PT-2021-2096 · Intel+3 · Intel Ethernet E810 Adapter Drivers+3

Published

2021-02-09

Updated

2021-11-09

CVE-2020-24502

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions: Intel(R) Ethernet E810 Adapter drivers for Linux versions prior to 1.0.4 Intel(R) Ethernet E810 Adapter drivers for Windows versions prior to 1.4.29.0

Description: The issue is related to improper input validation in some Intel(R) Ethernet E810 Adapter drivers, which may allow an authenticated user to potentially enable a denial of service via local access. This could be exploited by an attacker to cause a disruption in service.

Recommendations: For Linux versions prior to 1.0.4, update to version 1.0.4 or later to resolve the issue. For Windows versions prior to 1.4.29.0, update to version 1.4.29.0 or later to resolve the issue.

Fix

DoS

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

ALSA-2021:4356

BDU:2021-00948

CESA-2021_4140

CESA-2021_4356

CVE-2020-24502

RHSA-2021:4140

RHSA-2021:4356

RHSA-2021_4140

RHSA-2021_4356

Affected Products

Almalinux

Centos

Intel Ethernet E810 Adapter Drivers

Red Hat

PT-2021-2096 · Intel+3 · Intel Ethernet E810 Adapter Drivers+3

CVE-2020-24502

Weakness Enumeration

Related Identifiers

Affected Products

References · 57