CVE-2020-8742

CVSS V2 Medium 4.6 CVSS V3 Medium 6.7
Description
Improper input validation in the firmware for Intel(R) NUCs may allow a privileged user to potentially enable escalation of privilege via local access.
Overview
  • CVE ID
  • CVE-2020-8742
  • Assigner
  • secure@intel.com
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2020-08-13T03:15:16
  • Last Modified Date
  • 2020-08-19T18:13:36
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
AND
cpe:2.3:o:intel:nuc8i7behga_firmware:*:*:*:*:*:*:*:* 1 OR becfl357.86a
cpe:2.3:h:intel:nuc8i7behga:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc8i7bekqa_firmware:*:*:*:*:*:*:*:* 1 OR becfl357.86a
cpe:2.3:h:intel:nuc8i7bekqa:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc8i3behfa_firmware:*:*:*:*:*:*:*:* 1 OR becfl357.86a
cpe:2.3:h:intel:nuc8i3behfa:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc8i5behfa_firmware:*:*:*:*:*:*:*:* 1 OR becfl357.86a
cpe:2.3:h:intel:nuc8i5behfa:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc8i5bekpa_firmware:*:*:*:*:*:*:*:* 1 OR becfl357.86a
cpe:2.3:h:intel:nuc8i5bekpa:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc8i3beh_firmware:*:*:*:*:*:*:*:* 1 OR becfl357.86a
cpe:2.3:h:intel:nuc8i3beh:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc8i3behs_firmware:*:*:*:*:*:*:*:* 1 OR becfl357.86a
cpe:2.3:h:intel:nuc8i3behs:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc8i3bek_firmware:*:*:*:*:*:*:*:* 1 OR becfl357.86a
cpe:2.3:h:intel:nuc8i3bek:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc8i5beh_firmware:*:*:*:*:*:*:*:* 1 OR becfl357.86a
cpe:2.3:h:intel:nuc8i5beh:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc8i5behs_firmware:*:*:*:*:*:*:*:* 1 OR becfl357.86a
cpe:2.3:h:intel:nuc8i5behs:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc8i5bek_firmware:*:*:*:*:*:*:*:* 1 OR becfl357.86a
cpe:2.3:h:intel:nuc8i5bek:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc8i7beh_firmware:*:*:*:*:*:*:*:* 1 OR becfl357.86a
cpe:2.3:h:intel:nuc8i7beh:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc8i7bek_firmware:*:*:*:*:*:*:*:* 1 OR becfl357.86a
cpe:2.3:h:intel:nuc8i7bek:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:cd1c32gk_firmware:*:*:*:*:*:*:*:* 1 OR gkaplcpx.86a
cpe:2.3:h:intel:cd1c32gk:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:cd1c64gk_firmware:*:*:*:*:*:*:*:* 1 OR gkaplcpx.86a
cpe:2.3:h:intel:cd1c64gk:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:cd1p64gk_firmware:*:*:*:*:*:*:*:* 1 OR gkaplcpx.86a
cpe:2.3:h:intel:cd1p64gk:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc8i7hnkqc_firmware:*:*:*:*:*:*:*:* 1 OR hnkbli70.86a
cpe:2.3:h:intel:nuc8i7hnkqc:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc8i7hvkva_firmware:*:*:*:*:*:*:*:* 1 OR hnkbli70.86a
cpe:2.3:h:intel:nuc8i7hvkva:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc8i7hvkvaw_firmware:*:*:*:*:*:*:*:* 1 OR hnkbli70.86a
cpe:2.3:h:intel:nuc8i7hvkvaw:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc8i7hnk_firmware:*:*:*:*:*:*:*:* 1 OR hnkbli70.86a
cpe:2.3:h:intel:nuc8i7hnk:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc8i7hvk_firmware:*:*:*:*:*:*:*:* 1 OR hnkbli70.86a
cpe:2.3:h:intel:nuc8i7hvk:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7i7dnbe_firmware:*:*:*:*:*:*:*:* 1 OR dnkbli7v.86a
cpe:2.3:h:intel:nuc7i7dnbe:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7i7dnhe_firmware:*:*:*:*:*:*:*:* 1 OR dnkbli7v.86a
cpe:2.3:h:intel:nuc7i7dnhe:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7i7dnke_firmware:*:*:*:*:*:*:*:* 1 OR dnkbli7v.86a
cpe:2.3:h:intel:nuc7i7dnke:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7i5dnkpc_firmware:*:*:*:*:*:*:*:* 1 OR dnkbli5v.86a
cpe:2.3:h:intel:nuc7i5dnkpc:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7i5dnbe_firmware:*:*:*:*:*:*:*:* 1 OR dnkbli5v.86a
