CVE-2020-0599

moderate-risk
Published 2020-11-13

Improper access control in the PMC for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

Do I need to act?

-
0.06% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
6
CVSS 6.7/10 Medium
LOCAL / LOW complexity

Affected Products (20)

Pentium J6425 Firmware
Pentium J4205 Firmware
Pentium J3710 Firmware
Pentium J2900 Firmware
Pentium J2850 Firmware
Pentium N6415 Firmware
Pentium N4200E Firmware
Pentium N4200 Firmware
Pentium N3540 Firmware
Pentium N3530 Firmware
Pentium N3520 Firmware
Pentium N3510 Firmware
Pentium N3700 Firmware
Pentium N3710 Firmware
Celeron J6413 Firmware
Celeron J4125 Firmware
Celeron J4105 Firmware
Celeron J4025 Firmware
Celeron J4005 Firmware
Celeron J3455E Firmware

Affected Vendors

Intel

References (2)

Vendor Advisory https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00360
Vendor Advisory https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00360
48
/ 100
moderate-risk
Severity 21/34 · High
Exploitability 0/34 · Minimal
Exposure 27/34 · High