First published: Thu Nov 12 2020(Updated: )
Insecure default variable initialization in some Intel(R) Thunderbolt(TM) DCH drivers for Windows* before version 72 may allow a privileged user to potentially enable information disclosure via local access.
Credit: secure@intel.com
Affected Software | Affected Version | How to fix |
---|---|---|
Intel Thunderbolt Dch Driver | <72 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this Intel Thunderbolt DCH driver vulnerability is CVE-2020-12327.
The title of this vulnerability is 'Insecure default variable initialization in some Intel(R) Thunderbolt(TM) DCH drivers for Windows* b…'
The description of this vulnerability is that insecure default variable initialization in some Intel(R) Thunderbolt(TM) DCH drivers for Windows* before version 72 may allow a privileged user to potentially enable information disclosure via local access.
The severity of CVE-2020-12327 is medium with a CVSS score of 4.4.
The affected software for this vulnerability is Intel Thunderbolt DCH driver version up to (but not including) 72 on Windows.
Yes, Intel has released a fix for CVE-2020-12327. Please refer to the Intel Security Advisory for more information.