Out of Bounds Write Vulnerability in Intel BIOS Platform Code for Select Intel Processors
CVE-2020-8740

6.7MEDIUM

Key Information:

Vendor: Intel
Status: Intel BiOS Platform Sample Code For Some Intel(r) Processors
Vendor: CVE Published:; 12 November 2020

What is CVE-2020-8740?

The out of bounds write vulnerability in Intel BIOS platform sample code affects some Intel(R) processors, enabling a privileged user with local access to potentially escalate privileges. This flaw could exploit the BIOS handling procedures, impacting system integrity and user data. It is crucial for users and administrators to remain vigilant and ensure timely updates to mitigate risks associated with this vulnerability.

Affected Version(s)

Intel BIOS platform sample code for some Intel(R) Processors See references

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_MISC

https://security.netapp.com/advisory/ntap-20210122-0008/

x_refsource_CONFIRM

CVSS V3.1

Score:

6.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 12, 2020
Vulnerability Reserved
Feb 6, 2020