CVE-2020-12311

MEDIUM

4.6

Description

Insufficient control flow managementin firmware in some Intel(R) Client SSDs and some Intel(R) Data Center SSDs may allow an unauthenticated user to potentially enable information disclosure via physical access.

CVE Details

CVSS v3.1 Score4.6

SeverityMEDIUM

CVSS VectorCVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Attack VectorPHYSICAL

ComplexityLOW

Privileges RequiredNONE

User InteractionNONE

Published11/12/2020

Last Modified11/21/2024

Sourcenvd

Honeypot Sightings0

Affected Products

intel:optane_ssd_900pintel:optane_ssd_900p_firmwareintel:optane_ssd_905pintel:optane_ssd_905p_firmwareintel:ssd_660pintel:ssd_660p_firmwareintel:ssd_760pintel:ssd_760p_firmwareintel:ssd_dc_p4101intel:ssd_dc_p4101_firmwareintel:ssd_dc_p4510intel:ssd_dc_p4510_firmwareintel:ssd_dc_p4610intel:ssd_dc_p4610_firmwareintel:ssd_dc_p4800xintel:ssd_dc_p4800x_firmwareintel:ssd_dc_p4801xintel:ssd_dc_p4801x_firmwareintel:ssd_e_5100sintel:ssd_e_5100s_firmwareintel:ssd_e_6100pintel:ssd_e_6100p_firmwareintel:ssd_pro_5400sintel:ssd_pro_5400s_firmwareintel:ssd_pro_5450sintel:ssd_pro_5450s_firmwareintel:ssd_pro_6000pintel:ssd_pro_6000p_firmwareintel:ssd_pro_7600pintel:ssd_pro_7600p_firmware

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00362(secure@intel.com)

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00362(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.