Buffer Overflow Vulnerability in Intel E810 Ethernet Controllers
CVE-2020-24498

4.4MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) E810 Ethernet Controllers
Vendor: CVE Published:; 17 February 2021

What is CVE-2020-24498?

A buffer overflow vulnerability exists in the firmware for Intel E810 Ethernet Controllers prior to version 1.4.1.13. This flaw allows a privileged user, with local access, to potentially initiate a denial of service attack, disrupting normal operation of the affected device. Prompt updates to the firmware are recommended to mitigate risks associated with this vulnerability.

Affected Version(s)

Intel(R) E810 Ethernet Controllers before version 1.4.1.13

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_MISC

CVSS V3.1

Score:

4.4

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 17, 2021
Vulnerability Reserved
Aug 19, 2020