Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
2.1
CVSSv2

CVE-2020-8698

Published: 12/11/2020 Updated: 07/11/2023
CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9
CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8
VMScore: 187
Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N
Subscribe to Microcode

Vulnerability Summary

Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

intel microcode -

netapp clustered data ontap -

netapp hci_compute_node_bios -

netapp hci_storage_node_bios -

netapp solidfire_bios -

fedoraproject fedora 31

debian debian linux 9.0

siemens simatic_field_pg_m5_firmware

siemens simatic_field_pg_m6_firmware

siemens simatic_ipc427e_firmware

siemens simatic_ipc477e_firmware

siemens simatic_ipc477e_pro_firmware

siemens simatic_ipc627e_firmware

siemens simatic_ipc647e_firmware

siemens simatic_ipc677e_firmware

siemens simatic_ipc847e_firmware

siemens simatic_itp1000_firmware

Vendor Advisories

Red Hat: Moderate: microcode_ctl security, bug fix and enhancement update
Synopsis Moderate: microcode_ctl security, bug fix and enhancement update Type/Severity Security Advisory: Moderate Topic An update for microcode_ctl is now available for Red Hat Enterprise Linux 72 Advanced Update SupportRed Hat Product Security has rated this update as having a security impact of Modera ...
Red Hat: Moderate: microcode_ctl security, bug fix and enhancement update
Synopsis Moderate: microcode_ctl security, bug fix and enhancement update Type/Severity Security Advisory: Moderate Topic An update for microcode_ctl is now available for Red Hat Enterprise Linux 66 Advanced Update SupportRed Hat Product Security has rated this update as having a security impact ofModerat ...
Red Hat: Moderate: microcode_ctl security, bug fix and enhancement update
Synopsis Moderate: microcode_ctl security, bug fix and enhancement update Type/Severity Security Advisory: Moderate Topic An update for microcode_ctl is now available for Red Hat enterprise Linux 81Extended Update SupportRed Hat Product Security has rated this update as having a security impact ofModerate ...
Red Hat: Moderate: microcode_ctl security, bug fix and enhancement update
Synopsis Moderate: microcode_ctl security, bug fix and enhancement update Type/Severity Security Advisory: Moderate Topic An update for microcode_ctl is now available for Red Hat Enterprise Linux 80Update Services for SAP SolutionsRed Hat Product Security has rated this update as having a security impact ...
Red Hat: Moderate: microcode_ctl security, bug fix and enhancement update
Synopsis Moderate: microcode_ctl security, bug fix and enhancement update Type/Severity Security Advisory: Moderate Topic An update for microcode_ctl is now available for Red Hat Enterprise Linux 82 Extended Update SupportRed Hat Product Security has rated this update as having a security impact of Modera ...
Red Hat: Moderate: microcode_ctl security, bug fix and enhancement update
Synopsis Moderate: microcode_ctl security, bug fix and enhancement update Type/Severity Security Advisory: Moderate Topic An update for microcode_ctl is now available for Red Hat Enterprise Linux 76 Extended Update SupportRed Hat Product Security has rated this update as having a security impact of Modera ...
Red Hat: Moderate: microcode_ctl security, bug fix, and enhancement update
Synopsis Moderate: microcode_ctl security, bug fix, and enhancement update Type/Severity Security Advisory: Moderate Topic An update for microcode_ctl is now available for Red at Enterprise Linux 77 Extended Update SupportRed Hat Product Security has rated this update as having a security impact of Modera ...
Red Hat: Moderate: microcode_ctl security, bug fix and enhancement update
Synopsis Moderate: microcode_ctl security, bug fix and enhancement update Type/Severity Security Advisory: Moderate Topic An update for microcode_ctl is now available for Red Hat Enterprise Linux 65 Advanced Update SupportRed Hat Product Security has rated this update as having a security impact ofModerat ...
Red Hat: Moderate: microcode_ctl security, bug fix and enhancement update
Synopsis Moderate: microcode_ctl security, bug fix and enhancement update Type/Severity Security Advisory: Moderate Topic An update for microcode_ctl is now available for Red Hat Enterprise Linux 73 Advanced Update SupportRed Hat Product Security has rated this update as having a security impact of Modera ...
Red Hat: Moderate: microcode_ctl security, bug fix, and enhancement update
Synopsis Moderate: microcode_ctl security, bug fix, and enhancement update Type/Severity Security Advisory: Moderate Topic An update for microcode_ctl is now available for Red Hat Enterprise Linux 6Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerabilit ...
Red Hat: Moderate: microcode_ctl security, bug fix and enhancement update
Synopsis Moderate: microcode_ctl security, bug fix and enhancement update Type/Severity Security Advisory: Moderate Topic An update for microcode_ctl is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability ...
Red Hat: Moderate: microcode_ctl security, bug fix, and enhancement update
Synopsis Moderate: microcode_ctl security, bug fix, and enhancement update Type/Severity Security Advisory: Moderate Topic An update for microcode_ctl is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerabilit ...
Red Hat: Moderate: microcode_ctl security, bug fix and enhancement update
Synopsis Moderate: microcode_ctl security, bug fix and enhancement update Type/Severity Security Advisory: Moderate Topic An update for microcode_ctl is now available for Red Hat Enterprise Linux 74 Advances Update SupportRed Hat Product Security has rated this update as having a security impact of Modera ...
Arch Linux Issues:
Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access ...
Citrix Security Bulletins: Citrix Hypervisor Security Update
Description of Problem A security issue has been identified in Citrix Hypervisor that may allow privileged code running in a guest VM to infer details of some computations occurring in other VMs on the host  This may, for example, be used to infer a secret encryption key used by a web server in a different VM This issue has the following CVE ...
HP: SUPPORT COMMUNICATION- SECURITY BULLETIN HPSBHF03705 rev. 6 - BIOS November 2020 Security Updates
Intel® has informed HP of potential security vulnerabilities identified in Intel® Processors, BIOS Firmware for some Intel® Processors, Intel® Running Average Power Limit (RAPL) Interface, and Intel BIOS platform sample code for some Intel® Processors which may allow escalation of privilege, denial of service, and/or information disclosure HP ...
HP: SUPPORT COMMUNICATION- SECURITY BULLETIN HPSBHF03705 rev. 6 - BIOS November 2020 Security Updates
Intel® has informed HP of potential security vulnerabilities identified in Intel® Processors, BIOS Firmware for some Intel® Processors, Intel® Running Average Power Limit (RAPL) Interface, and Intel BIOS platform sample code for some Intel® Processors which may allow escalation of privilege, denial of service, and/or information disclosure HP ...

ICS Advisories

https://ics-cert.us-cert.gov/advisories/44fd01d464e373b03b740d8229f60f94
Siemens Industrial PCs and CNC devices

References

CWE-668https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00381https://security.netapp.com/advisory/ntap-20201113-0006/https://lists.debian.org/debian-lts-announce/2021/02/msg00007.htmlhttps://cert-portal.siemens.com/productcert/pdf/ssa-678983.pdfhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MAAGIK5CXKBPGY3R4UR5VO56M7MKLZ43/https://nvd.nist.govhttps://access.redhat.com/errata/RHSA-2020:5188https://www.cisa.gov/uscert/ics/advisories/icsa-22-132-05https://www.cisa.gov/news-events/ics-advisories/icsa-22-132-05https://support.hp.com/us-en/document/c06962236
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977IMAPlocal usersCVE-2024-32038CVE-2023-49963CVE-2023-22869CVE-2024-31497localCVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook