Sign-up

ID

VAR-202008-1136


CVE

CVE-2020-8759


TITLE

Intel(R) SSD DCT Vulnerability in

Trust: 0.8

sources: JVNDB: JVNDB-2020-009537

DESCRIPTION

Improper access control in the installer for Intel(R) SSD DCT versions before 3.0.23 may allow a privileged user to potentially enable escalation of privilege via local access. Intel(R) SSD DCT There is an unspecified vulnerability in.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be put into a state. An attacker could exploit this vulnerability to elevate privileges

Trust: 1.71

sources: NVD: CVE-2020-8759 // JVNDB: JVNDB-2020-009537 // VULHUB: VHN-186884

AFFECTED PRODUCTS

vendor:intelmodel:ssd data center toolscope:ltversion:3.0.23

Trust: 1.0

vendor:intelmodel:ssd data center toolscope:eqversion:3.0.23

Trust: 0.8

sources: JVNDB: JVNDB-2020-009537 // NVD: CVE-2020-8759

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2020-8759
value: MEDIUM

Trust: 1.0

NVD: JVNDB-2020-009537
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-202008-733
value: MEDIUM

Trust: 0.6

VULHUB: VHN-186884
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2020-8759
severity: MEDIUM
baseScore: 4.6
vectorString: AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 3.9
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

NVD: JVNDB-2020-009537
severity: MEDIUM
baseScore: 4.6
vectorString: AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: NONE
impactScore: NONE
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.8

VULHUB: VHN-186884
severity: MEDIUM
baseScore: 4.6
vectorString: AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 3.9
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2020-8759
baseSeverity: MEDIUM
baseScore: 6.7
vectorString: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 0.8
impactScore: 5.9
version: 3.1

Trust: 1.0

NVD: JVNDB-2020-009537
baseSeverity: MEDIUM
baseScore: 6.7
vectorString: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: VULHUB: VHN-186884 // JVNDB: JVNDB-2020-009537 // CNNVD: CNNVD-202008-733 // NVD: CVE-2020-8759

PROBLEMTYPE DATA

problemtype:NVD-CWE-noinfo

Trust: 1.0

sources: NVD: CVE-2020-8759

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-202008-733

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-202008-733

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2020-009537

PATCH
title:INTEL-SA-00406url:https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00406.html
Trust: 0.8
title:Intel SSD DCT Security vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=126399
Trust: 0.6
sources:
            
            
            JVNDB: JVNDB-2020-009537 // 
            
            
            
            CNNVD: CNNVD-202008-733

EXTERNAL IDS
db:NVDid:CVE-2020-8759
Trust: 2.5
db:JVNid:JVNVU99606488
Trust: 0.8
db:JVNDBid:JVNDB-2020-009537
Trust: 0.8
db:CNNVDid:CNNVD-202008-733
Trust: 0.7
db:VULHUBid:VHN-186884
Trust: 0.1
sources:
            
            
            VULHUB: VHN-186884 // 
            
            
            
            JVNDB: JVNDB-2020-009537 // 
            
            
            
            CNNVD: CNNVD-202008-733 // 
            
            
            
            NVD: CVE-2020-8759

REFERENCES
url:https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00406.html
Trust: 1.7
url:https://nvd.nist.gov/vuln/detail/cve-2020-8759
Trust: 1.4
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2020-8759
Trust: 0.8
url:https://jvn.jp/vu/jvnvu99606488
Trust: 0.8
sources:
            
            
            VULHUB: VHN-186884 // 
            
            
            
            JVNDB: JVNDB-2020-009537 // 
            
            
            
            CNNVD: CNNVD-202008-733 // 
            
            
            
            NVD: CVE-2020-8759

SOURCES
db:VULHUBid:VHN-186884
db:JVNDBid:JVNDB-2020-009537
db:CNNVDid:CNNVD-202008-733
db:NVDid:CVE-2020-8759

LAST UPDATE DATE
2024-11-23T21:35:21.198000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-186884date:2020-08-19T00:00:00
db:JVNDBid:JVNDB-2020-009537date:2020-11-11T08:47:43
db:CNNVDid:CNNVD-202008-733date:2021-01-05T00:00:00
db:NVDid:CVE-2020-8759date:2024-11-21T05:39:23.517

SOURCES RELEASE DATE
db:VULHUBid:VHN-186884date:2020-08-13T00:00:00
db:JVNDBid:JVNDB-2020-009537date:2020-11-11T08:47:43
db:CNNVDid:CNNVD-202008-733date:2020-08-12T00:00:00
db:NVDid:CVE-2020-8759date:2020-08-13T03:15:16.633