CVE-2020-8695

Description

Observable discrepancy in the RAPL interface for some Intel(R) Processors may allow a privileged user to potentially enable information disclosure via local access.

CVSS Metrics

• v3.1•MEDIUM•Score: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
• v2.0•LOW•Score: 2.1AV:L/AC:L/Au:N/C:P/I:N/A:N

EPSS Trends

Current EPSS score: 0.15%• Percentile: 35%

Techniques & Countermeasures

• CWE-203•Observable Discrepancy

  The product behaves differently or sends different responses under different circumstances in a way that is observable to an unauthorized actor.

Affected Systems

• debian•debian_linux

  9.0

• fedoraproject•fedora

  31 | 32 | 33

• intel•celeron_3855u_firmware

  na

• intel•celeron_3865u_firmware

  na

• intel•celeron_3955u_firmware

  na

• intel•celeron_3965u_firmware

  na

• intel•celeron_3965y_firmware

  na

• intel•celeron_g3900_firmware

  na

• intel•celeron_g3900e_firmware

  na

• intel•celeron_g3900t_firmware

  na

• intel•celeron_g3900te_firmware

  na

• intel•celeron_g3902e_firmware

  na

• intel•celeron_g3920_firmware

  na

• intel•celeron_g3920t_firmware

  na

• intel•celeron_g3930e_firmware

  na

• intel•celeron_g3930te_firmware

  na

• intel•celeron_g3940_firmware

  na

• intel•celeron_g4900_firmware

  na

• intel•celeron_g4900t_firmware

  na

• intel•celeron_g4920_firmware

  na

• intel•celeron_j4005_firmware

  na

• intel•celeron_j4025_firmware

  na

• intel•celeron_j4105_firmware

  na

• intel•celeron_j4125_firmware

  na

• intel•celeron_n4000_firmware

  na

• intel•celeron_n4020_firmware

  na

• intel•celeron_n4100_firmware

  na

• intel•celeron_n4120_firmware

  na

• intel•core_4205u_firmware

  na

• intel•core_5405u_firmware

  na

• intel•core_i3-1000g1_firmware

  na

• intel•core_i3-1000g4_firmware

  na

• intel•core_i3-1005g1_firmware

  na

• intel•core_i3-10100f_firmware

  na

• intel•core_i3-6100_firmware

  na

• intel•core_i3-6100e_firmware

  na

• intel•core_i3-6100h_firmware

  na

• intel•core_i3-6100t_firmware

  na

• intel•core_i3-6100te_firmware

  na

• intel•core_i3-6100u_firmware

  na

• intel•core_i3-6102e_firmware

  na

• intel•core_i3-6110u_firmware

  na

• intel•core_i3-6120_firmware

  na

• intel•core_i3-6120t_firmware

  na

• intel•core_i3-6167u_firmware

  na

• intel•core_i3-6300_firmware

  na

• intel•core_i3-6300t_firmware

  na

• intel•core_i3-6320_firmware

  na

• intel•core_i3-6320t_firmware

  na

• intel•core_i3-7007u_firmware

  na

Showing first 50 affected entries in server-rendered view.

References (6)

• https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00389
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MAAGIK5CXKBPGY3R4UR5VO56M7MKLZ43/
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AQ24MFBVH3HJW3PNRQBRY4YXKC7GA57W/
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NEM2FZWVE4FNGYNQU3WCBAWTZRBWDYUR/
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GRFC7UAPKAFFH5WX3AMDUBVHLKYQA2NZ/
• https://lists.debian.org/debian-lts-announce/2021/02/msg00007.html