Insufficient Control Flow Management in Intel Thunderbolt Controllers
CVE-2020-12294

5.5MEDIUM

Key Information:

Vendor
Intel
Vendor
CVE Published:
9 June 2021

Summary

An issue exists in certain Intel Thunderbolt controllers, where insufficient control flow management may permit an authenticated user to potentially launch a denial of service attack through local access. This vulnerability exposes the system to potential disruptions, emphasizing the need for users to ensure that their systems are updated and secured.

Affected Version(s)

Intel(R) Thunderbolt(TM) controllers See references

References

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.