CVE-2020-12308

Improper access control for the Intel(R) Computing Improvement Program before version 2.4.5982 may allow an unprivileged user to potentially enable information disclosure via network access.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.5 MEDIUM
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
intelCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 54%
VendorProductVersion
intelcomputing_improvement_program
𝑥
< 2.4.5982
𝑥
= Vulnerable software versions
References
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00410
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00410