`	—
Avaya Aura Session Manager Avaya	`cpe:/a:avaya:session_manager:-`	—
Avaya Aura Communication Manager Avaya	`cpe:/a:avaya:communication_manager:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Avaya Session Border Controller Avaya	`cpe:/h:avaya:session_border_controller:-`	—
Avaya Web License Manager Avaya	`cpe:/a:avaya:web_license_manager:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Avaya one-X Avaya	`cpe:/a:avaya:one-x:-`	—
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—

CVE-2020-12371

Affected products

Known affected 17 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/o:lenovo:lenovo_computer:-`	—
Avaya Aura Experience Portal Avaya	`cpe:/a:avaya:aura_experience_portal:-`	—
Avaya Aura System Manager Avaya	`cpe:/a:avaya:aura_system_manager:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Avaya Aura Application Enablement Services Avaya	`cpe:/a:avaya:aura_application_enablement_services:-`	—
Intel Graphics Driver Intel	`cpe:/a:intel:graphic_driver:-`	—
Avaya Breeze Platform Avaya	`cpe:/a:avaya:breeze_platform:-`	—
Avaya Aura Session Manager Avaya	`cpe:/a:avaya:session_manager:-`	—
Avaya Aura Communication Manager Avaya	`cpe:/a:avaya:communication_manager:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Avaya Session Border Controller Avaya	`cpe:/h:avaya:session_border_controller:-`	—
Avaya Web License Manager Avaya	`cpe:/a:avaya:web_license_manager:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Avaya one-X Avaya	`cpe:/a:avaya:one-x:-`	—
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—

CVE-2020-12372

Affected products

Known affected 17 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/o:lenovo:lenovo_computer:-`	—
Avaya Aura Experience Portal Avaya	`cpe:/a:avaya:aura_experience_portal:-`	—
Avaya Aura System Manager Avaya	`cpe:/a:avaya:aura_system_manager:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Avaya Aura Application Enablement Services Avaya	`cpe:/a:avaya:aura_application_enablement_services:-`	—
Intel Graphics Driver Intel	`cpe:/a:intel:graphic_driver:-`	—
Avaya Breeze Platform Avaya	`cpe:/a:avaya:breeze_platform:-`	—
Avaya Aura Session Manager Avaya	`cpe:/a:avaya:session_manager:-`	—
Avaya Aura Communication Manager Avaya	`cpe:/a:avaya:communication_manager:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Avaya Session Border Controller Avaya	`cpe:/h:avaya:session_border_controller:-`	—
Avaya Web License Manager Avaya	`cpe:/a:avaya:web_license_manager:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Avaya one-X Avaya	`cpe:/a:avaya:one-x:-`	—
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—

CVE-2020-12373

Affected products

Known affected 17 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/o:lenovo:lenovo_computer:-`	—
Avaya Aura Experience Portal Avaya	`cpe:/a:avaya:aura_experience_portal:-`	—
Avaya Aura System Manager Avaya	`cpe:/a:avaya:aura_system_manager:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Avaya Aura Application Enablement Services Avaya	`cpe:/a:avaya:aura_application_enablement_services:-`	—
Intel Graphics Driver Intel	`cpe:/a:intel:graphic_driver:-`	—
Avaya Breeze Platform Avaya	`cpe:/a:avaya:breeze_platform:-`	—
Avaya Aura Session Manager Avaya	`cpe:/a:avaya:session_manager:-`	—
Avaya Aura Communication Manager Avaya	`cpe:/a:avaya:communication_manager:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Avaya Session Border Controller Avaya	`cpe:/h:avaya:session_border_controller:-`	—
Avaya Web License Manager Avaya	`cpe:/a:avaya:web_license_manager:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Avaya one-X Avaya	`cpe:/a:avaya:one-x:-`	—
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—

CVE-2020-12384

Affected products

Known affected 17 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/o:lenovo:lenovo_computer:-`	—
Avaya Aura Experience Portal Avaya	`cpe:/a:avaya:aura_experience_portal:-`	—
Avaya Aura System Manager Avaya	`cpe:/a:avaya:aura_system_manager:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Avaya Aura Application Enablement Services Avaya	`cpe:/a:avaya:aura_application_enablement_services:-`	—
Intel Graphics Driver Intel	`cpe:/a:intel:graphic_driver:-`	—
Avaya Breeze Platform Avaya	`cpe:/a:avaya:breeze_platform:-`	—
Avaya Aura Session Manager Avaya	`cpe:/a:avaya:session_manager:-`	—
Avaya Aura Communication Manager Avaya	`cpe:/a:avaya:communication_manager:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Avaya Session Border Controller Avaya	`cpe:/h:avaya:session_border_controller:-`	—
Avaya Web License Manager Avaya	`cpe:/a:avaya:web_license_manager:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Avaya one-X Avaya	`cpe:/a:avaya:one-x:-`	—
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—

