3.3

CVE-2020-24512

Observable timing discrepancy in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IntelMicrocode Version < 20210608
DebianDebian Linux Version10.0
NetappFas/aff Bios Version-
NetappSolidfire Bios Version-
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.38% 0.299
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 3.3 1.8 1.4
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:P/I:N/A:N
CWE-203 Observable Discrepancy

The product behaves differently or sends different responses under different circumstances in a way that is observable to an unauthorized actor.

https://cert-portal.siemens.com/productcert/pdf/ssa-309571.pdf
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2021/07/msg00022.html
Third Party Advisory
https://security.netapp.com/advisory/ntap-20210611-0005/
Third Party Advisory
https://www.debian.org/security/2021/dsa-4934
Third Party Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00464.html
Vendor Advisory