ID

VAR-202102-0775


CVE

CVE-2020-8678


TITLE

Intel(R) Graphics Drivers  Vulnerability in

Trust: 0.8

sources: JVNDB: JVNDB-2020-016088

DESCRIPTION

Improper access control for Intel(R) Graphics Drivers before version 15.45.33.5164 and 27.20.100.8280 may allow an authenticated user to potentially enable an escalation of privilege via local access. Intel(R) Graphics Drivers Contains an unspecified vulnerability.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state. There is a security vulnerability in Intel Graphics Drivers. There is no information about this vulnerability at present. Please pay attention to CNNVD or manufacturer announcements at any time

Trust: 1.71

sources: NVD: CVE-2020-8678 // JVNDB: JVNDB-2020-016088 // VULHUB: VHN-186803

AFFECTED PRODUCTS

vendor:intelmodel:graphics driversscope:gteversion:27.20

Trust: 1.0

vendor:intelmodel:graphics driversscope:ltversion:15.45.33.5164

Trust: 1.0

vendor:intelmodel:graphics driversscope:ltversion:27.20.100.8280

Trust: 1.0

vendor:インテルmodel:intel graphics driversscope:eqversion: -

Trust: 0.8

vendor:インテルmodel:intel graphics driversscope:eqversion:15.45.33.5164

Trust: 0.8

vendor:インテルmodel:intel graphics driversscope:eqversion:27.20.100.8280

Trust: 0.8

sources: JVNDB: JVNDB-2020-016088 // NVD: CVE-2020-8678

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2020-8678
value: HIGH

Trust: 1.0

NVD: CVE-2020-8678
value: HIGH

Trust: 0.8

CNNVD: CNNVD-202102-835
value: HIGH

Trust: 0.6

VULHUB: VHN-186803
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2020-8678
severity: MEDIUM
baseScore: 4.6
vectorString: AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 3.9
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-186803
severity: MEDIUM
baseScore: 4.6
vectorString: AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 3.9
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2020-8678
baseSeverity: HIGH
baseScore: 7.8
vectorString: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 1.8
impactScore: 5.9
version: 3.1

Trust: 1.0

NVD: CVE-2020-8678
baseSeverity: HIGH
baseScore: 7.8
vectorString: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: VULHUB: VHN-186803 // JVNDB: JVNDB-2020-016088 // CNNVD: CNNVD-202102-835 // NVD: CVE-2020-8678

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

problemtype:Other (CWE-Other) [NVD Evaluation ]

Trust: 0.8

sources: JVNDB: JVNDB-2020-016088 // NVD: CVE-2020-8678

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-202102-835

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-202102-835

PATCH

title:INTEL-SA-00438url:https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html

Trust: 0.8

title:Intel Graphics Drivers Security vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=142596

Trust: 0.6

sources: JVNDB: JVNDB-2020-016088 // CNNVD: CNNVD-202102-835

EXTERNAL IDS

db:NVDid:CVE-2020-8678

Trust: 2.5

db:JVNid:JVNVU93808918

Trust: 0.8

db:JVNDBid:JVNDB-2020-016088

Trust: 0.8

db:LENOVOid:LEN-51723

Trust: 0.6

db:AUSCERTid:ESB-2021.0472

Trust: 0.6

db:CNNVDid:CNNVD-202102-835

Trust: 0.6

db:VULHUBid:VHN-186803

Trust: 0.1

sources: VULHUB: VHN-186803 // JVNDB: JVNDB-2020-016088 // CNNVD: CNNVD-202102-835 // NVD: CVE-2020-8678

REFERENCES

url:https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00438.html

Trust: 1.7

url:https://nvd.nist.gov/vuln/detail/cve-2020-8678

Trust: 1.4

url:https://jvn.jp/vu/jvnvu93808918/

Trust: 0.8

url:https://www.auscert.org.au/bulletins/esb-2021.0472

Trust: 0.6

url:https://support.lenovo.com/us/en/product_security/len-51723

Trust: 0.6

url:https://vigilance.fr/vulnerability/intel-graphics-drivers-multiple-vulnerabilities-34748

Trust: 0.6

sources: VULHUB: VHN-186803 // JVNDB: JVNDB-2020-016088 // CNNVD: CNNVD-202102-835 // NVD: CVE-2020-8678

SOURCES

db:VULHUBid:VHN-186803
db:JVNDBid:JVNDB-2020-016088
db:CNNVDid:CNNVD-202102-835
db:NVDid:CVE-2020-8678

LAST UPDATE DATE

2024-08-14T12:34:04.840000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-186803date:2021-02-22T00:00:00
db:JVNDBid:JVNDB-2020-016088date:2021-11-05T07:04:00
db:CNNVDid:CNNVD-202102-835date:2022-03-10T00:00:00
db:NVDid:CVE-2020-8678date:2021-02-22T20:20:08.360

SOURCES RELEASE DATE

db:VULHUBid:VHN-186803date:2021-02-17T00:00:00
db:JVNDBid:JVNDB-2020-016088date:2021-11-05T00:00:00
db:CNNVDid:CNNVD-202102-835date:2021-02-09T00:00:00
db:NVDid:CVE-2020-8678date:2021-02-17T14:15:18.827