Improper Access Control Vulnerability in Intel Computing Improvement Program
CVE-2020-12308

6.5MEDIUM

Key Information:

Vendor
Intel
Vendor
CVE Published:
12 November 2020

Summary

The Intel Computing Improvement Program prior to version 2.4.5982 suffers from an improper access control issue. This vulnerability could allow unprivileged users to potentially exploit network access to disclose sensitive information. As a result, organizations utilizing affected versions should review their deployment and apply the necessary updates to mitigate potential risks.

Affected Version(s)

Intel(R) Computing Improvement Program before version 2.4.5982

References

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.