1. Home
  2. CVE Database
  3. CVE-2020-24501
MEDIUM · 6.5

CVE-2020-24501

Buffer overflow in the firmware for Intel(R) E810 Ethernet Controllers before version 1.4.1.13 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

Vulnerability Description

Buffer overflow in the firmware for Intel(R) E810 Ethernet Controllers before version 1.4.1.13 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

CVSS Score

6.5

MEDIUM

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
NONE
Availability
HIGH

Affected Products

VendorProductVersions
IntelEthernet Network Adapter E810 Firmware< 1.4.1.13
IntelEthernet Network Adapter E810-Cqda1-
IntelEthernet Network Adapter E810-Cqda1 For Ocp-
IntelEthernet Network Adapter E810-Cqda1 For Ocp 3.0-
IntelEthernet Network Adapter E810-Cqda2-
IntelEthernet Network Adapter E810-Cqda2 For Ocp 3.0-
IntelEthernet Network Adapter E810-Xxvda2-
IntelEthernet Network Adapter E810-Xxvda2 For Ocp-
IntelEthernet Network Adapter E810-Xxvda2 For Ocp 3.0-
IntelEthernet Network Adapter E810-Xxvda4-

Related Weaknesses (CWE)

CWE-120

References

FAQ

What is CVE-2020-24501?

CVE-2020-24501 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Buffer overflow in the firmware for Intel(R) E810 Ethernet Controllers before version 1.4.1.13 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

How severe is CVE-2020-24501?

CVE-2020-24501 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-24501?

Check the references section above for vendor advisories and patch information. Affected products include: Intel Ethernet Network Adapter E810 Firmware, Intel Ethernet Network Adapter E810-Cqda1, Intel Ethernet Network Adapter E810-Cqda1 For Ocp, Intel Ethernet Network Adapter E810-Cqda1 For Ocp 3.0, Intel Ethernet Network Adapter E810-Cqda2.