CVE-2020-24513: Infoleak
First published: Thu May 20 2021(Updated: )
Domain-bypass transient execution vulnerability in some Intel Atom(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| debian/intel-microcode | 3.20220510.1~deb10u1 3.20230808.1~deb10u1 3.20230808.1~deb11u1 3.20230808.1~deb12u1 3.20230808.1 | |
| Intel Atom C3308 Firmware | ||
| Intel Atom C3336 Firmware | ||
| Intel Atom C3338 Firmware | ||
| Intel Atom C3338 | ||
| Intel Atom C3436L Firmware | ||
| Intel Atom C3508 Firmware | ||
| Intel Atom C3538 Firmware | ||
| Intel Atom C3558 Firmware | ||
| Intel Atom C3558R Firmware | ||
| Intel Atom C3558 | ||
| Intel Atom C3708 Firmware | ||
| Intel Atom C3750 Firmware | ||
| Intel Atom C3758 Firmware | ||
| Intel Atom C3758 Firmware | ||
| Intel Atom C3808 Firmware | ||
| Intel Atom C3830 Firmware | ||
| Intel Atom C3850 Firmware | ||
| Intel Atom C3858 Firmware | ||
| Intel Atom C3950 Firmware | ||
| Intel Atom C3955 Firmware | ||
| Intel Atom C3958 Firmware | ||
| Intel Atom P5942B Firmware | ||
| Intel Atom x5-A3930 Firmware for Windows | ||
| Intel Atom x5-A3940 Firmware | ||
| Intel Atom X7-a3950 Firmware | ||
| Intel Atom x5-A3960 Firmware | ||
| Intel Atom X6200FE Firmware | ||
| Intel Atom x6211E Firmware | ||
| Intel Atom x6212RE Firmware | ||
| Intel Atom x6413E Firmware | ||
| Intel Atom x6425E | ||
| Intel Atom x6425RE Firmware | ||
| Intel Atom x6427FE Firmware | ||
| Intel Celeron J3355E | ||
| Intel Celeron J3355E Firmware | ||
| Intel Celeron J3455 Firmware | ||
| Intel Celeron J3455 | ||
| Intel Celeron J4005 Firmware | ||
| Intel Celeron J4025 Firmware | ||
| Intel Celeron J4105 Firmware | ||
| Intel Celeron J4125 Firmware | ||
| Intel Celeron J6413 Firmware | ||
| Intel Celeron N3350 | ||
| Intel Celeron N3350E Firmware | ||
| Intel Celeron N3450 Firmware | ||
| Intel Celeron N4000C | ||
| Intel Celeron N4020 Firmware | ||
| Intel Celeron N4100 Firmware | ||
| Intel Celeron n4120 firmware | ||
| Intel Celeron N6211 | ||
| Intel Core i3-L13G4 Firmware | ||
| Intel Core i5-L16G7 Firmware | ||
| Intel Atom P5921B | ||
| Intel Atom P5931B | ||
| Intel Atom P5962B | ||
| Intel Pentium J4205 | ||
| Intel Pentium J6425 Firmware | ||
| Intel Pentium N4200 Firmware | ||
| Intel Pentium N4200E Firmware | ||
| Intel Pentium N6415 Firmware | ||
| Intel Pentium Silver J5005 Firmware | ||
| Intel Pentium Silver J5040 Firmware | ||
| Intel Pentium Silver N5000 | ||
| Intel Pentium Silver N5030 Firmware | ||
| Debian Linux | =9.0 | |
| Debian Linux | =10.0 | |
| Siemens SIMATIC Drive Controller Firmware | ||
| Siemens SIMATIC Drive Controller Firmware | ||
| Siemens SIMATIC ET 200SP Open Controller | <0209_0105 | |
| Siemens SIMATIC ET 200SP Open Controller firmware | ||
| Siemens Simatic IPC127E Firmware | <21.01.07 | |
| Siemens Simatic IPC127E Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://cert-portal.siemens.com/productcert/pdf/ssa-309571.pdf
- https://lists.debian.org/debian-lts-announce/2021/07/msg00022.html
- https://www.debian.org/security/2021/dsa-4934
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00465.html
- https://access.redhat.com/errata/RHSA-2021:2299
- https://access.redhat.com/errata/RHSA-2021:2302
- https://access.redhat.com/errata/RHSA-2021:2300
- https://access.redhat.com/errata/RHSA-2021:2306
- https://access.redhat.com/errata/RHSA-2021:2307
- https://access.redhat.com/errata/RHSA-2021:2308
- https://access.redhat.com/errata/RHSA-2021:2301
- https://access.redhat.com/errata/RHSA-2021:2303
- https://access.redhat.com/errata/RHSA-2021:2304
- https://access.redhat.com/errata/RHSA-2021:2305
- https://access.redhat.com/security/cve/cve-2020-24513
- https://bugzilla.redhat.com/show_bug.cgi?id=1962666
- https://www.cve.org/CVERecord?id=CVE-2020-24513 https://nvd.nist.gov/vuln/detail/CVE-2020-24513
- https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/releases/tag/microcode-20210608
- https://security-tracker.debian.org/tracker/CVE-2020-24513
Parent vulnerabilities
(Appears in the following advisories)
Frequently Asked Questions
What is the vulnerability ID for this Intel Atom processor vulnerability?
