1. Home
  2. CVE Database
  3. CVE-2020-8672
HIGH · 7.8

CVE-2020-8672

Out of bound read in BIOS firmware for 8th, 9th Generation Intel(R) Core(TM), Intel(R) Celeron(R) Processor 4000 Series Processors may allow an unauthenticated user to potentially enable elevation of ...

Vulnerability Description

Out of bound read in BIOS firmware for 8th, 9th Generation Intel(R) Core(TM), Intel(R) Celeron(R) Processor 4000 Series Processors may allow an unauthenticated user to potentially enable elevation of privilege or denial of service via local access.

CVSS Score

7.8

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
IntelBios-
IntelCeleron 4205U-
IntelCeleron 4305U-
IntelCeleron 4305Ue-
IntelCore I3 8100-
IntelCore I3 8100F-
IntelCore I3 8100T-
IntelCore I3 8300-
IntelCore I3 8300T-
IntelCore I3 8350K-
IntelCore I3 9100-
IntelCore I3 9100F-
IntelCore I3 9100T-
IntelCore I3 9300-
IntelCore I3 9300T-
IntelCore I3 9320-
IntelCore I3 9350K-
IntelCore I3 9350Kf-
IntelCore I5 8400-
IntelCore I5 8400T-

Related Weaknesses (CWE)

CWE-125

References

FAQ

What is CVE-2020-8672?

CVE-2020-8672 is a vulnerability with a CVSS score of 7.8 (HIGH). Out of bound read in BIOS firmware for 8th, 9th Generation Intel(R) Core(TM), Intel(R) Celeron(R) Processor 4000 Series Processors may allow an unauthenticated user to potentially enable elevation of ...

How severe is CVE-2020-8672?

CVE-2020-8672 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-8672?

Check the references section above for vendor advisories and patch information. Affected products include: Intel Bios, Intel Celeron 4205U, Intel Celeron 4305U, Intel Celeron 4305Ue, Intel Core I3 8100.