CVE-2020-0543
high-risk
Published 2020-06-15
Incomplete cleanup from specific special register read operations in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
Do I need to act?
-
0.48% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
5
CVSS 5.5/10
Medium
LOCAL
/ LOW complexity
Affected Products (20)
Celeron 1000M
Celeron 1005M
Celeron 1007U
Celeron 1017U
Celeron 1019Y
Celeron 1020E
Celeron 1020M
Celeron 1037U
Celeron 1047Ue
Celeron 2955U
Celeron 2957U
Celeron 2970M
Celeron 2980U
Celeron 2981U
Celeron 3755U
Celeron 3765U
Celeron 3855U
Celeron 3865U
Celeron 3955U
Celeron 3965U
References (38)
Third Party Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-534763.pdf
Third Party Advisory
https://kc.mcafee.com/corporate/index?page=content&id=SB10318
Third Party Advisory
https://usn.ubuntu.com/4385-1/
Third Party Advisory
https://usn.ubuntu.com/4387-1/
Third Party Advisory
https://usn.ubuntu.com/4388-1/
Third Party Advisory
https://usn.ubuntu.com/4389-1/
Third Party Advisory
https://usn.ubuntu.com/4390-1/
Third Party Advisory
https://usn.ubuntu.com/4391-1/
Third Party Advisory
https://usn.ubuntu.com/4392-1/
Third Party Advisory
https://usn.ubuntu.com/4393-1/
and 18 more references
53
/ 100
high-risk
Severity
18/34 · Moderate
Exploitability
2/34 · Minimal
Exposure
33/34 · Critical