Improper Access Control in Intel TXE Products
CVE-2020-0566

6.8MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Txe
Vendor: CVE Published:; 15 June 2020

Summary

The vulnerability presents an improper access control issue within the Intel TXE subsystem, allowing an unauthenticated user with physical access the potential to escalate privileges. Versions prior to 3.175 and including 4.0.25 are impacted, posing significant security risks if exploited.

Affected Version(s)

Intel(R) TXE See provided reference

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_CONFIRM

https://security.netapp.com/advisory/ntap-20200611-0005/

x_refsource_CONFIRM

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_MISC

CVSS V3.1

Score:

6.8

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Physical

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 15, 2020
Vulnerability Reserved
Oct 28, 2019

.