CVE-2020-12385

Affected products

Known affected 17 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/o:lenovo:lenovo_computer:-`	—
Avaya Aura Experience Portal Avaya	`cpe:/a:avaya:aura_experience_portal:-`	—
Avaya Aura System Manager Avaya	`cpe:/a:avaya:aura_system_manager:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Avaya Aura Application Enablement Services Avaya	`cpe:/a:avaya:aura_application_enablement_services:-`	—
Intel Graphics Driver Intel	`cpe:/a:intel:graphic_driver:-`	—
Avaya Breeze Platform Avaya	`cpe:/a:avaya:breeze_platform:-`	—
Avaya Aura Session Manager Avaya	`cpe:/a:avaya:session_manager:-`	—
Avaya Aura Communication Manager Avaya	`cpe:/a:avaya:communication_manager:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Avaya Session Border Controller Avaya	`cpe:/h:avaya:session_border_controller:-`	—
Avaya Web License Manager Avaya	`cpe:/a:avaya:web_license_manager:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Avaya one-X Avaya	`cpe:/a:avaya:one-x:-`	—
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—

CVE-2020-12386

Affected products

Known affected 17 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/o:lenovo:lenovo_computer:-`	—
Avaya Aura Experience Portal Avaya	`cpe:/a:avaya:aura_experience_portal:-`	—
Avaya Aura System Manager Avaya	`cpe:/a:avaya:aura_system_manager:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Avaya Aura Application Enablement Services Avaya	`cpe:/a:avaya:aura_application_enablement_services:-`	—
Intel Graphics Driver Intel	`cpe:/a:intel:graphic_driver:-`	—
Avaya Breeze Platform Avaya	`cpe:/a:avaya:breeze_platform:-`	—
Avaya Aura Session Manager Avaya	`cpe:/a:avaya:session_manager:-`	—
Avaya Aura Communication Manager Avaya	`cpe:/a:avaya:communication_manager:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Avaya Session Border Controller Avaya	`cpe:/h:avaya:session_border_controller:-`	—
Avaya Web License Manager Avaya	`cpe:/a:avaya:web_license_manager:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Avaya one-X Avaya	`cpe:/a:avaya:one-x:-`	—
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—

CVE-2020-24448

Affected products

Known affected 17 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/o:lenovo:lenovo_computer:-`	—
Avaya Aura Experience Portal Avaya	`cpe:/a:avaya:aura_experience_portal:-`	—
Avaya Aura System Manager Avaya	`cpe:/a:avaya:aura_system_manager:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Avaya Aura Application Enablement Services Avaya	`cpe:/a:avaya:aura_application_enablement_services:-`	—
Intel Graphics Driver Intel	`cpe:/a:intel:graphic_driver:-`	—
Avaya Breeze Platform Avaya	`cpe:/a:avaya:breeze_platform:-`	—
Avaya Aura Session Manager Avaya	`cpe:/a:avaya:session_manager:-`	—
Avaya Aura Communication Manager Avaya	`cpe:/a:avaya:communication_manager:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Avaya Session Border Controller Avaya	`cpe:/h:avaya:session_border_controller:-`	—
Avaya Web License Manager Avaya	`cpe:/a:avaya:web_license_manager:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Avaya one-X Avaya	`cpe:/a:avaya:one-x:-`	—
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—

CVE-2020-24450

Affected products

Known affected 17 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/o:lenovo:lenovo_computer:-`	—
Avaya Aura Experience Portal Avaya	`cpe:/a:avaya:aura_experience_portal:-`	—
Avaya Aura System Manager Avaya	`cpe:/a:avaya:aura_system_manager:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Avaya Aura Application Enablement Services Avaya	`cpe:/a:avaya:aura_application_enablement_services:-`	—
Intel Graphics Driver Intel	`cpe:/a:intel:graphic_driver:-`	—
Avaya Breeze Platform Avaya	`cpe:/a:avaya:breeze_platform:-`	—
Avaya Aura Session Manager Avaya	`cpe:/a:avaya:session_manager:-`	—
Avaya Aura Communication Manager Avaya	`cpe:/a:avaya:communication_manager:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Avaya Session Border Controller Avaya	`cpe:/h:avaya:session_border_controller:-`	—
Avaya Web License Manager Avaya	`cpe:/a:avaya:web_license_manager:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Avaya one-X Avaya	`cpe:/a:avaya:one-x:-`	—
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—

CVE-2020-8678

Affected products

Known affected 17 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/o:lenovo:lenovo_computer:-`	—
Avaya Aura Experience Portal Avaya	`cpe:/a:avaya:aura_experience_portal:-`	—
Avaya Aura System Manager Avaya	`cpe:/a:avaya:aura_system_manager:-`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Avaya Aura Application Enablement Services Avaya	`cpe:/a:avaya:aura_application_enablement_services:-`	—
Intel Graphics Driver Intel	`cpe:/a:intel:graphic_driver:-`	—
Avaya Breeze Platform Avaya	`cpe:/a:avaya:breeze_platform:-`	—
Avaya Aura Session Manager Avaya	`cpe:/a:avaya:session_manager:-`	—
Avaya Aura Communication Manager Avaya	`cpe:/a:avaya:communication_manager:-`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Avaya Session Border Controller Avaya	`cpe:/h:avaya:session_border_controller:-`	—
Avaya Web License Manager Avaya	`cpe:/a:avaya:web_license_manager:-`	—
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
Avaya one-X Avaya	`cpe:/a:avaya:one-x:-`	—
Open Source CentOS Open Source	`cpe:/o:centos:centos:-`	—

