CVE-2020-0548LOW
Description
Cleanup errors in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
References
http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00016.html
https://lists.debian.org/debian-lts-announce/2020/06/msg00019.html
https://security.netapp.com/advisory/ntap-20200210-0004/
https://usn.ubuntu.com/4385-1/
https://www.debian.org/security/2020/dsa-4701
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00329.html
Details
Source: MITRE
Published: 2020-01-28
Updated: 2020-06-26
Type: CWE-200
Risk Information
CVSS v2.0
Base Score: 2.1
Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N
Impact Score: 2.9
Exploitability Score: 3.9
Severity: LOW
CVSS v3.0
Base Score: 5.5
Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Impact Score: 3.6
Exploitability Score: 1.8
Severity: MEDIUM
Vulnerable Software
Configuration 1
AND
OR
OR
Configuration 2
AND
OR
OR
Configuration 3
AND
OR
OR
Configuration 4
AND
OR
OR
Configuration 5
AND
OR
OR
Configuration 6
AND
OR
OR
Configuration 7
AND
OR
OR
Configuration 8
AND
OR
OR
Configuration 9
AND
OR
OR
Configuration 10
AND
OR
OR
Configuration 11
AND
OR
OR
Configuration 12
AND
OR
OR
Configuration 13
AND
OR
OR
Configuration 14
AND
OR
OR
Configuration 15
AND
OR
OR
Configuration 16
AND
OR
OR
Configuration 17
AND
OR
OR
Configuration 18
AND
OR
OR
Configuration 19
AND
OR
OR
Configuration 20
AND
OR
OR
Configuration 21
AND
OR
OR
Configuration 22
AND
OR
OR
Configuration 23
AND
OR
OR
Configuration 24
AND
OR
OR
Configuration 25
AND
OR
OR
Configuration 26
AND
OR
OR
Configuration 27
AND
OR
OR
Configuration 28
AND
OR
OR
Configuration 29
AND
OR
OR
Configuration 30
AND
OR
OR
Configuration 31
AND
OR
OR
Configuration 32
AND
OR
OR
Configuration 33
AND
OR
OR
Configuration 34
AND
OR
OR
Configuration 35
AND
OR
OR
Configuration 36
AND
OR
OR
Configuration 37
AND
OR
OR
Configuration 38
AND
OR
OR
Configuration 39
AND
OR
OR
Configuration 40
AND
OR
OR
Configuration 41
AND
OR
OR
Configuration 42
AND
OR
OR
Configuration 43
AND
OR
OR
Configuration 44
AND
OR
OR
Configuration 45
AND
OR
OR
Configuration 46
AND
OR
OR
Configuration 47
AND
OR
OR
Configuration 48
AND
OR
OR
Configuration 49
AND
OR
OR
Configuration 50
AND
OR
OR
Configuration 51
AND
OR
OR
Configuration 52
AND
OR
OR
Configuration 53
AND
OR
OR
Configuration 54
AND
OR
OR
Configuration 55
AND
OR
OR
Configuration 56
AND
OR
OR
Configuration 57
AND
OR
OR
Configuration 58
AND
OR
OR
Configuration 59
AND
OR
OR
Configuration 60
AND
OR
OR
Configuration 61
AND
OR
OR
Configuration 62
AND
OR
OR
Configuration 63
AND
OR
OR
Configuration 64
AND
OR
OR
Configuration 65
AND
OR
OR
Configuration 66
AND
OR
OR
Configuration 67
AND
OR
OR
Configuration 68
AND
OR
OR
Configuration 69
AND
OR
OR
Configuration 70
AND
OR
OR
Configuration 71
AND
OR
OR
Configuration 72
AND
OR
OR
Configuration 73
AND
OR
OR
Configuration 74
AND
OR
OR
Configuration 75
AND
OR
OR
Configuration 76
AND
OR
OR
Configuration 77
AND
OR
OR
Configuration 78
AND
OR
OR
Configuration 79
AND
OR
OR
Configuration 80
AND
OR
OR
Configuration 81
AND
OR
OR
Configuration 82
AND
OR
OR
Configuration 83
AND
OR
OR
Configuration 84
AND
OR
OR
Configuration 85
AND
OR
OR
Configuration 86
AND
OR
OR
Configuration 87
AND
OR
OR
Configuration 88
AND
OR
OR
Configuration 89
AND
OR
OR
Configuration 90
AND
OR
OR
Configuration 91
AND
OR
OR
Configuration 92
AND
OR
OR
