high
7.8
CWE
125
Advisory Published
Updated

CVE-2020-8672

First published: Tue Feb 02 2021(Updated: )

Out of bound read in BIOS firmware for 8th, 9th Generation Intel(R) Core(TM), Intel(R) Celeron(R) Processor 4000 Series Processors may allow an unauthenticated user to potentially enable elevation of privilege or denial of service via local access.

Credit: secure@intel.com

Affected SoftwareAffected VersionHow to fix
Intel BIOS Firmware
Intel Celeron 4205U
Intel Celeron 4305U Firmware
Intel Celeron 4305UE Firmware
Intel Core i3-8100
Intel Core i3-8100F
Intel Core i3-8100T
Intel Core i3-8300
Intel Core i3-8300T
Intel Core i3-8350K
Intel Core i3-9100
Intel Core i3-9100F
Intel Core i3-9100T
Intel Core i3-9300
Intel Core i3-9300T
Intel Core i3-9320
Intel Core i3-9350K
Intel Core i3-9350KF
Intel Core i5-8400
Intel Core i5-8400T
Intel Core i5-8500
Intel Core i5-8500T
Intel Core i5-8600
Intel Core i5-8600K
Intel Core i5-8600T
Intel Core i5-9400
Intel Core i5-9400F
Intel Core i5-9400T
Intel Core i5-9500
Intel Core i5-9500F
Intel Core i5-9500T
Intel Core i5-9600
Intel Core i5-9600K
Intel Core i5-9600KF
Intel Core i5-9600T
Intel Core i7-8086K
Intel Core i7-8700
Intel Core i7-8700K
Intel Core i7-8700T
Intel Core i7-9700F
Intel Core i7-9700F
Intel Core i7-9700K
Intel Core i7-9700KF
Intel Core i7-9700T Firmware
Intel Core i9-9900
Intel Core i9-9900KF
Intel Core i9-9900KF
Intel Core i9-9900KS
Intel Core i9-9900T

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is CVE-2020-8672?

    CVE-2020-8672 is a vulnerability in the BIOS firmware for 8th and 9th Generation Intel(R) Core(TM) and Intel(R) Celeron(R) Processors, which may allow an unauthenticated user to potentially enable elevation of privilege or denial of service via local access.

  • Who is affected by CVE-2020-8672?

    The vulnerability affects Intel BIOS firmware for 8th and 9th Generation Intel(R) Core(TM) and Intel(R) Celeron(R) Processors.

  • What is the severity of CVE-2020-8672?

    The severity of CVE-2020-8672 is high, with a CVSS score of 7.8.

  • How can an unauthenticated user exploit CVE-2020-8672?

    An unauthenticated user can potentially exploit CVE-2020-8672 by gaining local access to the affected system.

  • Where can I find more information about CVE-2020-8672?

    You can find more information about CVE-2020-8672 in the advisory published by Intel: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00356.html

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203