CVE-2020-12362
published 2021-02-17CVE-2020-12362: Integer overflow in the firmware for some Intel(R) Graphics Drivers for Windows * before version 26.20.100.7212 and before Linux kernel version 5.5 may allow a…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
Integer overflow in the firmware for some Intel(R) Graphics Drivers for Windows * before version 26.20.100.7212 and before Linux kernel version 5.5 may allow a privileged user to potentially enable an escalation of privilege via local access.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | firmware-nonfree | < firmware-nonfree 20210208-1 (bookworm) | firmware-nonfree 20210208-1 (bookworm) |
| debian | linux | < firmware-nonfree 20210208-1 (bookworm) | firmware-nonfree 20210208-1 (bookworm) |
| intel | graphics_drivers | < 26.20.100.7212 | 26.20.100.7212 |
| linux | linux_kernel | >= 0 < 5.14.6-1 | 5.14.6-1 |
| linux | linux_kernel | >= 0 < 5.14.6-1 | 5.14.6-1 |
| linux | linux_kernel | >= 0 < 5.14.6-1 | 5.14.6-1 |
| paloalto | pan-os | — | — |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv7.8HIGH