Elevated Privileges Vulnerability in Intel BIOS Platform for Intel Processors
CVE-2020-8739

7.8HIGH

Key Information:

Vendor: Intel
Status: Intel BiOS Platform Sample Code For Some Intel(r) Processors
Vendor: CVE Published:; 12 November 2020

Summary

The vulnerability exists within the Intel BIOS platform sample code utilized by certain Intel processors. An authenticated user, through local access, could potentially invoke this flaw to escalate their privileges inappropriately. This risk underscores the importance of securing BIOS configurations and ensuring only authorized personnel have access to critical system functions.

Affected Version(s)

Intel BIOS platform sample code for some Intel(R) Processors See references

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_MISC

https://security.netapp.com/advisory/ntap-20210122-0008/

x_refsource_CONFIRM

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 12, 2020
Vulnerability Reserved
Feb 6, 2020