CVE-2020-12290
First published: Wed Jun 09 2021(Updated: )
Improper access control in some Intel(R) Thunderbolt(TM) controllers may allow an authenticated user to potentially enable denial of service via local access.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Intel jhl6240 Thunderbolt 3 | <21 | |
| Intel JHL6240 Thunderbolt 3 | ||
| Intel JHL6340 Firmware | <46 | |
| Intel JHL6340 | ||
| Intel JHL6540 Thunderbolt 3 | <46 | |
| Intel JHL6540 Thunderbolt 3 | ||
| Intel JHL7040 Thunderbolt 3 Retimer Firmware | <22 | |
| Intel JHL7040 Thunderbolt 3 Retimer Firmware | ||
| Intel JHL7340 Firmware | <60 | |
| Intel JHL7340 | ||
| Intel JHL7440 Thunderbolt 3 | <60 | |
| Intel JHL7440 | ||
| Intel Jhl7540 Firmware | <60 | |
| Intel Jhl7540 Thunderbolt 3 | ||
| Intel JHL8010R USB Retimer | <41 | |
| Intel JHL8010r USB Retimer Firmware | ||
| Intel DSL5320 Thunderbolt 2 | ||
| Intel DSL5320 Thunderbolt 2 Firmware | ||
| Intel DSL5520 Thunderbolt 2 Firmware | ||
| Intel DSL5520 Thunderbolt 2 Firmware | ||
| Intel DSL6340 Thunderbolt 3 firmware | ||
| Intel DSL6340 Thunderbolt 3 firmware | ||
| Intel DSL6540 Thunderbolt 3 | ||
| Intel DSL6540 Thunderbolt 3 | ||
| Intel JHL8040R Thunderbolt 4 Retimer | <41 | |
| Intel JHL8040R Thunderbolt 4 Retimer Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2020-12290?
CVE-2020-12290 is a vulnerability related to improper access control in some Intel Thunderbolt controllers that may allow an authenticated user to potentially enable denial of service via local access.
What is the severity of CVE-2020-12290?
The severity of CVE-2020-12290 is medium, with a severity value of 5.5.
Which software versions are affected by CVE-2020-12290?
CVE-2020-12290 affects Intel Jhl6240 Thunderbolt 3 Firmware (up to version 21), Intel Jhl6340 Thunderbolt 3 Firmware (up to version 46), Intel Jhl6540 Thunderbolt 3 Firmware (up to version 46), Intel Jhl7040 Thunderbolt 3 Retimer Firmware (up to version 22), Intel Jhl7340 Thunderbolt 3 Firmware (up to version 60), Intel Jhl7440 Thunderbolt 3 Firmware (up to version 60), Intel Jhl7540 Thunderbolt 3 Firmware (up to version 60), and Intel Jhl8010r Usb Retimer Firmware (up to version 41).
How can an authenticated user potentially enable denial of service via local access?
Details on how an authenticated user can potentially enable denial of service via local access are provided in the advisory linked to CVE-2020-12290.
Where can I find more information about CVE-2020-12290?
You can find more information about CVE-2020-12290 in the advisory provided by Intel.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/references
- agent/author
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/intel
- canonical/intel jhl6240 thunderbolt 3
- canonical/intel jhl6340 firmware
- canonical/intel jhl6340
- canonical/intel jhl6540 thunderbolt 3
- canonical/intel jhl7040 thunderbolt 3 retimer firmware
- canonical/intel jhl7340 firmware
- canonical/intel jhl7340
- canonical/intel jhl7440 thunderbolt 3
- canonical/intel jhl7440
- canonical/intel jhl7540 firmware
- canonical/intel jhl7540 thunderbolt 3
- canonical/intel jhl8010r usb retimer
- canonical/intel jhl8010r usb retimer firmware
- canonical/intel dsl5320 thunderbolt 2
- canonical/intel dsl5320 thunderbolt 2 firmware
- canonical/intel dsl5520 thunderbolt 2 firmware
- canonical/intel dsl6340 thunderbolt 3 firmware
- canonical/intel dsl6540 thunderbolt 3
- canonical/intel jhl8040r thunderbolt 4 retimer
- canonical/intel jhl8040r thunderbolt 4 retimer firmware