References

31 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://lists.debian.org/debian-lts-announce/2023…	external
https://linux.oracle.com/errata/ELSA-2021-2314.html	external
https://access.redhat.com/errata/RHSA-2021:1739	external
https://access.redhat.com/errata/RHSA-2021:1578	external
https://access.redhat.com/errata/RHSA-2021:1620	external
https://access.redhat.com/errata/RHSA-2021:2106	external
https://www.intel.com/content/www/us/en/security-…	external
https://support.lenovo.com/de/de/product_security…	external
https://www.dell.com/support/kbdoc/de-de/00018280…	external
https://access.redhat.com/errata/RHSA-2021:2293	external
https://access.redhat.com/errata/RHSA-2021:2316	external
https://access.redhat.com/errata/RHSA-2021:2314	external
https://access.redhat.com/errata/RHSA-2021:2164	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://access.redhat.com/errata/RHSA-2021:2190	external
https://access.redhat.com/errata/RHSA-2021:2185	external
https://access.redhat.com/errata/RHSA-2021:2355	external
http://centos-announce.2309468.n4.nabble.com/Cent…	external
https://access.redhat.com/errata/RHSA-2021:2461	external
https://access.redhat.com/errata/RHSA-2021:2523	external
https://access.redhat.com/errata/RHSA-2021:2735	external
https://access.redhat.com/errata/RHSA-2021:3119	external
https://downloads.avaya.com/css/P8/documents/101077148	external
https://downloads.avaya.com/css/P8/documents/101077149	external
https://downloads.avaya.com/css/P8/documents/101077234	external
http://linux.oracle.com/errata/ELSA-2021-9434.html	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Intel ist ein Hersteller von Grafikkarten. Ein Grafiktreiber, ist eine Software, die eine Interaktion mit angeschlossenen, eingebauten (Hardware) oder virtuellen Ger\u00e4ten erm\u00f6glicht.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein lokaler Angreifer kann mehrere Schwachstellen im Intel Graphics Driver ausnutzen, um seine Privilegien zu erh\u00f6hen, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- BIOS/Firmware\n- Appliance",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-0820 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2021/wid-sec-w-2023-0820.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-0820 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0820"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-3380 vom 2023-04-01",
        "url": "https://lists.debian.org/debian-lts-announce/2023/04/msg00002.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2021-2314 vom 2021-06-10",
        "url": "https://linux.oracle.com/errata/ELSA-2021-2314.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2021:1739 vom 2021-05-18",
        "url": "https://access.redhat.com/errata/RHSA-2021:1739"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2021:1578 vom 2021-05-18",
        "url": "https://access.redhat.com/errata/RHSA-2021:1578"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2021:1620 vom 2021-05-18",
        "url": "https://access.redhat.com/errata/RHSA-2021:1620"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2021:2106 vom 2021-05-25",
        "url": "https://access.redhat.com/errata/RHSA-2021:2106"
      },
      {
        "category": "external",
        "summary": "Intel Security Advisory: INTEL-SA-00438 vom 2021-02-09",
        "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html"
      },
      {
        "category": "external",
        "summary": "Lenovo Security Advisory",
        "url": "https://support.lenovo.com/de/de/product_security/ps500393-intel-graphics-drivers-advisory"
      },
      {
        "category": "external",
        "summary": "EMC Security Advisory DSA-2021-028 vom 2021-02-10",
        "url": "https://www.dell.com/support/kbdoc/de-de/000182803/dsa-2021-028-dell-client-platform-security-update-security-advisory-for-intel-graphics-driver-vulnerabilities"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2021:2293 vom 2021-06-08",
        "url": "https://access.redhat.com/errata/RHSA-2021:2293"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2021:2316 vom 2021-06-09",
        "url": "https://access.redhat.com/errata/RHSA-2021:2316"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2021:2314 vom 2021-06-09",
        "url": "https://access.redhat.com/errata/RHSA-2021:2314"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2021:2164 vom 2021-06-01",
        "url": "https://access.redhat.com/errata/RHSA-2021:2164"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2021:0694-1 vom 2021-03-03",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2021-March/008432.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2021:0738-1 vom 2021-03-09",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2021-March/008445.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2021:0741-1 vom 2021-03-09",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2021-March/008452.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2021:0735-1 vom 2021-03-09",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2021-March/008450.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2021:2190 vom 2021-06-01",
        "url": "https://access.redhat.com/errata/RHSA-2021:2190"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2021:2185 vom 2021-06-02",
        "url": "https://access.redhat.com/errata/RHSA-2021:2185"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2021:2355 vom 2021-06-09",
        "url": "https://access.redhat.com/errata/RHSA-2021:2355"
      },
      {
        "category": "external",
        "summary": "CentOS Security Advisory CESA-2021:2314 vom 2021-06-14",
        "url": "http://centos-announce.2309468.n4.nabble.com/CentOS-announce-CESA-2021-2314-Important-CentOS-7-kernel-Security-Update-tp4646206.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2021:2461 vom 2021-06-16",