cpe:2.3:h:intel:nuc7i5dnbe:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7i5dnhe_firmware:*:*:*:*:*:*:*:* 1 OR dnkbli5v.86a
cpe:2.3:h:intel:nuc7i5dnhe:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7i5dnke_firmware:*:*:*:*:*:*:*:* 1 OR dnkbli5v.86a
cpe:2.3:h:intel:nuc7i5dnke:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7i3dnhnc_firmware:*:*:*:*:*:*:*:* 1 OR dnkbli30.86a
cpe:2.3:h:intel:nuc7i3dnhnc:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7i3dnktc_firmware:*:*:*:*:*:*:*:* 1 OR dnkbli30.86a
cpe:2.3:h:intel:nuc7i3dnktc:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7i3dnbe_firmware:*:*:*:*:*:*:*:* 1 OR dnkbli30.86a
cpe:2.3:h:intel:nuc7i3dnbe:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7i3dnhe_firmware:*:*:*:*:*:*:*:* 1 OR dnkbli30.86a
cpe:2.3:h:intel:nuc7i3dnhe:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7i3dnke_firmware:*:*:*:*:*:*:*:* 1 OR dnkbli30.86a
cpe:2.3:h:intel:nuc7i3dnke:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:stk2mv64cc_firmware:*:*:*:*:*:*:*:* 1 OR ccsklm5v.86a
cpe:2.3:h:intel:stk2mv64cc:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc6i7kyk_firmware:*:*:*:*:*:*:*:* 1 OR kyskli70.86a
cpe:2.3:h:intel:nuc6i7kyk:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7cjysal_firmware:*:*:*:*:*:*:*:* 1 OR jyglkcpx.86a
cpe:2.3:h:intel:nuc7cjysal:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7cjyh_firmware:*:*:*:*:*:*:*:* 1 OR jyglkcpx.86a
cpe:2.3:h:intel:nuc7cjyh:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7pjyh_firmware:*:*:*:*:*:*:*:* 1 OR jyglkcpx.86a
cpe:2.3:h:intel:nuc7pjyh:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7i7bnhxg_firmware:*:*:*:*:*:*:*:* 1 OR bnkbl357.86a
cpe:2.3:h:intel:nuc7i7bnhxg:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7i7bnkq_firmware:*:*:*:*:*:*:*:* 1 OR bnkbl357.86a
cpe:2.3:h:intel:nuc7i7bnkq:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7i3bnhxf_firmware:*:*:*:*:*:*:*:* 1 OR bnkbl357.86a
cpe:2.3:h:intel:nuc7i3bnhxf:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7i5bnhxf_firmware:*:*:*:*:*:*:*:* 1 OR bnkbl357.86a
cpe:2.3:h:intel:nuc7i5bnhxf:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7i5bnkp_firmware:*:*:*:*:*:*:*:* 1 OR bnkbl357.86a
cpe:2.3:h:intel:nuc7i5bnkp:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7i3bnb_firmware:*:*:*:*:*:*:*:* 1 OR bnkbl357.86a
cpe:2.3:h:intel:nuc7i3bnb:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7i5bnb_firmware:*:*:*:*:*:*:*:* 1 OR bnkbl357.86a
cpe:2.3:h:intel:nuc7i5bnb:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7i7bnb_firmware:*:*:*:*:*:*:*:* 1 OR bnkbl357.86a
cpe:2.3:h:intel:nuc7i7bnb:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7i3bnh_firmware:*:*:*:*:*:*:*:* 1 OR bnkbl357.86a
cpe:2.3:h:intel:nuc7i3bnh:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7i3bnhx1_firmware:*:*:*:*:*:*:*:* 1 OR bnkbl357.86a
cpe:2.3:h:intel:nuc7i3bnhx1:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7i3bnk_firmware:*:*:*:*:*:*:*:* 1 OR bnkbl357.86a
cpe:2.3:h:intel:nuc7i3bnk:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7i5bnh_firmware:*:*:*:*:*:*:*:* 1 OR bnkbl357.86a
cpe:2.3:h:intel:nuc7i5bnh:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7i5bnhx1_firmware:*:*:*:*:*:*:*:* 1 OR bnkbl357.86a
cpe:2.3:h:intel:nuc7i5bnhx1:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7i5bnk_firmware:*:*:*:*:*:*:*:* 1 OR bnkbl357.86a
cpe:2.3:h:intel:nuc7i5bnk:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7i7bnh_firmware:*:*:*:*:*:*:*:* 1 OR bnkbl357.86a
cpe:2.3:h:intel:nuc7i7bnh:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc7i7bnhx1_firmware:*:*:*:*:*:*:*:* 1 OR bnkbl357.86a
cpe:2.3:h:intel:nuc7i7bnhx1:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc6cayh_firmware:*:*:*:*:*:*:*:* 1 OR ayaplcel.86a
