1. Home
  2. CVE Database
  3. CVE-2020-8696
MEDIUM · 5.5

CVE-2020-8696

Improper removal of sensitive information before storage or transfer in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

Vulnerability Description

Improper removal of sensitive information before storage or transfer in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

CVSS Score

5.5

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
NONE
Availability
NONE

Affected Products

VendorProductVersions
IntelMicrocode-
IntelCeleron 3855U-
IntelCeleron 3865U-
IntelCeleron 3955U-
IntelCeleron 3965U-
IntelCeleron 3965Y-
IntelCeleron 5305U-
IntelCeleron G3900-
IntelCeleron G3900T-
IntelCeleron G3900Te-
IntelCeleron G3902E-
IntelCeleron G3920-
IntelCeleron G3920T-
IntelCeleron G3930E-
IntelCeleron G3930Te-
IntelCeleron G3940-
IntelCeleron G4900-
IntelCeleron G4900T-
IntelCeleron G4920-
IntelCeleron G5205U-

Related Weaknesses (CWE)

CWE-212

References

FAQ

What is CVE-2020-8696?

CVE-2020-8696 is a vulnerability with a CVSS score of 5.5 (MEDIUM). Improper removal of sensitive information before storage or transfer in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

How severe is CVE-2020-8696?

CVE-2020-8696 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-8696?

Check the references section above for vendor advisories and patch information. Affected products include: Intel Microcode, Intel Celeron 3855U, Intel Celeron 3865U, Intel Celeron 3955U, Intel Celeron 3965U.