K20031768 : Intel hardware vulnerabilities CVE-2020-8737 CVE-2020-12312

2021-02-1700:00:00

my.f5.com

6.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

30.9%

JSON

Security Advisory Description

CVE-2020-8737

Improper buffer restrictions in the Intel® Stratix® 10 FPGA firmware provided with the Intel® Quartus® Prime Pro software before version 20.1 may allow an unauthenticated user to potentially enable escalation of privilege and/or information disclosure via physical access.

CVE-2020-12312

Improper buffer restrictions in the Intel® Stratix® 10 FPGA firmware provided with the Intel® Quartus® Prime Pro software before version 20.2 may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

Impact

There is no impact; F5 products are not affected by this vulnerability.

CPENameOperatorVersion
f5 ssl orchestratoreq14.1.0
f5 ssl orchestratoreq15.1.0
f5 ssl orchestratoreq15.1.1
f5 ssl orchestratoreq16.0.0
big-ip afmeq11.6.1
big-ip afmeq11.6.2
big-ip afmeq11.6.3
big-ip afmeq11.6.4
big-ip afmeq11.6.5
big-ip afmeq12.1.0

Name	Operator	Version
f5 ssl orchestrator	eq	14.1.0
f5 ssl orchestrator	eq	15.1.0
f5 ssl orchestrator	eq	15.1.1
f5 ssl orchestrator	eq	16.0.0
big-ip afm	eq	11.6.1
big-ip afm	eq	11.6.2
big-ip afm	eq	11.6.3
big-ip afm	eq	11.6.4
big-ip afm	eq	11.6.5
big-ip afm	eq	12.1.0

Rows per page:

1-10 of 1991