PT-2020-4288 · Intel · Intel Core+1

Published

2020-09-08

Updated

2020-10-13

CVE-2019-14556

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions: Intel(R) Core(TM) versions 8th through 10th Generation Intel(R) Celeron(R) Processor versions 4000 & 5000 Series

Description: The issue is related to improper initialization in BIOS firmware, which may allow a privileged user to enable denial of service via local access. It is also associated with errors in resource management.

Recommendations: For Intel(R) Core(TM) versions 8th through 10th Generation: update the BIOS firmware to a version that addresses the improper initialization issue. For Intel(R) Celeron(R) Processor versions 4000 & 5000 Series: update the BIOS firmware to a version that addresses the improper initialization issue. As a temporary workaround, consider restricting local access to minimize the risk of exploitation.

Fix

Improper Initialization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-399CWE-665

Related Identifiers

BDU:2020-04781

CVE-2019-14556

Affected Products

Intel Celeron

Intel Core

PT-2020-4288 · Intel · Intel Core+1

CVE-2019-14556

Weakness Enumeration

Related Identifiers

Affected Products

References · 4