Insufficient Control Flow Management in Intel Thunderbolt Controllers
CVE-2020-12294
5.5MEDIUM
Key Information:
- Vendor
- Intel
- Vendor
- CVE Published:
- 9 June 2021
Summary
An issue exists in certain Intel Thunderbolt controllers, where insufficient control flow management may permit an authenticated user to potentially launch a denial of service attack through local access. This vulnerability exposes the system to potential disruptions, emphasizing the need for users to ensure that their systems are updated and secured.
Affected Version(s)
Intel(R) Thunderbolt(TM) controllers See references
References
CVSS V3.1
Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved