Out-of-bounds read in Intel products - CVE-2020-8682

 

Out-of-bounds read in Intel products - CVE-2020-8682

Published: August 13, 2020


Vulnerability identifier: #VU45679
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2020-8682
CWE-ID: CWE-125
Exploitation vector: Local access
Exploit availability: No public exploit available
Vendor: Intel
Affected software:
6th Generation Intel Core Processors
7th Generation Intel Core Processors
8th Generation Intel Core Processors
3rd Generation Intel Core Processors
4th generation Intel Core processors
5th generation Intel Core processors
10th Generation Intel Core Processors
9th Generation Intel Core Processors

Detailed vulnerability description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary condition in system driver for some Intel Graphics Drivers. A local user can trigger out-of-bounds read error and cause a denial of service condition on the system.


How to mitigate CVE-2020-8682

Install updates from vendor's website.

Sources