Improper Input Validation in Intel Ethernet E810 Adapter Drivers for Linux and Windows
CVE-2020-24502

5.5MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Ethernet E810 Adapter Drivers For Linux Before Version 1.0.4 And
Vendor: CVE Published:; 17 February 2021

What is CVE-2020-24502?

An improper input validation vulnerability exists within selected versions of Intel's Ethernet E810 Adapter drivers for both Linux and Windows systems. This flaw may allow an authenticated user to exploit local access and potentially trigger a denial of service condition. Ensuring that systems are updated to the latest driver versions is crucial to mitigate any risks associated with this vulnerability.

Affected Version(s)

Intel(R) Ethernet E810 Adapter drivers for Linux before version 1.0.4 and before version 1.0.4 and before version 1.4.29.0 for Windows

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_MISC

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 17, 2021
Vulnerability Reserved
Aug 19, 2020