CVE-2020-8698

Reference Links

• https://www.cve.org/CVERecord?id=CVE-2020-8698 https://nvd.nist.gov/vuln/detail/CVE-2020-8698 https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00381.html
• https://bugzilla.redhat.com/show_bug.cgi?id=1890356
• https://access.redhat.com/errata/RHSA-2020:5084
• https://access.redhat.com/errata/RHSA-2020:5189
• https://access.redhat.com/errata/RHSA-2020:5184
• https://access.redhat.com/errata/RHSA-2020:5083
• https://access.redhat.com/errata/RHSA-2021:3028
• https://access.redhat.com/errata/RHSA-2020:5188
• https://access.redhat.com/errata/RHSA-2021:3323
• https://access.redhat.com/errata/RHSA-2020:5183
• https://access.redhat.com/errata/RHSA-2021:3322
• https://access.redhat.com/errata/RHSA-2020:5182
• https://access.redhat.com/errata/RHSA-2021:3255
• https://access.redhat.com/errata/RHSA-2021:3317
• https://access.redhat.com/errata/RHSA-2020:5181
• https://access.redhat.com/errata/RHSA-2020:5190
• https://access.redhat.com/errata/RHSA-2021:3029
• https://access.redhat.com/errata/RHSA-2020:5085
• https://access.redhat.com/errata/RHSA-2021:3027
• https://access.redhat.com/errata/RHSA-2020:5186
• https://access.redhat.com/errata/RHSA-2020:5369
• https://access.redhat.com/errata/RHSA-2021:3176
• https://access.redhat.com/errata/RHSA-2020:5185
• https://access.redhat.com/errata/RHSA-2021:3364
• https://access.redhat.com/security/cve/cve-2020-8698
• https://cert-portal.siemens.com/productcert/pdf/ssa-678983.pdf
• https://lists.debian.org/debian-lts-announce/2021/02/msg00007.html
• https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MAAGIK5CXKBPGY3R4UR5VO56M7MKLZ43/
• https://security.netapp.com/advisory/ntap-20201113-0006/
• https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00381
• https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00381.html
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MAAGIK5CXKBPGY3R4UR5VO56M7MKLZ43/

Parent vulnerabilities

(Appears in the following advisories)

• RHSA-2020:5084
• RHSA-2020:5189
• RHSA-2020:5184
• RHSA-2020:5083
• RHSA-2021:3028
• RHSA-2020:5188
• RHSA-2021:3323
• RHSA-2020:5183
• RHSA-2021:3322
• RHSA-2020:5182
• RHSA-2021:3255
• RHSA-2021:3317
• RHSA-2020:5181
• RHSA-2020:5190
• RHSA-2021:3029
• RHSA-2020:5085
• RHSA-2021:3027
• RHSA-2020:5186
• RHSA-2020:5369
• RHSA-2021:3176
• RHSA-2020:5185
• RHSA-2021:3364

Frequently Asked Questions

• What is CVE-2020-8698?

  CVE-2020-8698 is a vulnerability in the CPU microarchitecture that allows a local attacker to infer internal architectural state from previous executions on the CPU.

• Which software are affected by CVE-2020-8698?

  Intel Microcode, NetApp Clustered Data ONTAP, Netapp Hci Compute Node Bios, Netapp Hci Storage Node Bios, Netapp Solidfire Bios, Fedoraproject Fedora, Debian Debian Linux, Siemens Simatic Field Pg M5 Firmware, Siemens Simatic Field Pg M6 Firmware, Siemens Simatic Ipc427e Firmware, Siemens Simatic Ipc477e Firmware, Siemens Simatic Ipc477e Pro Firmware, Siemens Simatic Ipc627e Firmware, Siemens Simatic Ipc647e Firmware, Siemens Simatic Ipc677e Firmware, Siemens Simatic Ipc847e Firmware, Siemens Simatic Itp1000 Firmware are affected by CVE-2020-8698.

• What is the severity of CVE-2020-8698?

  CVE-2020-8698 has a severity score of 5.5 (medium).

• Is Intel Core I3-1000g1 vulnerable to CVE-2020-8698?

  No, Intel Core I3-1000g1 is not vulnerable to CVE-2020-8698.

• How can I fix CVE-2020-8698?

  To fix CVE-2020-8698, it is recommended to apply the necessary patches and microcode updates provided by the software vendors.