Sign-up

ID

VAR-202003-0353


CVE

CVE-2020-0507


TITLE

Intel(R) Graphics Driver Vulnerability in unquoted search paths or elements in

Trust: 0.8

sources: JVNDB: JVNDB-2020-003089

DESCRIPTION

Unquoted service path in Intel(R) Graphics Drivers before versions 15.33.49.5100, 15.36.38.5117, 15.40.44.5107, 15.45.30.5103, and 26.20.100.7212 may allow an authenticated user to potentially enable denial of service via local access. Intel(R) Graphics Driver Contains vulnerabilities in unquoted search paths or elements.Service operation interruption (DoS) It may be put into a state. Intel Graphics Drivers is an integrated graphics driver from Intel Corporation. A security vulnerability exists in Intel Graphics Drivers. A local attacker could exploit this vulnerability to cause a denial of service. The following products and versions are affected: Intel Graphics Drivers prior to 15.33.49.5100, prior to 15.36.38.5117, prior to 15.40.44.5107, prior to 15.45.30.5103, and prior to 26.20.100.7212

Trust: 1.71

sources: NVD: CVE-2020-0507 // JVNDB: JVNDB-2020-003089 // VULHUB: VHN-161941

AFFECTED PRODUCTS

vendor:intelmodel:graphics driverscope:ltversion:15.33.49.5100

Trust: 1.0

vendor:intelmodel:graphics driverscope:ltversion:15.36.38.5117

Trust: 1.0

vendor:intelmodel:graphics driverscope:gteversion:15.45

Trust: 1.0

vendor:intelmodel:graphics driverscope:ltversion:26.20.100.7212

Trust: 1.0

vendor:intelmodel:graphics driverscope:ltversion:15.45.30.5103

Trust: 1.0

vendor:intelmodel:graphics driverscope:ltversion:15.40.44.5107

Trust: 1.0

vendor:intelmodel:graphics driverscope:gteversion:15.33

Trust: 1.0

vendor:intelmodel:graphics driverscope:gteversion:15.36

Trust: 1.0

vendor:intelmodel:graphics driverscope:gteversion:15.40

Trust: 1.0

vendor:intelmodel:graphics driverscope:gteversion:26.20

Trust: 1.0

vendor:intelmodel:graphics driverscope:eqversion:15.33.49.5100

Trust: 0.8

vendor:intelmodel:graphics driverscope:eqversion:15.36.38.5117

Trust: 0.8

vendor:intelmodel:graphics driverscope:eqversion:15.40.44.5107

Trust: 0.8

vendor:intelmodel:graphics driverscope:eqversion:15.45.30.5103

Trust: 0.8

vendor:intelmodel:graphics driverscope:eqversion:26.20.100.7212

Trust: 0.8

sources: JVNDB: JVNDB-2020-003089 // NVD: CVE-2020-0507

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2020-0507
value: MEDIUM

Trust: 1.0

NVD: JVNDB-2020-003089
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-202003-560
value: MEDIUM

Trust: 0.6

VULHUB: VHN-161941
value: LOW

Trust: 0.1

nvd@nist.gov: CVE-2020-0507
severity: LOW
baseScore: 2.1
vectorString: AV:L/AC:L/AU:N/C:N/I:N/A:P
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 3.9
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

NVD: JVNDB-2020-003089
severity: LOW
baseScore: 2.1
vectorString: AV:L/AC:L/AU:N/C:N/I:N/A:P
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: NONE
impactScore: NONE
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.8

VULHUB: VHN-161941
severity: LOW
baseScore: 2.1
vectorString: AV:L/AC:L/AU:N/C:N/I:N/A:P
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 3.9
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2020-0507
baseSeverity: MEDIUM
baseScore: 4.4
vectorString: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: HIGH
exploitabilityScore: 0.8
impactScore: 3.6
version: 3.1

Trust: 1.0

NVD: JVNDB-2020-003089
baseSeverity: MEDIUM
baseScore: 4.4
vectorString: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: VULHUB: VHN-161941 // JVNDB: JVNDB-2020-003089 // CNNVD: CNNVD-202003-560 // NVD: CVE-2020-0507

PROBLEMTYPE DATA

problemtype:CWE-428

Trust: 1.9

sources: VULHUB: VHN-161941 // JVNDB: JVNDB-2020-003089 // NVD: CVE-2020-0507

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-202003-560

TYPE

code problem

Trust: 0.6

sources: CNNVD: CNNVD-202003-560

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2020-003089

PATCH
title:INTEL-SA-00315url:https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00315.html
Trust: 0.8
title:Intel Graphics Drivers Security vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=111506
Trust: 0.6
sources:
            
            
            JVNDB: JVNDB-2020-003089 // 
            
            
            
            CNNVD: CNNVD-202003-560

EXTERNAL IDS
db:NVDid:CVE-2020-0507
Trust: 2.5
db:JVNid:JVNVU94445466
Trust: 0.8
db:JVNDBid:JVNDB-2020-003089
Trust: 0.8
db:CNNVDid:CNNVD-202003-560
Trust: 0.7
db:LENOVOid:LEN-30555
Trust: 0.6
db:AUSCERTid:ESB-2020.0871
Trust: 0.6
db:VULHUBid:VHN-161941
Trust: 0.1
sources:
            
            
            VULHUB: VHN-161941 // 
            
            
            
            JVNDB: JVNDB-2020-003089 // 
            
            
            
            CNNVD: CNNVD-202003-560 // 
            
            
            
            NVD: CVE-2020-0507

REFERENCES
url:https://security.netapp.com/advisory/ntap-20200320-0003/
Trust: 1.7
url:https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00315.html
Trust: 1.7
url:https://nvd.nist.gov/vuln/detail/cve-2020-0507
Trust: 1.4
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2020-0507
Trust: 0.8
url:http://jvn.jp/vu/jvnvu94445466/index.html
Trust: 0.8
url:https://www.auscert.org.au/bulletins/esb-2020.0871/
Trust: 0.6
url:https://support.lenovo.com/us/en/product_security/len-30555
Trust: 0.6
sources:
            
            
            VULHUB: VHN-161941 // 
            
            
            
            JVNDB: JVNDB-2020-003089 // 
            
            
            
            CNNVD: CNNVD-202003-560 // 
            
            
            
            NVD: CVE-2020-0507

SOURCES
db:VULHUBid:VHN-161941
db:JVNDBid:JVNDB-2020-003089
db:CNNVDid:CNNVD-202003-560
db:NVDid:CVE-2020-0507

LAST UPDATE DATE
2024-11-23T21:01:01.492000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-161941date:2021-05-19T00:00:00
db:JVNDBid:JVNDB-2020-003089date:2020-04-03T00:00:00
db:CNNVDid:CNNVD-202003-560date:2021-08-16T00:00:00
db:NVDid:CVE-2020-0507date:2024-11-21T04:53:38.270

SOURCES RELEASE DATE
db:VULHUBid:VHN-161941date:2020-03-12T00:00:00
db:JVNDBid:JVNDB-2020-003089date:2020-04-03T00:00:00
db:CNNVDid:CNNVD-202003-560date:2020-03-10T00:00:00
db:NVDid:CVE-2020-0507date:2020-03-12T18:15:12.273