CVE-2020-8737

Improper buffer restrictions in the Intel(R) Stratix(R) 10 FPGA firmware provided with the Intel(R) Quartus(R) Prime Pro software before version 20.1 may allow an unauthenticated user to potentially enable escalation of privilege and/or information disclosure via physical access.
Configurations

Configuration 1 (hide)

cpe:2.3:a:intel:quartus_prime:*:*:*:*:pro:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:intel:stratix_10_fpga_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:stratix_10_fpga:-:*:*:*:*:*:*:*

History

21 Nov 2024, 05:39

Type Values Removed Values Added
References () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00388 - Patch, Vendor Advisory () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00388 - Patch, Vendor Advisory

Information

Published : 2020-11-12 18:15

Updated : 2024-11-21 05:39


NVD link : CVE-2020-8737

Mitre link : CVE-2020-8737

CVE.ORG link : CVE-2020-8737


JSON object : View

Products Affected

intel

  • stratix_10_fpga_firmware
  • stratix_10_fpga
  • quartus_prime