        "url": "https://access.redhat.com/errata/RHSA-2021:2461"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2021:2523 vom 2021-06-22",
        "url": "https://access.redhat.com/errata/RHSA-2021:2523"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2021:2735 vom 2021-07-20",
        "url": "https://access.redhat.com/errata/RHSA-2021:2735"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2021:3119 vom 2021-08-10",
        "url": "https://access.redhat.com/errata/RHSA-2021:3119"
      },
      {
        "category": "external",
        "summary": "AVAYA Security Advisory ASA-2021-083 vom 2021-08-18",
        "url": "https://downloads.avaya.com/css/P8/documents/101077148"
      },
      {
        "category": "external",
        "summary": "AVAYA Security Advisory ASA-2021-083 vom 2021-08-18",
        "url": "https://downloads.avaya.com/css/P8/documents/101077149"
      },
      {
        "category": "external",
        "summary": "AVAYA Security Advisory ASA-2021-100 vom 2021-08-25",
        "url": "https://downloads.avaya.com/css/P8/documents/101077234"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2021-9434 vom 2021-08-30",
        "url": "http://linux.oracle.com/errata/ELSA-2021-9434.html"
      }
    ],
    "source_lang": "en-US",
    "title": "Intel Graphics Driver: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2023-04-02T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T17:47:42.912+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2023-0820",
      "initial_release_date": "2021-02-09T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2021-02-09T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2021-02-10T23:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von EMC aufgenommen"
        },
        {
          "date": "2021-03-03T23:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2021-03-09T23:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2021-05-18T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2021-05-25T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2021-05-31T22:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2021-06-01T22:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2021-06-08T22:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2021-06-09T22:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2021-06-14T22:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von CentOS aufgenommen"
        },
        {
          "date": "2021-06-16T22:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2021-06-22T22:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2021-07-20T22:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2021-08-10T22:00:00.000+00:00",
          "number": "15",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2021-08-19T22:00:00.000+00:00",
          "number": "16",
          "summary": "Neue Updates von AVAYA aufgenommen"
        },
        {
          "date": "2021-08-26T22:00:00.000+00:00",
          "number": "17",
          "summary": "Neue Updates von AVAYA aufgenommen"
        },
        {
          "date": "2021-08-30T22:00:00.000+00:00",
          "number": "18",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2023-04-02T22:00:00.000+00:00",
          "number": "19",
          "summary": "Neue Updates von Debian aufgenommen"
        }
      ],
      "status": "final",
      "version": "19"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Avaya Aura Application Enablement Services",
            "product": {
              "name": "Avaya Aura Application Enablement Services",
              "product_id": "T015516",
              "product_identification_helper": {
                "cpe": "cpe:/a:avaya:aura_application_enablement_services:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Avaya Aura Communication Manager",
            "product": {
              "name": "Avaya Aura Communication Manager",
              "product_id": "T015126",
              "product_identification_helper": {
                "cpe": "cpe:/a:avaya:communication_manager:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Avaya Aura Experience Portal",
            "product": {
              "name": "Avaya Aura Experience Portal",
              "product_id": "T015519",
              "product_identification_helper": {
                "cpe": "cpe:/a:avaya:aura_experience_portal:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Avaya Aura Session Manager",
            "product": {
              "name": "Avaya Aura Session Manager",
              "product_id": "T015127",
              "product_identification_helper": {
                "cpe": "cpe:/a:avaya:session_manager:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Avaya Aura System Manager",
            "product": {
              "name": "Avaya Aura System Manager",
              "product_id": "T015518",
              "product_identification_helper": {
                "cpe": "cpe:/a:avaya:aura_system_manager:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Avaya Breeze Platform",
            "product": {
              "name": "Avaya Breeze Platform",
              "product_id": "T015823",
              "product_identification_helper": {
                "cpe": "cpe:/a:avaya:breeze_platform:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Avaya Session Border Controller",
            "product": {
              "name": "Avaya Session Border Controller",
              "product_id": "T015520",
              "product_identification_helper": {
                "cpe": "cpe:/h:avaya:session_border_controller:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Avaya Web License Manager",
            "product": {