Configuration 93
AND
OR
OR
Configuration 94
AND
OR
OR
Configuration 95
AND
OR
OR
Configuration 96
AND
OR
OR
Configuration 97
AND
OR
OR
Configuration 98
AND
OR
OR
Configuration 99
AND
OR
OR
Configuration 100
AND
OR
OR
Configuration 101
AND
OR
OR
Configuration 102
AND
OR
OR
Configuration 103
AND
OR
OR
Configuration 104
AND
OR
OR
Configuration 105
AND
OR
OR
Configuration 106
AND
OR
OR
Configuration 107
AND
OR
OR
Configuration 108
AND
OR
OR
Configuration 109
AND
OR
OR
Configuration 110
AND
OR
OR
Configuration 111
AND
OR
OR
Configuration 112
AND
OR
OR
Configuration 113
AND
OR
OR
Configuration 114
AND
OR
OR
Configuration 115
AND
OR
OR
Configuration 116
AND
OR
OR
Configuration 117
AND
OR
OR
Configuration 118
AND
OR
OR
Configuration 119
AND
OR
OR
Configuration 120
AND
OR
OR
Configuration 121
AND
OR
OR
Configuration 122
AND
OR
OR
Configuration 123
AND
OR
OR
Configuration 124
AND
OR
OR
Configuration 125
AND
OR
OR
Configuration 126
AND
OR
OR
Configuration 127
AND
OR
OR
Configuration 128
AND
OR
OR
Configuration 129
AND
OR
OR
Configuration 130
AND
OR
OR
Configuration 131
AND
OR
OR
Configuration 132
AND
OR
OR
Configuration 133
AND
OR
OR
Configuration 134
AND
OR
OR
Configuration 135
AND
OR
OR
Configuration 136
AND
OR
OR
Configuration 137
AND
OR
OR
Configuration 138
AND
OR
OR
Configuration 139
AND
OR
OR
Configuration 140
AND
OR
OR
Configuration 141
AND
OR
OR
Configuration 142
AND
OR
OR
Configuration 143
AND
OR
OR
Configuration 144
AND
OR
OR
Configuration 145
AND
OR
OR
Configuration 146
AND
OR
OR
Configuration 147
AND
OR
OR
Configuration 148
AND
OR
OR
Configuration 149
AND
OR
OR
Configuration 150
AND
OR
OR
Configuration 151
AND
OR
OR
Configuration 152
AND
OR
OR
Configuration 153
AND
OR
OR
Configuration 154
AND
OR
OR
Configuration 155
AND
OR
OR
Configuration 156
AND
OR
OR
Configuration 157
AND
OR
OR
Configuration 158
AND
OR
OR
Configuration 159
AND
OR
OR
Configuration 160
AND
OR
OR
Configuration 161
AND
OR
OR
Configuration 162
AND
OR
OR
Configuration 163
AND
OR
OR
Configuration 164
AND
OR
OR
Configuration 165
AND
OR
OR
Configuration 166
AND
OR
OR
Configuration 167
AND
OR
OR
Configuration 168
AND
OR
OR
Configuration 169
AND
OR
OR
Configuration 170
AND
OR
OR
Configuration 171
AND
OR
OR
Configuration 172
AND
OR
OR
Configuration 173
AND
OR
OR
Configuration 174
AND
OR
OR
Configuration 175
AND
OR
OR
Configuration 176
AND
OR
OR
Configuration 177
AND
OR
OR
Configuration 178
AND
OR
OR
Configuration 179
AND
OR
OR
Configuration 180
AND
OR
OR
Configuration 181
AND
OR
OR
Configuration 182
AND
OR
OR
Configuration 183
AND
OR
OR
Configuration 184
AND
OR
OR
Configuration 185
AND
OR
OR
Configuration 186
AND
OR
OR
Configuration 187
AND
OR
OR
Configuration 188
AND
OR
OR
Configuration 189
AND
OR
OR
Configuration 190
AND
OR
OR
Configuration 191
AND
OR
OR
Configuration 192
AND
OR
OR
Configuration 193
AND
OR
OR
Configuration 194
AND
OR
OR
Configuration 195
AND
OR
OR
Configuration 196
AND
OR
OR
Configuration 197
AND
OR
OR
Configuration 198
AND
OR
OR
Configuration 199
AND
OR
OR
Configuration 200
AND
OR
OR
Configuration 201
AND
OR
OR
Configuration 202
AND
OR
OR
Configuration 203
AND
OR
OR
Configuration 204
AND
OR
OR
Configuration 205
AND
OR
OR
Configuration 206
AND
OR
OR
Configuration 207
AND
OR
OR
Configuration 208
AND
OR
OR
Configuration 209
AND
OR
OR
Configuration 210
AND
OR
OR
Configuration 211
AND
