Observable discrepancy in the RAPL interface for some Intel® Processors may allow a privileged user to potentially enable information disclosure via local access.

CNA Affected

[
  {
    "product": "Intel(R) Processors",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "See references"
      }
    ]
  }
]

References

lists.debian.org/debian-lts-announce/2021/02/msg00007.html

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AQ24MFBVH3HJW3PNRQBRY4YXKC7GA57W/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GRFC7UAPKAFFH5WX3AMDUBVHLKYQA2NZ/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MAAGIK5CXKBPGY3R4UR5VO56M7MKLZ43/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NEM2FZWVE4FNGYNQU3WCBAWTZRBWDYUR/

www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00389

fedora 4

prion 1

openvas 23

veracode 1

nvd 1

nessus 73

ubuntucve 1

debiancve 1

redhatcve 1

cve 1

cnvd 1

intel 1

suse 4

lenovo 3

oraclelinux 15

f5 1

centos 2

redhat 19

ubuntu 3

osv 7

cloudfoundry 3

github 2

threatpost 1

debian 1

mageia 1

rocky 1

almalinux 1

hp 1

fedora

[SECURITY] Fedora 31 Update: microcode_ctl-2.1-39.3.fc31

2020-11-24 02:13:36

[SECURITY] Fedora 31 Update: microcode_ctl-2.1-39.2.fc31

2020-11-20 01:29:29

[SECURITY] Fedora 33 Update: microcode_ctl-2.1-43.fc33

2020-11-22 01:27:43

prion

Information disclosure

2020-11-12 18:15:00

openvas

Fedora: Security Advisory for microcode_ctl (FEDORA-2020-d5941ea479)

2020-11-26 00:00:00

SUSE: Security Advisory (SUSE-SU-2020:3279-1)

2021-04-19 00:00:00

SUSE: Security Advisory (SUSE-SU-2020:3274-1)

2021-04-19 00:00:00

veracode

Information Disclosure

2020-11-12 07:53:07

nvd

CVE-2020-8695

2020-11-12 18:15:16

nessus

Fedora 31 : 2:microcode_ctl (2020-d5941ea479)

2020-11-24 00:00:00

SUSE SLED15 / SLES15 Security Update : ucode-intel (SUSE-SU-2020:3271-1)

2020-12-09 00:00:00

openSUSE Security Update : ucode-intel (openSUSE-2020-1923)

2020-11-17 00:00:00

ubuntucve

CVE-2020-8695

2020-11-10 00:00:00

debiancve

CVE-2020-8695

2020-11-12 18:15:16

redhatcve

CVE-2020-8695

2020-11-10 19:52:48

cve

CVE-2020-8695

2020-11-12 18:15:16

cnvd

Intel Processors Information Disclosure Vulnerability (CNVD-2022-05687)

2021-10-13 00:00:00

intel

2020.2 IPU - Intel® RAPL Interface Advisory

2021-05-11 00:00:00

suse

Security update for ucode-intel (moderate)

2020-11-14 00:00:00

Security update for ucode-intel (moderate)

2020-11-15 00:00:00

Security update for ucode-intel (important)

2020-11-29 00:00:00

lenovo

Intel RAPL Interface Advisory - Lenovo Support NL

2020-11-04 15:35:53

Intel RAPL Interface Advisory - Lenovo Support US

2020-11-04 15:35:53

Multi-vendor BIOS Security Vulnerabilities (November 2020) - Lenovo Support NL

2020-11-04 15:47:25

oraclelinux

Unbreakable Enterprise kernel security update

2020-11-10 00:00:00

microcode_ctl security, bug fix, and enhancement update

2020-11-17 00:00:00

microcode_ctl security, bug fix and enhancement update

2020-11-17 00:00:00

K32512431 : Linux kernel vulnerabilities CVE-2020-8694 and CVE-2020-8695

2020-11-24 00:00:00

centos

microcode_ctl security update

2020-11-19 13:47:47

microcode_ctl security update

2021-08-09 15:29:53

redhat

(RHSA-2020:5182) Moderate: microcode_ctl security, bug fix and enhancement update

2020-11-23 17:17:44

(RHSA-2020:5083) Moderate: microcode_ctl security, bug fix, and enhancement update

2020-11-11 09:27:49

(RHSA-2020:5369) Moderate: microcode_ctl security, bug fix and enhancement update

2020-12-08 10:01:53

ubuntu

Intel Microcode vulnerabilities

2020-11-11 00:00:00

Intel Microcode vulnerabilities

2021-05-17 00:00:00

Intel Microcode regression

2020-11-12 00:00:00

osv

containerd allows RAPL to be accessible to a container

2023-12-19 21:17:06

intel-microcode - security update

2021-02-06 00:00:00

intel-microcode vulnerabilities

2020-11-11 06:56:58

cloudfoundry

USN-4628-3: Intel Microcode vulnerabilities | Cloud Foundry

2021-06-11 00:00:00

USN-4628-1: Intel Microcode vulnerabilities | Cloud Foundry

2020-12-11 00:00:00

USN-4628-2: Intel Microcode regression | Cloud Foundry

2020-12-11 00:00:00

github

/sys/devices/virtual/powercap accessible by default to containers

2023-10-30 15:25:44

containerd allows RAPL to be accessible to a container

2023-12-19 21:17:06

threatpost

Nvidia Warns Windows Gamers of GeForce NOW Flaw

2020-11-11 19:03:15

debian

[SECURITY] [DLA 2546-1] intel-microcode security update

2021-02-05 18:48:10

mageia

Updated microcode package fixes security vulnerabilities

2020-11-14 00:20:36

rocky

microcode_ctl security, bug fix and enhancement update

2021-08-09 09:19:57

almalinux

Important: microcode_ctl security, bug fix and enhancement update

2021-08-09 09:19:57

HPSBHF03705 rev. 6 - BIOS November 2020 Security Updates

2020-11-09 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

5.7 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.8%

JSON

Related for CVELIST:CVE-2020-8695