              "name": "Avaya Web License Manager",
              "product_id": "T016243",
              "product_identification_helper": {
                "cpe": "cpe:/a:avaya:web_license_manager:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Avaya one-X",
            "product": {
              "name": "Avaya one-X",
              "product_id": "1024",
              "product_identification_helper": {
                "cpe": "cpe:/a:avaya:one-x:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Avaya"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Dell Computer",
            "product": {
              "name": "Dell Computer",
              "product_id": "T006498",
              "product_identification_helper": {
                "cpe": "cpe:/o:dell:dell_computer:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Dell"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Intel Graphics Driver",
            "product": {
              "name": "Intel Graphics Driver",
              "product_id": "T013776",
              "product_identification_helper": {
                "cpe": "cpe:/a:intel:graphic_driver:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Intel"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Lenovo Computer",
            "product": {
              "name": "Lenovo Computer",
              "product_id": "T006520",
              "product_identification_helper": {
                "cpe": "cpe:/o:lenovo:lenovo_computer:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Lenovo"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Open Source CentOS",
            "product": {
              "name": "Open Source CentOS",
              "product_id": "1727",
              "product_identification_helper": {
                "cpe": "cpe:/o:centos:centos:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2020-0518",
      "notes": [
        {
          "category": "description",
          "text": "Im Intel Graphics Driver existieren mehrere Schwachstellen. Die Schwachstellen sind zur\u00fcckzuf\u00fchren auf Fehler im Kontrollfluss, Out-of-Bounds-Schreibfehler, Fehler bei der Eingabevalidierung, Integer-\u00dcberl\u00e4ufen, unzureichende Zugriffskontrollen, Fehler mit Zeigern sowie auf Fehler mit nicht abgefangenen Ausnahmen. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T006498",
          "T006520",
          "T015519",
          "T015518",
          "67646",
          "T015516",
          "T013776",
          "T015823",
          "T015127",
          "T015126",
          "T004914",
          "T015520",
          "T016243",
          "2951",
          "T002207",
          "1024",
          "1727"
        ]
      },
      "release_date": "2021-02-09T23:00:00.000+00:00",
      "title": "CVE-2020-0518"
    },
    {
      "cve": "CVE-2020-0521",
      "notes": [
        {
          "category": "description",
          "text": "Im Intel Graphics Driver existieren mehrere Schwachstellen. Die Schwachstellen sind zur\u00fcckzuf\u00fchren auf Fehler im Kontrollfluss, Out-of-Bounds-Schreibfehler, Fehler bei der Eingabevalidierung, Integer-\u00dcberl\u00e4ufen, unzureichende Zugriffskontrollen, Fehler mit Zeigern sowie auf Fehler mit nicht abgefangenen Ausnahmen. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T006498",
          "T006520",
          "T015519",
          "T015518",
          "67646",
          "T015516",
          "T013776",
          "T015823",
          "T015127",
          "T015126",
          "T004914",
          "T015520",
          "T016243",
          "2951",
          "T002207",
          "1024",
          "1727"
        ]
      },
      "release_date": "2021-02-09T23:00:00.000+00:00",
      "title": "CVE-2020-0521"
    },
    {
      "cve": "CVE-2020-0544",
      "notes": [
        {
          "category": "description",
          "text": "Im Intel Graphics Driver existieren mehrere Schwachstellen. Die Schwachstellen sind zur\u00fcckzuf\u00fchren auf Fehler im Kontrollfluss, Out-of-Bounds-Schreibfehler, Fehler bei der Eingabevalidierung, Integer-\u00dcberl\u00e4ufen, unzureichende Zugriffskontrollen, Fehler mit Zeigern sowie auf Fehler mit nicht abgefangenen Ausnahmen. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T006498",
          "T006520",
          "T015519",
          "T015518",
          "67646",
          "T015516",
          "T013776",
          "T015823",
          "T015127",
          "T015126",
          "T004914",
          "T015520",
          "T016243",
          "2951",
          "T002207",
          "1024",
          "1727"
        ]
      },
      "release_date": "2021-02-09T23:00:00.000+00:00",
      "title": "CVE-2020-0544"
    },
    {
      "cve": "CVE-2020-12361",
      "notes": [
        {
          "category": "description",
          "text": "Im Intel Graphics Driver existieren mehrere Schwachstellen. Die Schwachstellen sind zur\u00fcckzuf\u00fchren auf Fehler im Kontrollfluss, Out-of-Bounds-Schreibfehler, Fehler bei der Eingabevalidierung, Integer-\u00dcberl\u00e4ufen, unzureichende Zugriffskontrollen, Fehler mit Zeigern sowie auf Fehler mit nicht abgefangenen Ausnahmen. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T006498",
          "T006520",
          "T015519",
          "T015518",
          "67646",
          "T015516",
          "T013776",
          "T015823",
          "T015127",
          "T015126",
          "T004914",
          "T015520",
          "T016243",
          "2951",
          "T002207",
          "1024",
          "1727"
        ]
      },
      "release_date": "2021-02-09T23:00:00.000+00:00",
      "title": "CVE-2020-12361"
    },
    {
      "cve": "CVE-2020-12362",
      "notes": [
        {
          "category": "description",