OR
OR
Configuration 212
AND
OR
OR
Configuration 213
AND
OR
OR
Configuration 214
AND
OR
OR
Configuration 215
AND
OR
OR
Configuration 216
AND
OR
OR
Configuration 217
AND
OR
OR
Configuration 218
AND
OR
OR
Configuration 219
AND
OR
OR
Configuration 220
AND
OR
OR
Configuration 221
AND
OR
OR
Configuration 222
AND
OR
OR
Configuration 223
AND
OR
OR
Configuration 224
AND
OR
OR
Configuration 225
AND
OR
OR
Configuration 226
AND
OR
OR
Configuration 227
AND
OR
OR
Configuration 228
AND
OR
OR
Configuration 229
AND
OR
OR
Configuration 230
AND
OR
OR
Configuration 231
AND
OR
OR
Configuration 232
AND
OR
OR
Configuration 233
AND
OR
OR
Configuration 234
AND
OR
OR
Configuration 235
AND
OR
OR
Configuration 236
AND
OR
OR
Configuration 237
AND
OR
OR
Configuration 238
AND
OR
OR
Configuration 239
AND
OR
OR
Configuration 240
AND
OR
OR
Configuration 241
AND
OR
OR
Configuration 242
AND
OR
OR
Configuration 243
AND
OR
OR
Configuration 244
AND
OR
OR
Configuration 245
AND
OR
OR
Configuration 246
AND
OR
OR
Configuration 247
AND
OR
OR
Configuration 248
AND
OR
OR
Configuration 249
AND
OR
OR
Configuration 250
AND
OR
OR
Configuration 251
AND
OR
OR
Configuration 252
AND
OR
OR
Configuration 253
AND
OR
OR
Configuration 254
AND
OR
OR
Configuration 255
AND
OR
OR
Configuration 256
AND
OR
OR
Configuration 257
AND
OR
OR
Configuration 258
AND
OR
OR
Configuration 259
AND
OR
OR
Configuration 260
AND
OR
OR
Configuration 261
AND
OR
OR
Configuration 262
AND
OR
OR
Configuration 263
AND
OR
OR
Configuration 264
AND
OR
OR
Configuration 265
AND
OR
OR
Configuration 266
AND
OR
OR
Configuration 267
AND
OR
OR
Configuration 268
AND
OR
OR
Configuration 269
AND
OR
OR
Configuration 270
AND
OR
OR
Configuration 271
AND
OR
OR
Configuration 272
AND
OR
OR
Configuration 273
AND
OR
OR
Configuration 274
AND
OR
OR
Configuration 275
AND
OR
OR
Configuration 276
AND
OR
OR
Configuration 277
AND
OR
OR
Configuration 278
AND
OR
OR
Configuration 279
AND
OR
OR
Configuration 280
AND
OR
OR
Configuration 281
AND
OR
OR
Configuration 282
AND
OR
OR
Configuration 283
AND
OR
OR
Configuration 284
AND
OR
OR
Configuration 285
AND
OR
OR
Configuration 286
AND
OR
OR
Configuration 287
AND
OR
OR
Configuration 288
AND
OR
OR
Configuration 289
AND
OR
OR
Configuration 290
AND
OR
OR
Configuration 291
AND
OR
OR
Configuration 292
AND
OR
OR
Configuration 293
AND
OR
OR
Configuration 294
AND
OR
OR
Configuration 295
AND
OR
OR
Configuration 296
AND
OR
OR
Configuration 297
AND
OR
OR
Configuration 298
AND
OR
OR
Configuration 299
AND
OR
OR
Configuration 300
AND
OR
OR
Configuration 301
AND
OR
OR
Configuration 302
AND
OR
OR
Configuration 303
AND
OR
OR
Configuration 304
AND
OR
OR
Configuration 305
AND
OR
OR
Configuration 306
AND
OR
OR
Configuration 307
AND
OR
OR
Configuration 308
AND
OR
OR
Configuration 309
AND
OR
OR
Configuration 310
AND
OR
OR
Configuration 311
AND
OR
OR
Configuration 312
AND
OR
OR
Configuration 313
AND
OR
OR
Configuration 314
AND
OR
OR
Configuration 315
AND
OR
OR
Configuration 316
AND
OR
OR
Configuration 317
AND
OR
OR
Configuration 318
AND
OR
OR
Configuration 319
AND
OR
OR
Configuration 320
AND
OR
OR
Configuration 321
AND
OR
OR
Configuration 322
AND
OR
OR
Configuration 323
AND
OR
OR
Configuration 324
AND
OR
OR
Configuration 325
AND
OR
OR
Configuration 326
AND
OR
OR
Configuration 327
AND
OR
OR
Configuration 328
AND
OR
OR
Configuration 329
AND
OR
OR
