Insufficient Input Validation in Intel Ethernet Controllers by Intel
CVE-2020-24505
4.4MEDIUM
Key Information:
- Vendor
Intel
- Vendor
- CVE Published:
- 17 February 2021
What is CVE-2020-24505?
The vulnerability arises from inadequate input validation in the firmware for Intel's 700-series Ethernet Controllers prior to version 7.3. This flaw allows a privileged user with local access to potentially exploit the system and enable a denial of service. Organizations using these controllers are advised to assess their exposure and consider updating to the latest firmware to mitigate this risk.
Affected Version(s)
Intel(R) 700-series of Ethernet Controllers before version 7.3