What is the severity of CVE-2020-24491?

The severity of CVE-2020-24491 is medium, with a CVSS score of 4.4.

Which software is affected by CVE-2020-24491?

CVE-2020-24491 affects some Intel 10th Generation Core Processors supporting SGX, including Intel Core i3, i5, and i7 models.

Where can I find more information about CVE-2020-24491?

You can find more information about CVE-2020-24491 on the Intel Security Center website at the following link: [Intel Security Advisory INTEL-SA-00455](https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00455.html).

Vulnerability/
CVE-2020-24491

medium

4.4

CWE

17/2/2021

4/8/2024

CVE-2020-24491: Input Validation

First published: Wed Feb 17 2021(Updated: )

Debug message containing addresses of memory transactions in some Intel(R) 10th Generation Core Processors supporting SGX may allow a privileged user to potentially enable information disclosure via local access.

Credit: secure@intel.com

Affected Software	Affected Version	How to fix
Intel Core I3	=1000g1
Intel Core I3	=1000g4
Intel Core I3	=1005g1
Intel Core I5	=1030g4
Intel Core I5	=1030g7
Intel Core I5	=1035g1
Intel Core I5	=1035g4
Intel Core I5	=1035g7
Intel Core I7	=1060g7
Intel Core I7	=1065g7

Remedy

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00455.html

Never miss a vulnerability like this again

Reference Links

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00455.html

Frequently Asked Questions

What is CVE-2020-24491?
CVE-2020-24491 is a vulnerability that allows a privileged user to potentially enable information disclosure via local access on some Intel 10th Generation Core Processors supporting SGX.
What is the severity of CVE-2020-24491?
The severity of CVE-2020-24491 is medium, with a CVSS score of 4.4.
Which software is affected by CVE-2020-24491?
CVE-2020-24491 affects some Intel 10th Generation Core Processors supporting SGX, including Intel Core i3, i5, and i7 models.
How can a privileged user potentially enable information disclosure via local access in CVE-2020-24491?
A privileged user can potentially enable information disclosure by exploiting the debug message containing addresses of memory transactions in the affected Intel 10th Generation Core Processors.
Where can I find more information about CVE-2020-24491?
You can find more information about CVE-2020-24491 on the Intel Security Center website at the following link: [Intel Security Advisory INTEL-SA-00455](https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00455.html).

collector/nvd-index
agent/weakness
agent/severity
agent/references
agent/author
agent/type
agent/event
agent/remedy
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
agent/tags
agent/description
collector/mitre-cve
source/MITRE
vendor/intel
canonical/intel core i3
version/intel core i3/1000g1
version/intel core i3/1000g4
version/intel core i3/1005g1
canonical/intel core i5
version/intel core i5/1030g4
version/intel core i5/1030g7
version/intel core i5/1035g1
version/intel core i5/1035g4
version/intel core i5/1035g7
canonical/intel core i7
version/intel core i7/1060g7
version/intel core i7/1065g7

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.