First published: Thu Nov 12 2020(Updated: )
Insufficient access control in the firmware of the Intel(R) Ethernet 700 Series Controllers before version 7.3 may allow a privileged user to potentially enable escalation of privilege and/or denial of service via local access.
Credit: secure@intel.com
Affected Software | Affected Version | How to fix |
---|---|---|
Intel V710-at2 Firmware | <7.3 | |
Intel V710-at2 | ||
Intel X710-tm4 Firmware | <7.3 | |
Intel X710-tm4 | ||
Intel X710-at2 Firmware | <7.3 | |
Intel X710-at2 | ||
Intel Xxv710-am2 Firmware | <7.3 | |
Intel Xxv710-am2 | ||
Intel Xxv710-am1 Firmware | <7.3 | |
Intel Xxv710-am1 | ||
Intel X710-bm2 Firmware | <7.3 | |
Intel X710-bm2 | ||
Intel Xl710-bm2 Firmware | <7.3 | |
Intel Xl710-bm2 | ||
Intel Xl710-bm1 Firmware | <7.3 | |
Intel Xl710-bm1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-8692 is a vulnerability in the firmware of the Intel Ethernet 700 Series Controllers that may allow a privileged user to enable escalation of privilege and/or denial of service via local access.
CVE-2020-8692 has a severity score of 6.7, which is considered medium.
The Intel V710-at2 Firmware, Intel X710-tm4 Firmware, Intel X710-at2 Firmware, Intel Xxv710-am2 Firmware, Intel Xxv710-am1 Firmware, Intel X710-bm2 Firmware, Intel Xl710-bm2 Firmware, and Intel Xl710-bm1 Firmware versions up to and excluding 7.3 are affected by CVE-2020-8692.
A privileged user can potentially enable escalation of privilege and/or denial of service via local access in the Intel Ethernet 700 Series Controllers firmware.
You can find more information about CVE-2020-8692 on the Intel Security Center Advisory page: [Intel Security Advisory](https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00380)