Improper Initialization in Intel products - CVE-2020-0529
Published: June 10, 2020
Vulnerability identifier: #VU28947
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2020-0529
CWE-ID: CWE-665
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vendor: Intel
Affected software:
7th Generation Intel Core Processors
8th Generation Intel Core Processors
10th Generation Intel Core Processors
9th Generation Intel Core Processors
7th Generation Intel Core Processors
8th Generation Intel Core Processors
10th Generation Intel Core Processors
9th Generation Intel Core Processors
Detailed vulnerability description
The vulnerability allows a local attacker to escalate privileges on the system.
The vulnerability exists due to improper initialization in BIOS firmware. A local attacker can gain elevated privileges on the target system.
How to mitigate CVE-2020-0529
Install updates from vendor's website.