          "text": "Im Intel Graphics Driver existieren mehrere Schwachstellen. Die Schwachstellen sind zur\u00fcckzuf\u00fchren auf Fehler im Kontrollfluss, Out-of-Bounds-Schreibfehler, Fehler bei der Eingabevalidierung, Integer-\u00dcberl\u00e4ufen, unzureichende Zugriffskontrollen, Fehler mit Zeigern sowie auf Fehler mit nicht abgefangenen Ausnahmen. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T006498",
          "T006520",
          "T015519",
          "T015518",
          "67646",
          "T015516",
          "T013776",
          "T015823",
          "T015127",
          "T015126",
          "T004914",
          "T015520",
          "T016243",
          "2951",
          "T002207",
          "1024",
          "1727"
        ]
      },
      "release_date": "2021-02-09T23:00:00.000+00:00",
      "title": "CVE-2020-12362"
    },
    {
      "cve": "CVE-2020-12363",
      "notes": [
        {
          "category": "description",
          "text": "Im Intel Graphics Driver existieren mehrere Schwachstellen. Die Schwachstellen sind zur\u00fcckzuf\u00fchren auf Fehler im Kontrollfluss, Out-of-Bounds-Schreibfehler, Fehler bei der Eingabevalidierung, Integer-\u00dcberl\u00e4ufen, unzureichende Zugriffskontrollen, Fehler mit Zeigern sowie auf Fehler mit nicht abgefangenen Ausnahmen. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T006498",
          "T006520",
          "T015519",
          "T015518",
          "67646",
          "T015516",
          "T013776",
          "T015823",
          "T015127",
          "T015126",
          "T004914",
          "T015520",
          "T016243",
          "2951",
          "T002207",
          "1024",
          "1727"
        ]
      },
      "release_date": "2021-02-09T23:00:00.000+00:00",
      "title": "CVE-2020-12363"
    },
    {
      "cve": "CVE-2020-12364",
      "notes": [
        {
          "category": "description",
          "text": "Im Intel Graphics Driver existieren mehrere Schwachstellen. Die Schwachstellen sind zur\u00fcckzuf\u00fchren auf Fehler im Kontrollfluss, Out-of-Bounds-Schreibfehler, Fehler bei der Eingabevalidierung, Integer-\u00dcberl\u00e4ufen, unzureichende Zugriffskontrollen, Fehler mit Zeigern sowie auf Fehler mit nicht abgefangenen Ausnahmen. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T006498",
          "T006520",
          "T015519",
          "T015518",
          "67646",
          "T015516",
          "T013776",
          "T015823",
          "T015127",
          "T015126",
          "T004914",
          "T015520",
          "T016243",
          "2951",
          "T002207",
          "1024",
          "1727"
        ]
      },
      "release_date": "2021-02-09T23:00:00.000+00:00",
      "title": "CVE-2020-12364"
    },
    {
      "cve": "CVE-2020-12365",
      "notes": [
        {
          "category": "description",
          "text": "Im Intel Graphics Driver existieren mehrere Schwachstellen. Die Schwachstellen sind zur\u00fcckzuf\u00fchren auf Fehler im Kontrollfluss, Out-of-Bounds-Schreibfehler, Fehler bei der Eingabevalidierung, Integer-\u00dcberl\u00e4ufen, unzureichende Zugriffskontrollen, Fehler mit Zeigern sowie auf Fehler mit nicht abgefangenen Ausnahmen. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T006498",
          "T006520",
          "T015519",
          "T015518",
          "67646",
          "T015516",
          "T013776",
          "T015823",
          "T015127",
          "T015126",
          "T004914",
          "T015520",
          "T016243",
          "2951",
          "T002207",
          "1024",
          "1727"
        ]
      },
      "release_date": "2021-02-09T23:00:00.000+00:00",
      "title": "CVE-2020-12365"
    },
    {
      "cve": "CVE-2020-12366",
      "notes": [
        {
          "category": "description",
          "text": "Im Intel Graphics Driver existieren mehrere Schwachstellen. Die Schwachstellen sind zur\u00fcckzuf\u00fchren auf Fehler im Kontrollfluss, Out-of-Bounds-Schreibfehler, Fehler bei der Eingabevalidierung, Integer-\u00dcberl\u00e4ufen, unzureichende Zugriffskontrollen, Fehler mit Zeigern sowie auf Fehler mit nicht abgefangenen Ausnahmen. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T006498",
          "T006520",
          "T015519",
          "T015518",
          "67646",
          "T015516",
          "T013776",
          "T015823",
          "T015127",
          "T015126",
          "T004914",
          "T015520",
          "T016243",
          "2951",
          "T002207",
          "1024",
          "1727"
        ]
      },
      "release_date": "2021-02-09T23:00:00.000+00:00",
      "title": "CVE-2020-12366"
    },
    {
      "cve": "CVE-2020-12367",
      "notes": [
        {
          "category": "description",
          "text": "Im Intel Graphics Driver existieren mehrere Schwachstellen. Die Schwachstellen sind zur\u00fcckzuf\u00fchren auf Fehler im Kontrollfluss, Out-of-Bounds-Schreibfehler, Fehler bei der Eingabevalidierung, Integer-\u00dcberl\u00e4ufen, unzureichende Zugriffskontrollen, Fehler mit Zeigern sowie auf Fehler mit nicht abgefangenen Ausnahmen. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T006498",
          "T006520",
          "T015519",
          "T015518",
          "67646",
          "T015516",
          "T013776",
          "T015823",
          "T015127",
          "T015126",
          "T004914",
          "T015520",
          "T016243",
          "2951",
          "T002207",
          "1024",
          "1727"
        ]
      },
      "release_date": "2021-02-09T23:00:00.000+00:00",
      "title": "CVE-2020-12367"
    },
    {
      "cve": "CVE-2020-12368",
      "notes": [
        {
          "category": "description",
