CVE-2020-12308

EUVD-2020-4620
Improper access control for the Intel(R) Computing Improvement Program before version 2.4.5982 may allow an unprivileged user to potentially enable information disclosure via network access.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.5 MEDIUM
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 55%
Affected Products (NVD)
VendorProductVersion
intelcomputing_improvement_program
𝑥
< 2.4.5982
𝑥
= Vulnerable software versions
References
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00410
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00410