Vulnerability Description
Improper access control in the firmware for the Intel(R) Ethernet I210 Controller series of network adapters before version 3.30 may potentially allow a privileged user to enable a denial of service via local access.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Intel | Ethernet Controller I210 Firmware | < 3.30 |
| Intel | Ethernet Controller I210-At | - |
| Intel | Ethernet Controller I210-Cl | - |
| Intel | Ethernet Controller I210-Cs | - |
| Intel | Ethernet Controller I210-Is | - |
| Intel | Ethernet Controller I210-It | - |
References
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00318.PatchVendor Advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00318.PatchVendor Advisory
FAQ
What is CVE-2020-0523?
CVE-2020-0523 is a vulnerability with a CVSS score of 4.4 (MEDIUM). Improper access control in the firmware for the Intel(R) Ethernet I210 Controller series of network adapters before version 3.30 may potentially allow a privileged user to enable a denial of service v...
How severe is CVE-2020-0523?
CVE-2020-0523 has been rated MEDIUM with a CVSS base score of 4.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-0523?
Check the references section above for vendor advisories and patch information. Affected products include: Intel Ethernet Controller I210 Firmware, Intel Ethernet Controller I210-At, Intel Ethernet Controller I210-Cl, Intel Ethernet Controller I210-Cs, Intel Ethernet Controller I210-Is.