Configuration 330
AND
OR
OR
Configuration 331
AND
OR
OR
Configuration 332
AND
OR
OR
Configuration 333
AND
OR
OR
Configuration 334
AND
OR
OR
Configuration 335
AND
OR
OR
Configuration 336
AND
OR
OR
Configuration 337
AND
OR
OR
Configuration 338
AND
OR
OR
Configuration 339
AND
OR
OR
Configuration 340
AND
OR
OR
Configuration 341
AND
OR
OR
Configuration 342
AND
OR
OR
Configuration 343
AND
OR
OR
Configuration 344
AND
OR
OR
Configuration 345
AND
OR
OR
Configuration 346
AND
OR
OR
Configuration 347
AND
OR
OR
Configuration 348
AND
OR
OR
Configuration 349
AND
OR
OR
Configuration 350
AND
OR
OR
Configuration 351
AND
OR
OR
Configuration 352
AND
OR
OR
Configuration 353
AND
OR
OR
Configuration 354
AND
OR
OR
Configuration 355
AND
OR
OR
Configuration 356
AND
OR
OR
Configuration 357
AND
OR
OR
Configuration 358
AND
OR
OR
Configuration 359
AND
OR
OR
Configuration 360
AND
OR
OR
Configuration 361
AND
OR
OR
Configuration 362
AND
OR
OR
Configuration 363
AND
OR
OR
Configuration 364
AND
OR
OR
Configuration 365
AND
OR
OR
Configuration 366
AND
OR
OR
Configuration 367
AND
OR
OR
Configuration 368
AND
OR
OR
Configuration 369
AND
OR
OR
Configuration 370
AND
OR
OR
Configuration 371
AND
OR
OR
Configuration 372
AND
OR
OR
Configuration 373
AND
OR
OR
Configuration 374
AND
OR
OR
Configuration 375
AND
OR
OR
Configuration 376
AND
OR
OR
Configuration 377
AND
OR
OR
Configuration 378
AND
OR
OR
Configuration 379
AND
OR
OR
Configuration 380
AND
OR
OR
Configuration 381
AND
OR
OR
Configuration 382
AND
OR
OR
Configuration 383
AND
OR
OR
Configuration 384
AND
OR
OR
Configuration 385
AND
OR
OR
Configuration 386
AND
OR
OR
Configuration 387
AND
OR
OR
Configuration 388
AND
OR
OR
Configuration 389
AND
OR
OR
Configuration 390
AND
OR
OR
Configuration 391
AND
OR
OR
Configuration 392
AND
OR
OR
Configuration 393
AND
OR
OR
Configuration 394
AND
OR
OR
Configuration 395
AND
OR
OR
Configuration 396
AND
OR
OR
Configuration 397
AND
OR
OR
Configuration 398
AND
OR
OR
Configuration 399
AND
OR
OR
Configuration 400
AND
OR
OR
Configuration 401
AND
OR
OR
Configuration 402
AND
OR
OR
Configuration 403
AND
OR
OR
Configuration 404
AND
OR
OR
Configuration 405
AND
OR
OR
Configuration 406
AND
OR
OR
Configuration 407
AND
OR
OR
Configuration 408
AND
OR
OR
Configuration 409
AND
OR
OR
Configuration 410
AND
OR
OR
Configuration 411
AND
OR
OR
Configuration 412
AND
OR
OR
Configuration 413
AND
OR
OR
Configuration 414
AND
OR
OR
Configuration 415
AND
OR
OR
Configuration 416
AND
OR
OR
Configuration 417
AND
OR
OR
Configuration 418
AND
OR
OR
Configuration 419
AND
OR
OR
Configuration 420
AND
OR
OR
Configuration 421
AND
OR
OR
Configuration 422
AND
OR
OR
Configuration 423
AND
OR
OR
Configuration 424
AND
OR
OR
Configuration 425
AND
OR
OR
Configuration 426
AND
OR
OR
Configuration 427
AND
OR
OR
Configuration 428
AND
OR
OR
Configuration 429
AND
OR
OR
Configuration 430
AND
OR
OR
Configuration 431
AND
OR
OR
Configuration 432
AND
OR
OR
Configuration 433
AND
OR
OR
Configuration 434
AND
OR
OR
Configuration 435
AND
OR
OR
Configuration 436
AND
OR
OR
Configuration 437
AND
OR
OR
Configuration 438
AND
OR
OR
Configuration 439
AND
OR
OR
Configuration 440
AND
OR
OR
Configuration 441
AND
OR
OR
Configuration 442
AND
OR
OR
Configuration 443
AND
OR
OR
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 147405 | NewStart CGSL MAIN 4.06 : microcode_ctl Multiple Vulnerabilities (NS-SA-2021-0001) | Nessus | NewStart CGSL Local Security Checks | low |