cpe:2.3:h:intel:nuc6cayh:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc6cays_firmware:*:*:*:*:*:*:*:* 1 OR ayaplcel.86a
cpe:2.3:h:intel:nuc6cays:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:de3815tybe_firmware:*:*:*:*:*:*:*:* 1 OR tybyt20h.86a
cpe:2.3:h:intel:de3815tybe:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:de3815tykhe_firmware:*:*:*:*:*:*:*:* 1 OR tybyt20h.86a
cpe:2.3:h:intel:de3815tykhe:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:de3815tybe_firmware:*:*:*:*:*:*:*:* 1 OR tybyt10h.86a
cpe:2.3:h:intel:de3815tybe:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:de3815tykhe_firmware:*:*:*:*:*:*:*:* 1 OR tybyt10h.86a
cpe:2.3:h:intel:de3815tykhe:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc5cpyh_firmware:*:*:*:*:*:*:*:* 1 OR pybswcel.86a
cpe:2.3:h:intel:nuc5cpyh:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc5pgyh_firmware:*:*:*:*:*:*:*:* 1 OR pybswcel.86a
cpe:2.3:h:intel:nuc5pgyh:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc5ppyh_firmware:*:*:*:*:*:*:*:* 1 OR pybswcel.86a
cpe:2.3:h:intel:nuc5ppyh:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc5i3ryh_firmware:*:*:*:*:*:*:*:* 1 OR pybswcel.86a
cpe:2.3:h:intel:nuc5i3ryh:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc5i3ryhs_firmware:*:*:*:*:*:*:*:* 1 OR pybswcel.86a
cpe:2.3:h:intel:nuc5i3ryhs:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc5i3ryhsn_firmware:*:*:*:*:*:*:*:* 1 OR pybswcel.86a
cpe:2.3:h:intel:nuc5i3ryhsn:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc5i3ryk_firmware:*:*:*:*:*:*:*:* 1 OR pybswcel.86a
cpe:2.3:h:intel:nuc5i3ryk:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc5i5ryh_firmware:*:*:*:*:*:*:*:* 1 OR pybswcel.86a
cpe:2.3:h:intel:nuc5i5ryh:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc5i5ryhs_firmware:*:*:*:*:*:*:*:* 1 OR pybswcel.86a
cpe:2.3:h:intel:nuc5i5ryhs:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc5i5ryk_firmware:*:*:*:*:*:*:*:* 1 OR pybswcel.86a
cpe:2.3:h:intel:nuc5i5ryk:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc5i7ryh_firmware:*:*:*:*:*:*:*:* 1 OR pybswcel.86a
cpe:2.3:h:intel:nuc5i7ryh:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc5i5mybe_firmware:*:*:*:*:*:*:*:* 1 OR mybdwi5v.86a
cpe:2.3:h:intel:nuc5i5mybe:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc5i5myhe_firmware:*:*:*:*:*:*:*:* 1 OR mybdwi5v.86a
cpe:2.3:h:intel:nuc5i5myhe:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc5i3mybe_firmware:*:*:*:*:*:*:*:* 1 OR mybdwi5v.86a
cpe:2.3:h:intel:nuc5i3mybe:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:intel:nuc5i3myhe_firmware:*:*:*:*:*:*:*:* 1 OR mybdwi5v.86a
cpe:2.3:h:intel:nuc5i3myhe:-:*:*:*:*:*:*:* 0 OR
CVSS Version 2
  • Version
  • 2.0
  • Vector String
  • AV:L/AC:L/Au:N/C:P/I:P/A:P
  • Access Vector
  • LOCAL
  • Access Compatibility
  • LOW
  • Authentication
  • NONE
  • Confidentiality Impact
  • PARTIAL
  • Integrity Impact
  • PARTIAL
  • Availability Impact
  • PARTIAL
  • Base Score
  • 4.6
  • Severity
  • MEDIUM
  • Exploitability Score
  • 3.9
  • Impact Score
  • 6.4
CVSS Version 3
  • Version
  • 3.1
  • Vector String
  • CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
  • Attack Vector
  • LOCAL
  • Attack Compatibility
  • LOW
  • Privileges Required
  • HIGH
  • User Interaction
  • NONE
  • Scope
  • UNCHANGED
  • Confidentiality Impact
  • HIGH
  • Availability Impact
  • HIGH
  • Base Score
  • 6.7
  • Base Severity
  • MEDIUM
  • Exploitability Score
  • 0.8
  • Impact Score
  • 5.9
References
History
Created Old Value New Value Data Type Notes
2022-05-10 17:19:46 Added to TrackCVE
2022-12-04 20:58:40 2020-08-13T03:15Z 2020-08-13T03:15:16 CVE Published Date updated
2022-12-04 20:58:40 2020-08-19T18:13:36 CVE Modified Date updated
2022-12-04 20:58:40 Analyzed Vulnerability Status updated