Sign-up

ID

VAR-202003-0349


CVE

CVE-2020-0503


TITLE

Intel(R) Graphics Driver Vulnerability regarding information leakage in

Trust: 0.8

sources: JVNDB: JVNDB-2020-002979

DESCRIPTION

Improper access control in Intel(R) Graphics Drivers before version 26.20.100.7212 may allow an authenticated user to potentially enable information disclosure via local access. Intel(R) Graphics Driver There is an information leakage vulnerability in.Information may be obtained. Intel Graphics Drivers is an integrated graphics driver from Intel Corporation

Trust: 1.71

sources: NVD: CVE-2020-0503 // JVNDB: JVNDB-2020-002979 // VULHUB: VHN-161937

AFFECTED PRODUCTS

vendor:intelmodel:graphics driverscope:ltversion:26.20.100.7212

Trust: 1.0

vendor:intelmodel:graphics driverscope:eqversion:26.20.100.7212

Trust: 0.8

sources: JVNDB: JVNDB-2020-002979 // NVD: CVE-2020-0503

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2020-0503
value: MEDIUM

Trust: 1.0

NVD: JVNDB-2020-002979
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-202003-568
value: MEDIUM

Trust: 0.6

VULHUB: VHN-161937
value: LOW

Trust: 0.1

nvd@nist.gov: CVE-2020-0503
severity: LOW
baseScore: 2.1
vectorString: AV:L/AC:L/AU:N/C:P/I:N/A:N
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

NVD: JVNDB-2020-002979
severity: LOW
baseScore: 2.1
vectorString: AV:L/AC:L/AU:N/C:P/I:N/A:N
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.8

VULHUB: VHN-161937
severity: LOW
baseScore: 2.1
vectorString: AV:L/AC:L/AU:N/C:P/I:N/A:N
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2020-0503
baseSeverity: MEDIUM
baseScore: 5.5
vectorString: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 1.8
impactScore: 3.6
version: 3.1

Trust: 1.0

NVD: JVNDB-2020-002979
baseSeverity: MEDIUM
baseScore: 5.5
vectorString: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: VULHUB: VHN-161937 // JVNDB: JVNDB-2020-002979 // CNNVD: CNNVD-202003-568 // NVD: CVE-2020-0503

PROBLEMTYPE DATA

problemtype:NVD-CWE-noinfo

Trust: 1.0

problemtype:CWE-200

Trust: 0.9

sources: VULHUB: VHN-161937 // JVNDB: JVNDB-2020-002979 // NVD: CVE-2020-0503

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-202003-568

TYPE

information disclosure

Trust: 0.6

sources: CNNVD: CNNVD-202003-568

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2020-002979

PATCH
title:INTEL-SA-00315url:https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00315.html
Trust: 0.8
title:Intel Graphics Drivers Fixes for access control error vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=111514
Trust: 0.6
sources:
            
            
            JVNDB: JVNDB-2020-002979 // 
            
            
            
            CNNVD: CNNVD-202003-568

EXTERNAL IDS
db:NVDid:CVE-2020-0503
Trust: 2.5
db:JVNid:JVNVU94445466
Trust: 0.8
db:JVNDBid:JVNDB-2020-002979
Trust: 0.8
db:CNNVDid:CNNVD-202003-568
Trust: 0.7
db:LENOVOid:LEN-30555
Trust: 0.6
db:AUSCERTid:ESB-2020.0871
Trust: 0.6
db:VULHUBid:VHN-161937
Trust: 0.1
sources:
            
            
            VULHUB: VHN-161937 // 
            
            
            
            JVNDB: JVNDB-2020-002979 // 
            
            
            
            CNNVD: CNNVD-202003-568 // 
            
            
            
            NVD: CVE-2020-0503

REFERENCES
url:https://security.netapp.com/advisory/ntap-20200320-0003/
Trust: 1.7
url:https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00315.html
Trust: 1.7
url:https://nvd.nist.gov/vuln/detail/cve-2020-0503
Trust: 1.4
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2020-0503
Trust: 0.8
url:http://jvn.jp/vu/jvnvu94445466/index.html
Trust: 0.8
url:https://www.auscert.org.au/bulletins/esb-2020.0871/
Trust: 0.6
url:https://support.lenovo.com/us/en/product_security/len-30555
Trust: 0.6
sources:
            
            
            VULHUB: VHN-161937 // 
            
            
            
            JVNDB: JVNDB-2020-002979 // 
            
            
            
            CNNVD: CNNVD-202003-568 // 
            
            
            
            NVD: CVE-2020-0503

SOURCES
db:VULHUBid:VHN-161937
db:JVNDBid:JVNDB-2020-002979
db:CNNVDid:CNNVD-202003-568
db:NVDid:CVE-2020-0503

LAST UPDATE DATE
2024-11-23T20:32:15.400000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-161937date:2022-01-01T00:00:00
db:JVNDBid:JVNDB-2020-002979date:2020-03-31T00:00:00
db:CNNVDid:CNNVD-202003-568date:2022-01-04T00:00:00
db:NVDid:CVE-2020-0503date:2024-11-21T04:53:37.840

SOURCES RELEASE DATE
db:VULHUBid:VHN-161937date:2020-03-12T00:00:00
db:JVNDBid:JVNDB-2020-002979date:2020-03-31T00:00:00
db:CNNVDid:CNNVD-202003-568date:2020-03-10T00:00:00
db:NVDid:CVE-2020-0503date:2020-03-12T18:15:11.947