Access of Uninitialized Pointer in Intel products - CVE-2020-12300
Published: August 14, 2020
Vulnerability identifier: #VU45728
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2020-12300
CWE-ID: CWE-824
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vendor: Intel
Affected software:
Intel Server Board S2600CW
Intel Server Board S2600KP
Intel Server Board S2600TP
Intel Server Boards S2600WT
Intel Server Board S2600CW
Intel Server Board S2600KP
Intel Server Board S2600TP
Intel Server Boards S2600WT
Detailed vulnerability description
The vulnerability allows a local user to escalate privileges on the system.
How to mitigate CVE-2020-12300
Install updates from vendor's website.