Local Access Vulnerability in Intel Thunderbolt DCH Drivers for Windows
CVE-2020-12328

4.4MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Thunderbolt(tm) Dch Drivers For Windows*
Vendor: CVE Published:; 12 November 2020

What is CVE-2020-12328?

A protection mechanism failure exists in certain Intel Thunderbolt DCH drivers for Windows, prior to version 72. This vulnerability may allow a privileged user to exploit the system and potentially disclose sensitive information through local access. It highlights the importance of keeping drivers updated to mitigate security risks and reinforces the need for users to apply necessary patches provided by Intel.

Affected Version(s)

Intel(R) Thunderbolt(TM) DCH drivers for Windows* before version 72

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_MISC

CVSS V3.1

Score:

4.4

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 12, 2020
Vulnerability Reserved
Apr 28, 2020