Race condition in Intel products - CVE-2020-8680

 

Race condition in Intel products - CVE-2020-8680

Published: August 13, 2020


Vulnerability identifier: #VU45670
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2020-8680
CWE-ID: CWE-362
Exploitation vector: Local access
Exploit availability: No public exploit available
Vendor: Intel
Affected software:
3rd Generation Intel Core Processors
4th generation Intel Core processors
5th generation Intel Core processors
6th Generation Intel Core Processors
7th Generation Intel Core Processors
8th Generation Intel Core Processors
10th Generation Intel Core Processors
9th Generation Intel Core Processors

Detailed vulnerability description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a race condition in some Intel Graphics Drivers. A local user can exploit the race and escalate privileges on the system.


How to mitigate CVE-2020-8680

Install updates from vendor's website.

Sources