PT-2021-3476 · Intel+7 · Intel Vt-D+7

Published

2021-06-08

Updated

2024-06-15

CVE-2020-24489

CVSS v3.1

8.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Intel Virtualization Technology for Directed I/O (VT-d) (affected versions not specified)

Description The issue is related to incomplete cleanup of temporary or auxiliary resources in Intel VT-d products. This could allow an authenticated user to potentially enable escalation of privilege via local access.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-459

Related Identifiers

BDU:2021-03391

CESA-2021_2308

CESA-2021_3027

CESA-2021_3028

CVE-2020-24489

DLA-2718-1

DSA-4934-1

MGASA-2021-0256

OESA-2022-1773

OPENSUSE-SU-2021:0876-1

OPENSUSE-SU-2021:1933-1

OPENSUSE-SU-2021_0876-1

OPENSUSE-SU-2021_1933-1

OPENSUSE-SU-2024:11478-1

RHSA-2021:2299

RHSA-2021:2300

RHSA-2021:2301

RHSA-2021:2302

RHSA-2021:2303

RHSA-2021:2304

RHSA-2021:2305

RHSA-2021:2306

RHSA-2021:2307

RHSA-2021:2308

RHSA-2021:2519

RHSA-2021:2522

RHSA-2021:3027

RHSA-2021:3028

RHSA-2021:3029

RHSA-2021:3176

RHSA-2021:3255

RHSA-2021:3317

RHSA-2021:3322

RHSA-2021:3323

RHSA-2021:3364

RHSA-2021_2299

RHSA-2021_2305

RHSA-2021_2308

RHSA-2021_3027

RHSA-2021_3028

RLSA-2021:2308

RLSA-2021:3027

SUSE-SU-2021:14758-1

SUSE-SU-2021:1929-1

SUSE-SU-2021:1930-1

SUSE-SU-2021:1931-1

SUSE-SU-2021:1932-1

SUSE-SU-2021:1933-1

SUSE-SU-2021_14758-1

SUSE-SU-2021_1929-1

SUSE-SU-2021_1930-1

SUSE-SU-2021_1931-1

SUSE-SU-2021_1932-1

SUSE-SU-2021_1933-1

USN-4985-1

Affected Products

Astra Linux

Centos

Intel Vt-D

Linuxmint

Red Hat

Rocky Linux

Suse

Ubuntu

PT-2021-3476 · Intel+7 · Intel Vt-D+7

CVE-2020-24489

Weakness Enumeration

Related Identifiers

Affected Products

References · 89