Denial of Service Vulnerability in Intel Ethernet E810 Adapter Drivers for Linux
CVE-2020-24504

5.5MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Ethernet E810 Adapter Drivers For Linux
Vendor: CVE Published:; 17 February 2021

Summary

Uncontrolled resource consumption in Intel Ethernet E810 Adapter drivers for Linux can lead to potential denial of service by authenticated users. This vulnerability could allow an adversary with local access to exhaust system resources, thereby impacting the normal operation of network services. Users are encouraged to update their drivers to version 1.0.4 or later to mitigate this issue.

Affected Version(s)

Intel(R) Ethernet E810 Adapter drivers for Linux before version 1.0.4

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_MISC

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 17, 2021
Vulnerability Reserved
Aug 19, 2020