          "text": "Im Intel Graphics Driver existieren mehrere Schwachstellen. Die Schwachstellen sind zur\u00fcckzuf\u00fchren auf Fehler im Kontrollfluss, Out-of-Bounds-Schreibfehler, Fehler bei der Eingabevalidierung, Integer-\u00dcberl\u00e4ufen, unzureichende Zugriffskontrollen, Fehler mit Zeigern sowie auf Fehler mit nicht abgefangenen Ausnahmen. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T006498",
          "T006520",
          "T015519",
          "T015518",
          "67646",
          "T015516",
          "T013776",
          "T015823",
          "T015127",
          "T015126",
          "T004914",
          "T015520",
          "T016243",
          "2951",
          "T002207",
          "1024",
          "1727"
        ]
      },
      "release_date": "2021-02-09T23:00:00.000+00:00",
      "title": "CVE-2020-12368"
    },
    {
      "cve": "CVE-2020-12369",
      "notes": [
        {
          "category": "description",
          "text": "Im Intel Graphics Driver existieren mehrere Schwachstellen. Die Schwachstellen sind zur\u00fcckzuf\u00fchren auf Fehler im Kontrollfluss, Out-of-Bounds-Schreibfehler, Fehler bei der Eingabevalidierung, Integer-\u00dcberl\u00e4ufen, unzureichende Zugriffskontrollen, Fehler mit Zeigern sowie auf Fehler mit nicht abgefangenen Ausnahmen. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T006498",
          "T006520",
          "T015519",
          "T015518",
          "67646",
          "T015516",
          "T013776",
          "T015823",
          "T015127",
          "T015126",
          "T004914",
          "T015520",
          "T016243",
          "2951",
          "T002207",
          "1024",
          "1727"
        ]
      },
      "release_date": "2021-02-09T23:00:00.000+00:00",
      "title": "CVE-2020-12369"
    },
    {
      "cve": "CVE-2020-12370",
      "notes": [
        {
          "category": "description",
          "text": "Im Intel Graphics Driver existieren mehrere Schwachstellen. Die Schwachstellen sind zur\u00fcckzuf\u00fchren auf Fehler im Kontrollfluss, Out-of-Bounds-Schreibfehler, Fehler bei der Eingabevalidierung, Integer-\u00dcberl\u00e4ufen, unzureichende Zugriffskontrollen, Fehler mit Zeigern sowie auf Fehler mit nicht abgefangenen Ausnahmen. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T006498",
          "T006520",
          "T015519",
          "T015518",
          "67646",
          "T015516",
          "T013776",
          "T015823",
          "T015127",
          "T015126",
          "T004914",
          "T015520",
          "T016243",
          "2951",
          "T002207",
          "1024",
          "1727"
        ]
      },
      "release_date": "2021-02-09T23:00:00.000+00:00",
      "title": "CVE-2020-12370"
    },
    {
      "cve": "CVE-2020-12371",
      "notes": [
        {
          "category": "description",
          "text": "Im Intel Graphics Driver existieren mehrere Schwachstellen. Die Schwachstellen sind zur\u00fcckzuf\u00fchren auf Fehler im Kontrollfluss, Out-of-Bounds-Schreibfehler, Fehler bei der Eingabevalidierung, Integer-\u00dcberl\u00e4ufen, unzureichende Zugriffskontrollen, Fehler mit Zeigern sowie auf Fehler mit nicht abgefangenen Ausnahmen. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T006498",
          "T006520",
          "T015519",
          "T015518",
          "67646",
          "T015516",
          "T013776",
          "T015823",
          "T015127",
          "T015126",
          "T004914",
          "T015520",
          "T016243",
          "2951",
          "T002207",
          "1024",
          "1727"
        ]
      },
      "release_date": "2021-02-09T23:00:00.000+00:00",
      "title": "CVE-2020-12371"
    },
    {
      "cve": "CVE-2020-12372",
      "notes": [
        {
          "category": "description",
          "text": "Im Intel Graphics Driver existieren mehrere Schwachstellen. Die Schwachstellen sind zur\u00fcckzuf\u00fchren auf Fehler im Kontrollfluss, Out-of-Bounds-Schreibfehler, Fehler bei der Eingabevalidierung, Integer-\u00dcberl\u00e4ufen, unzureichende Zugriffskontrollen, Fehler mit Zeigern sowie auf Fehler mit nicht abgefangenen Ausnahmen. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T006498",
          "T006520",
          "T015519",
          "T015518",
          "67646",
          "T015516",
          "T013776",
          "T015823",
          "T015127",
          "T015126",
          "T004914",
          "T015520",
          "T016243",
          "2951",
          "T002207",
          "1024",
          "1727"
        ]
      },
      "release_date": "2021-02-09T23:00:00.000+00:00",
      "title": "CVE-2020-12372"
    },
    {
      "cve": "CVE-2020-12373",
      "notes": [
        {
          "category": "description",
          "text": "Im Intel Graphics Driver existieren mehrere Schwachstellen. Die Schwachstellen sind zur\u00fcckzuf\u00fchren auf Fehler im Kontrollfluss, Out-of-Bounds-Schreibfehler, Fehler bei der Eingabevalidierung, Integer-\u00dcberl\u00e4ufen, unzureichende Zugriffskontrollen, Fehler mit Zeigern sowie auf Fehler mit nicht abgefangenen Ausnahmen. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T006498",
          "T006520",
          "T015519",
          "T015518",
          "67646",
          "T015516",
          "T013776",
          "T015823",
          "T015127",
          "T015126",
          "T004914",
          "T015520",
          "T016243",
          "2951",
          "T002207",
          "1024",
          "1727"
        ]
      },
      "release_date": "2021-02-09T23:00:00.000+00:00",
      "title": "CVE-2020-12373"
    },
    {
      "cve": "CVE-2020-12384",
      "notes": [
        {
          "category": "description",