The vulnerability ID for this Intel Atom processor vulnerability is CVE-2020-24513.
What is the severity level of CVE-2020-24513?
CVE-2020-24513 has a severity level of medium.
How does CVE-2020-24513 affect Intel Atom processors?
CVE-2020-24513 can reveal supervisor data in the L1 cache and the contents of recent stores on some Intel Atom processors.
Which software versions are affected by CVE-2020-24513?
The affected software versions include debian/intel-microcode:3.20220510.1~deb10u1, debian/intel-microcode:3.20230808.1~deb10u1, debian/intel-microcode:3.20230808.1~deb11u1, debian/intel-microcode:3.20230808.1~deb12u1, and debian/intel-microcode:3.20230808.1.
How can I fix CVE-2020-24513?
To fix CVE-2020-24513, update the intel-microcode package to the recommended versions provided by the vendor.
- collector/redhat-cve
- collector/security-tracker-debian
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2020-24513
- agent/first-publish-date
- agent/type
- agent/author
- agent/weakness
- agent/references
- agent/severity
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/trending
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- package-manager/debian
- vendor/intel
- canonical/intel atom c3308 firmware
- canonical/intel atom c3336 firmware
- canonical/intel atom c3338 firmware
- canonical/intel atom c3338
- canonical/intel atom c3436l firmware
- canonical/intel atom c3508 firmware
- canonical/intel atom c3538 firmware
- canonical/intel atom c3558 firmware
- canonical/intel atom c3558r firmware
- canonical/intel atom c3558
- canonical/intel atom c3708 firmware
- canonical/intel atom c3750 firmware
- canonical/intel atom c3758 firmware
- canonical/intel atom c3808 firmware
- canonical/intel atom c3830 firmware
- canonical/intel atom c3850 firmware
- canonical/intel atom c3858 firmware
- canonical/intel atom c3950 firmware
- canonical/intel atom c3955 firmware
- canonical/intel atom c3958 firmware
- canonical/intel atom p5942b firmware
- canonical/intel atom x5-a3930 firmware for windows
- canonical/intel atom x5-a3940 firmware
- canonical/intel atom x7-a3950 firmware
- canonical/intel atom x5-a3960 firmware
- canonical/intel atom x6200fe firmware
- canonical/intel atom x6211e firmware
- canonical/intel atom x6212re firmware
- canonical/intel atom x6413e firmware
- canonical/intel atom x6425e
- canonical/intel atom x6425re firmware
- canonical/intel atom x6427fe firmware
- canonical/intel celeron j3355e
- canonical/intel celeron j3355e firmware
- canonical/intel celeron j3455 firmware
- canonical/intel celeron j3455
- canonical/intel celeron j4005 firmware
- canonical/intel celeron j4025 firmware
- canonical/intel celeron j4105 firmware
- canonical/intel celeron j4125 firmware
- canonical/intel celeron j6413 firmware
- canonical/intel celeron n3350
- canonical/intel celeron n3350e firmware
- canonical/intel celeron n3450 firmware
- canonical/intel celeron n4000c
- canonical/intel celeron n4020 firmware
- canonical/intel celeron n4100 firmware
- canonical/intel celeron n4120 firmware
- canonical/intel celeron n6211
- canonical/intel core i3-l13g4 firmware
- canonical/intel core i5-l16g7 firmware
- canonical/intel atom p5921b
- canonical/intel atom p5931b
- canonical/intel atom p5962b
- canonical/intel pentium j4205
- canonical/intel pentium j6425 firmware
- canonical/intel pentium n4200 firmware
- canonical/intel pentium n4200e firmware
- canonical/intel pentium n6415 firmware
- canonical/intel pentium silver j5005 firmware
- canonical/intel pentium silver j5040 firmware
- canonical/intel pentium silver n5000
- canonical/intel pentium silver n5030 firmware
- vendor/debian
- canonical/debian linux
- version/debian linux/9.0
- version/debian linux/10.0
- vendor/siemens
- canonical/siemens simatic drive controller firmware
- canonical/siemens simatic et 200sp open controller
- canonical/siemens simatic et 200sp open controller firmware
- canonical/siemens simatic ipc127e firmware