CVE-2020-0587

CVSS V2 Medium 4.6 CVSS V3 Medium 6.7
Description
Improper conditions check in BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
Overview
  • CVE ID
  • CVE-2020-0587
  • Assigner
  • secure@intel.com
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2020-11-12T18:15:12
  • Last Modified Date
  • 2020-11-19T02:43:30
Weakness Enumerations
CWE URL
CWE-754 http://cwe.mitre.org/data/definitions/754.html
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
AND
cpe:2.3:o:intel:bios:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:intel:xeon_bronze_3204:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_bronze_3206r:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_5215:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_5215l:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_5217:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_5218:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_5218b:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_5218n:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_5218r:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_5218t:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_5220:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_5220r:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_5220s:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_5220t:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_5222:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6208u:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6209u:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6210u:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6212u:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6222v:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6226:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6226r:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6230:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6230n:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6230r:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6230t:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6234:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6238:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6238l:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6238r:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6238t:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6240:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6240l:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6240r:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6240y:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6242:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6242r:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6244:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6246:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6246r:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6248:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6248r:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6250:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6250l:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6252:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6252n:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6254:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6256:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6258r:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_gold_6262v:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_platinum_8253:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_platinum_8256:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_platinum_8260l:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_platinum_8260y:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_platinum_8268:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_platinum_8270:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_platinum_8276:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_platinum_8276l:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_platinum_8280:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_platinum_8280l:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_platinum_9221:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_platinum_9222:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_platinum_9242:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_platinum_9282:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_silver_4208:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_silver_4209t:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_silver_4210:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_silver_4210r:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_silver_4210t:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_silver_4214:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_silver_4214r:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_silver_4214y:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_silver_4215:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_silver_4215r:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:xeon_silver_4216:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:bios:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:intel:core_i5-7640x:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i7-3820:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i7-3920xm:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i7-3930k:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i7-3940xm:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i7-3960x:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i7-3970x:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i7-4820k:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i7-4930k:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i7-4930mx:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i7-4940mx:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i7-4960x:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i7-5820k:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i7-5930k:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i7-5960x:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i7-6800k:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i7-6850k:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i7-6900k:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i7-6950x:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i7-7740x:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i7-7800x:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i7-7820x:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i7-9800x:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i9-10900x:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i9-10920x:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i9-10940x:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i9-10980xe:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i9-7900x:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i9-7920x:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i9-7940x:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i9-7960x:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i9-7980xe:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i9-9820x:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i9-9900x:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i9-9920x:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i9-9940x:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i9-9960x:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:intel:core_i9-9980xe:-:*:*:*:*:*:*:* 0 OR
CVSS Version 2
  • Version
  • 2.0
  • Vector String
  • AV:L/AC:L/Au:N/C:P/I:P/A:P
  • Access Vector
  • LOCAL
  • Access Compatibility
  • LOW
  • Authentication
  • NONE
  • Confidentiality Impact
  • PARTIAL
  • Integrity Impact
  • PARTIAL
  • Availability Impact
  • PARTIAL
  • Base Score
  • 4.6
  • Severity
  • MEDIUM
  • Exploitability Score
  • 3.9
  • Impact Score
  • 6.4
CVSS Version 3
  • Version
  • 3.1
  • Vector String
  • CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
  • Attack Vector
  • LOCAL
  • Attack Compatibility
  • LOW
  • Privileges Required
  • HIGH
  • User Interaction
  • NONE
  • Scope
  • UNCHANGED
  • Confidentiality Impact
  • HIGH
  • Availability Impact
  • HIGH
  • Base Score
  • 6.7
  • Base Severity
  • MEDIUM
  • Exploitability Score
  • 0.8
  • Impact Score
  • 5.9
References
Reference URL Reference Tags
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00358 Vendor Advisory
https://security.netapp.com/advisory/ntap-20201113-0001/ Third Party Advisory
Sources
Source Name Source URL
NIST https://nvd.nist.gov/vuln/detail/CVE-2020-0587
MITRE https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0587
History
Created Old Value New Value Data Type Notes
2022-05-10 16:19:34 Added to TrackCVE
2022-12-05 16:37:52 2020-11-12T18:15Z 2020-11-12T18:15:12 CVE Published Date updated
2022-12-05 16:37:52 2020-11-19T02:43:30 CVE Modified Date updated
2022-12-05 16:37:52 Analyzed Vulnerability Status updated