          "text": "Im Intel Graphics Driver existieren mehrere Schwachstellen. Die Schwachstellen sind zur\u00fcckzuf\u00fchren auf Fehler im Kontrollfluss, Out-of-Bounds-Schreibfehler, Fehler bei der Eingabevalidierung, Integer-\u00dcberl\u00e4ufen, unzureichende Zugriffskontrollen, Fehler mit Zeigern sowie auf Fehler mit nicht abgefangenen Ausnahmen. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T006498",
          "T006520",
          "T015519",
          "T015518",
          "67646",
          "T015516",
          "T013776",
          "T015823",
          "T015127",
          "T015126",
          "T004914",
          "T015520",
          "T016243",
          "2951",
          "T002207",
          "1024",
          "1727"
        ]
      },
      "release_date": "2021-02-09T23:00:00.000+00:00",
      "title": "CVE-2020-12384"
    },
    {
      "cve": "CVE-2020-12385",
      "notes": [
        {
          "category": "description",
          "text": "Im Intel Graphics Driver existieren mehrere Schwachstellen. Die Schwachstellen sind zur\u00fcckzuf\u00fchren auf Fehler im Kontrollfluss, Out-of-Bounds-Schreibfehler, Fehler bei der Eingabevalidierung, Integer-\u00dcberl\u00e4ufen, unzureichende Zugriffskontrollen, Fehler mit Zeigern sowie auf Fehler mit nicht abgefangenen Ausnahmen. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T006498",
          "T006520",
          "T015519",
          "T015518",
          "67646",
          "T015516",
          "T013776",
          "T015823",
          "T015127",
          "T015126",
          "T004914",
          "T015520",
          "T016243",
          "2951",
          "T002207",
          "1024",
          "1727"
        ]
      },
      "release_date": "2021-02-09T23:00:00.000+00:00",
      "title": "CVE-2020-12385"
    },
    {
      "cve": "CVE-2020-12386",
      "notes": [
        {
          "category": "description",
          "text": "Im Intel Graphics Driver existieren mehrere Schwachstellen. Die Schwachstellen sind zur\u00fcckzuf\u00fchren auf Fehler im Kontrollfluss, Out-of-Bounds-Schreibfehler, Fehler bei der Eingabevalidierung, Integer-\u00dcberl\u00e4ufen, unzureichende Zugriffskontrollen, Fehler mit Zeigern sowie auf Fehler mit nicht abgefangenen Ausnahmen. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T006498",
          "T006520",
          "T015519",
          "T015518",
          "67646",
          "T015516",
          "T013776",
          "T015823",
          "T015127",
          "T015126",
          "T004914",
          "T015520",
          "T016243",
          "2951",
          "T002207",
          "1024",
          "1727"
        ]
      },
      "release_date": "2021-02-09T23:00:00.000+00:00",
      "title": "CVE-2020-12386"
    },
    {
      "cve": "CVE-2020-24448",
      "notes": [
        {
          "category": "description",
          "text": "Im Intel Graphics Driver existieren mehrere Schwachstellen. Die Schwachstellen sind zur\u00fcckzuf\u00fchren auf Fehler im Kontrollfluss, Out-of-Bounds-Schreibfehler, Fehler bei der Eingabevalidierung, Integer-\u00dcberl\u00e4ufen, unzureichende Zugriffskontrollen, Fehler mit Zeigern sowie auf Fehler mit nicht abgefangenen Ausnahmen. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T006498",
          "T006520",
          "T015519",
          "T015518",
          "67646",
          "T015516",
          "T013776",
          "T015823",
          "T015127",
          "T015126",
          "T004914",
          "T015520",
          "T016243",
          "2951",
          "T002207",
          "1024",
          "1727"
        ]
      },
      "release_date": "2021-02-09T23:00:00.000+00:00",
      "title": "CVE-2020-24448"
    },
    {
      "cve": "CVE-2020-24450",
      "notes": [
        {
          "category": "description",
          "text": "Im Intel Graphics Driver existieren mehrere Schwachstellen. Die Schwachstellen sind zur\u00fcckzuf\u00fchren auf Fehler im Kontrollfluss, Out-of-Bounds-Schreibfehler, Fehler bei der Eingabevalidierung, Integer-\u00dcberl\u00e4ufen, unzureichende Zugriffskontrollen, Fehler mit Zeigern sowie auf Fehler mit nicht abgefangenen Ausnahmen. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T006498",
          "T006520",
          "T015519",
          "T015518",
          "67646",
          "T015516",
          "T013776",
          "T015823",
          "T015127",
          "T015126",
          "T004914",
          "T015520",
          "T016243",
          "2951",
          "T002207",
          "1024",
          "1727"
        ]
      },
      "release_date": "2021-02-09T23:00:00.000+00:00",
      "title": "CVE-2020-24450"
    },
    {
      "cve": "CVE-2020-8678",
      "notes": [
        {
          "category": "description",
          "text": "Im Intel Graphics Driver existieren mehrere Schwachstellen. Die Schwachstellen sind zur\u00fcckzuf\u00fchren auf Fehler im Kontrollfluss, Out-of-Bounds-Schreibfehler, Fehler bei der Eingabevalidierung, Integer-\u00dcberl\u00e4ufen, unzureichende Zugriffskontrollen, Fehler mit Zeigern sowie auf Fehler mit nicht abgefangenen Ausnahmen. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T006498",
          "T006520",
          "T015519",
          "T015518",
          "67646",
          "T015516",
          "T013776",
          "T015823",
          "T015127",
          "T015126",
          "T004914",
          "T015520",
          "T016243",
          "2951",
          "T002207",
          "1024",
          "1727"
        ]
      },
      "release_date": "2021-02-09T23:00:00.000+00:00",
      "title": "CVE-2020-8678"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2020-24448 (GCVE-0-2020-24448)

BDU:2021-00819

CNVD-2021-10794

FKIE_CVE-2020-24448

GHSA-JXX8-F36P-3CQ8

GSD-2020-24448

VAR-202102-0284

WID-SEC-W-2023-0820

Tags

Sightings

Nomenclature