1. Home
  2. CVE Database
  3. CVE-2020-24489
HIGH · 8.8

CVE-2020-24489

Incomplete cleanup in some Intel(R) VT-d products may allow an authenticated user to potentially enable escalation of privilege via local access.

Vulnerability Description

Incomplete cleanup in some Intel(R) VT-d products may allow an authenticated user to potentially enable escalation of privilege via local access.

CVSS Score

8.8

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
IntelAtom X5-E3930-
IntelAtom X5-E3940-
IntelAtom X7-E3950-
IntelCeleron J1750-
IntelCeleron J1800-
IntelCeleron J1850-
IntelCeleron J1900-
IntelCeleron J3060-
IntelCeleron J3160-
IntelCeleron J3355-
IntelCeleron J3355E-
IntelCeleron J3455-
IntelCeleron J3455E-
IntelCeleron J4005-
IntelCeleron J4025-
IntelCeleron J4105-
IntelCeleron J4115-
IntelCeleron J4125-
IntelCeleron J6412-
IntelCeleron J6413-

Related Weaknesses (CWE)

CWE-459

References

FAQ

What is CVE-2020-24489?

CVE-2020-24489 is a vulnerability with a CVSS score of 8.8 (HIGH). Incomplete cleanup in some Intel(R) VT-d products may allow an authenticated user to potentially enable escalation of privilege via local access.

How severe is CVE-2020-24489?

CVE-2020-24489 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-24489?

Check the references section above for vendor advisories and patch information. Affected products include: Intel Atom X5-E3930, Intel Atom X5-E3940, Intel Atom X7-E3950, Intel Celeron J1750, Intel Celeron J1800.