fkie_cve-2020-12291
Vulnerability from fkie_nvd
Published
2021-06-09 19:15
Modified
2024-11-21 04:59
Severity ?
Summary
Uncontrolled resource consumption in some Intel(R) Thunderbolt(TM) controllers may allow an authenticated user to potentially enable denial of service via local access.
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:jhl6240_thunderbolt_3_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "61938816-4296-4930-A056-A05EC8452392",
"versionEndExcluding": "21",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:jhl6240_thunderbolt_3:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3B913051-17BA-40D2-B0BF-61982D8D1B82",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:jhl6340_thunderbolt_3_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "0446898C-1AB6-41F0-9394-0FB6383D8821",
"versionEndExcluding": "46",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:jhl6340_thunderbolt_3:-:*:*:*:*:*:*:*",
"matchCriteriaId": "346BAE25-F11A-43A3-A1BF-91C18E03098B",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:jhl6540_thunderbolt_3_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "2DBF52A8-E9F7-4031-B4A5-7EA046F93924",
"versionEndExcluding": "46",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:jhl6540_thunderbolt_3:-:*:*:*:*:*:*:*",
"matchCriteriaId": "783003E4-B8C7-4EBF-9EB5-1826B8628346",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:jhl7040_thunderbolt_3_retimer_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "ACC6F053-A42A-4D63-8476-F0BDBCA17D19",
"versionEndExcluding": "22",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:jhl7040_thunderbolt_3_retimer:-:*:*:*:*:*:*:*",
"matchCriteriaId": "46A52B51-4ADF-42C8-828A-76E7F7B40752",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:jhl7340_thunderbolt_3_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "36DCCACC-F618-4D0E-B195-4AB6027C747F",
"versionEndExcluding": "60",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:jhl7340_thunderbolt_3:-:*:*:*:*:*:*:*",
"matchCriteriaId": "ED17AEEC-5CA0-4EE1-A269-67E07DB5AFF0",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:jhl7440_thunderbolt_3_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "F61C222F-CF75-4433-B992-06A1FC503E7A",
"versionEndExcluding": "60",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:jhl7440_thunderbolt_3:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3A0CF918-FEBE-4D9F-9A55-FD5F84FFF684",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:jhl7540_thunderbolt_3_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "525AA862-74C1-43B5-83CC-55BF9DB19351",
"versionEndExcluding": "60",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:jhl7540_thunderbolt_3:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8A8D32FB-085E-41F8-AF21-697EC31E46BD",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:jhl8010r_usb_retimer_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "FA9065C1-199D-46BE-B685-02560C6155BD",
"versionEndExcluding": "41",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:jhl8010r_usb_retimer:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9C4D713F-153A-4E55-BC68-697B25D42B82",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:dsl5320_thunderbolt_2_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "6C06F6AB-5D9F-42C3-88C4-891F49967315",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:dsl5320_thunderbolt_2:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8F506639-8288-47ED-A92C-285FCC22F626",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:dsl5520_thunderbolt_2_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "ABB4291E-F7E3-40ED-9D10-EBD0802B8385",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:dsl5520_thunderbolt_2:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1EE5B0E1-B822-494B-9ACE-A497FD0E0FC3",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:dsl6340_thunderbolt_3_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "0ADF0AE9-8B9A-467A-8E7E-80138CD25932",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:dsl6340_thunderbolt_3:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AFFA5F6D-B544-4AB7-A63A-A192C6909CCF",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:dsl6540_thunderbolt_3_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "945E551B-3E0B-4035-B8EE-27D403499AD7",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:dsl6540_thunderbolt_3:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D1C149B1-546E-4527-8370-F0300B1C9B55",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:jhl8040r_thunderbolt_4_retimer_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "063A9467-357F-44D8-B530-B777453C33A1",
"versionEndExcluding": "41",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:jhl8040r_thunderbolt_4_retimer:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1D4FBFBC-187F-4813-9C9D-6A3F6C6A4D3C",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Uncontrolled resource consumption in some Intel(R) Thunderbolt(TM) controllers may allow an authenticated user to potentially enable denial of service via local access."
},
{
"lang": "es",
"value": "Un consumo incontrolado de recursos en algunos controladores Intel\u00ae Thunderbolt\u2122 puede permitir a un usuario autenticado permitir potencialmente una denegaci\u00f3n de servicio por medio de un acceso local"
}
],
"id": "CVE-2020-12291",
"lastModified": "2024-11-21T04:59:27.673",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "LOW",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 2.1,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2021-06-09T19:15:08.407",
"references": [
{
"source": "secure@intel.com",
"tags": [
"Vendor Advisory"
],
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00401.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00401.html"
}
],
"sourceIdentifier": "secure@intel.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-400"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…