Home > Vulnerability Database > CVE-2020-0550

Mend.io Vulnerability Database

New vulnerability? Tell us about it!

CVE-2020-0550

Date: March 12, 2020

Improper data forwarding in some data cache for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. The list of affected products is provided in intel-sa-00330: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00330.html

Severity Score

5.6

Related Resources (5)

Url: https://nvd.nist.gov/vuln/detail/CVE-2020-0550

Url: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00330.html

Url: https://security.netapp.com/advisory/ntap-20200320-0001/

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2020-0550

Url: https://www.mend.io/vulnerability-database/CVE-2020-0550

Severity Score

5.6

Weakness Type (CWE)

Information Leak / Disclosure

CWE-200

Insufficient Information

NVD-CWE-noinfo

CVSS v3.1

Base Score:	5.6
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	HIGH
Privileges Required (PR):	LOW
User Interaction (UI):	NONE
Scope (S):	CHANGED
Confidentiality (C):	HIGH
Integrity (I):	NONE
Availability (A):	NONE

CVSS v2

Base Score:	1.9
Access Vector (AV):	LOCAL
Access Complexity (AC):	MEDIUM
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	NONE
Availability (A):	NONE
Additional information:

Do you need more information?

Contact Us