V
Scaner-VS
ENRU
HomeCatalogSourcesCWECAPECATT&CKMitigationsProductsVendorsDocs
Back to catalog
CVE-2020-0529
CVE
High

Improper initialization in BIOS firmware for 8th, 9th and 10th Generation Intel(R) Core(TM) Processor families may allow an unauthenticated…

CVSS
7.8
High
EPSS
0.00
p26
Published
2020-01-01
Updated
2020-01-01
Description

Improper initialization in BIOS firmware for 8th, 9th and 10th Generation Intel(R) Core(TM) Processor families may allow an unauthenticated user to potentially enable escalation of privilege via local access.

Tags · CWE
CWE-665
CAPEC-26
CAPEC-29
Affected products
Core_i5-7200u_firmwareCore_i5-7260u_firmwareCore_i5-7267u_firmwareCore_i5-7287u_firmwareCore_i5-7300hq_firmwareCore_i5-7300u_firmwareCore_i5-7360u_firmwareCore_i5-7400_firmwareCore_i5-7400t_firmwareCore_i5-7440eq_firmwareCore_i5-7440hq_firmwareCore_i5-7442eq_firmwareCore_i5-7500_firmwareCore_i5-7500t_firmwareCore_i5-7600_firmwareCore_i5-7600k_firmwareCore_i5-7600t_firmwareCore_i5-7y54_firmwareCore_i5-7y57_firmwareCore_i7+8700_firmware
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Timeline
2020-01-01
Published
2020-01-01
Updated
CVSS 3.1 breakdown
Attack Vector
AV: L
Local (L)
Attack Complexity
AC: L
Low (L)
Privileges Required
PR: L
Low (L)
User Interaction
UI: N
None (N)
Scope
S: U
Unchanged (U)
Confidentiality Impact
C: H
High (H)
Integrity Impact
I: H
High (H)
Availability Impact
A: H
High (H)
Exploit indicators
EPSS
0.003 · p26
Known exploited (KEV)
No
Known exploits — Сканер-ВС
No Сканер-ВС checks registered for this vulnerability yet.
Affected products
Intel
Core I7 8700Core I7 8700kCore I7 8700tCore I7-10510uCore I7-8706gCore I7 8500yCore I7 10510yCore I7-10710uCore I7-8705gCore I7-8709g+146
ProductVendorStatus
core_i5-7200u_firmware*Tracked
core_i5-7260u_firmware*Tracked
core_i5-7267u_firmware*Tracked
core_i5-7287u_firmware*Tracked
core_i5-7300hq_firmware*Tracked
core_i5-7300u_firmware*Tracked
core_i5-7360u_firmware*Tracked
core_i5-7400_firmware*Tracked
core_i5-7400t_firmware*Tracked
core_i5-7440eq_firmware*Tracked
core_i5-7440hq_firmware*Tracked
core_i5-7442eq_firmware*Tracked
core_i5-7500_firmware*Tracked
core_i5-7500t_firmware*Tracked
core_i5-7600_firmware*Tracked
core_i5-7600k_firmware*Tracked
core_i5-7600t_firmware*Tracked
core_i5-7y54_firmware*Tracked
core_i5-7y57_firmware*Tracked
core_i7+8700_firmware*Tracked
Showing first 20 of 80
Source databases
CVE
Related vulnerabilities
BDU:2020-04392