CVE-2020-12312
First published: Thu Nov 12 2020(Updated: )
Improper buffer restrictions in the Intel(R) Stratix(R) 10 FPGA firmware provided with the Intel(R) Quartus(R) Prime Pro software before version 20.2 may allow an unauthenticated user to potentially enable escalation of privilege via physical access.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Intel Quartus Prime Pro | <20.2 | |
| Intel Stratix 10 Fpga Firmware | ||
| Intel Stratix 10 Fpga |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2020-12312?
CVE-2020-12312 is a vulnerability in the Intel(R) Stratix(R) 10 FPGA firmware provided with the Intel(R) Quartus(R) Prime Pro software before version 20.2.
What is the impact of CVE-2020-12312?
The impact of CVE-2020-12312 is the potential enablement of escalation of privilege via physical access.
Which software versions are affected by CVE-2020-12312?
CVE-2020-12312 affects Intel Quartus Prime Pro software versions up to but excluding 20.2.
Is Intel Stratix 10 Fpga affected by CVE-2020-12312?
No, Intel Stratix 10 Fpga is not affected by CVE-2020-12312.
Where can I find more information about CVE-2020-12312?
You can find more information about CVE-2020-12312 at the Intel Security Center Advisory page: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00388
- collector/nvd-index
- agent/author
- agent/severity
- agent/references
- agent/type
- agent/description
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/intel
- canonical/intel quartus prime pro
- canonical/intel stratix 10 fpga firmware
- canonical/intel stratix 10 fpga