| 145997 | CentOS 8 : microcode_ctl (CESA-2020:2431) | Nessus | CentOS Local Security Checks | low |
| 143983 | NewStart CGSL CORE 5.04 / MAIN 5.04 : microcode_ctl Multiple Vulnerabilities (NS-SA-2020-0071) | Nessus | NewStart CGSL Local Security Checks | low |
| 143027 | RHEL 6 : microcode_ctl (RHSA-2020:2707) | Nessus | Red Hat Local Security Checks | low |
| 143005 | RHEL 7 : microcode_ctl (RHSA-2020:2679) | Nessus | Red Hat Local Security Checks | low |
| 138638 | Amazon Linux AMI : microcode_ctl (ALAS-2020-1396) | Nessus | Amazon Linux Local Security Checks | low |
| 138217 | RHEL 7 : microcode_ctl (RHSA-2020:2771) | Nessus | Red Hat Local Security Checks | low |
| 138159 | RHEL 7 : microcode_ctl (RHSA-2020:2842) | Nessus | Red Hat Local Security Checks | low |
| 138046 | Amazon Linux 2 : microcode_ctl (ALAS-2020-1444) | Nessus | Amazon Linux Local Security Checks | low |
| 137895 | RHEL 7 : microcode_ctl (RHSA-2020:2680) | Nessus | Red Hat Local Security Checks | low |
| 137883 | RHEL 7 : microcode_ctl (RHSA-2020:2758) | Nessus | Red Hat Local Security Checks | low |
| 137882 | RHEL 8 : microcode_ctl (RHSA-2020:2757) | Nessus | Red Hat Local Security Checks | low |
| 137842 | Fedora 31 : 2:microcode_ctl (2020-11ddbfbdf0) | Nessus | Fedora Local Security Checks | low |
| 137751 | RHEL 6 : microcode_ctl (RHSA-2020:2706) | Nessus | Red Hat Local Security Checks | low |
| 137749 | RHEL 8 : microcode_ctl (RHSA-2020:2677) | Nessus | Red Hat Local Security Checks | low |
| 137739 | OracleVM 3.3 / 3.4 : microcode_ctl (OVMSA-2020-0026) (Spectre) | Nessus | OracleVM Local Security Checks | low |
| 137695 | Oracle Linux 6 : microcode_ctl (ELSA-2020-2433) | Nessus | Oracle Linux Local Security Checks | low |
| 137694 | Oracle Linux 7 : microcode_ctl (ELSA-2020-2432) | Nessus | Oracle Linux Local Security Checks | low |
| 137688 | Fedora 32 : 2:microcode_ctl (2020-e8835a5f8e) | Nessus | Fedora Local Security Checks | low |
| 137614 | SUSE SLES12 Security Update : ucode-intel (SUSE-SU-2020:1601-1) | Nessus | SuSE Local Security Checks | low |
| 137610 | SUSE SLES12 Security Update : ucode-intel (SUSE-SU-2020:1595-1) | Nessus | SuSE Local Security Checks | low |
| 137609 | SUSE SLED15 / SLES15 Security Update : ucode-intel (SUSE-SU-2020:1589-1) | Nessus | SuSE Local Security Checks | low |
| 137418 | Debian DLA-2248-1 : intel-microcode security update | Nessus | Debian Local Security Checks | low |
| 137385 | Oracle Linux 8 : microcode_ctl (ELSA-2020-2431) | Nessus | Oracle Linux Local Security Checks | low |
| 137374 | Debian DSA-4701-1 : intel-microcode - security update | Nessus | Debian Local Security Checks | low |
| 137352 | Ubuntu 16.04 LTS / 18.04 LTS / 19.10 / 20.04 : Intel Microcode regression (USN-4385-2) | Nessus | Ubuntu Local Security Checks | low |
| 137351 | openSUSE Security Update : ucode-intel (openSUSE-2020-791) | Nessus | SuSE Local Security Checks | low |
| 137348 | Scientific Linux Security Update : microcode_ctl on SL6.x i386/x86_64 (20200610) | Nessus | Scientific Linux Local Security Checks | low |
| 137338 | CentOS 6 : microcode_ctl (CESA-2020:2433) | Nessus | CentOS Local Security Checks | low |
| 137337 | CentOS 7 : microcode_ctl (CESA-2020:2432) | Nessus | CentOS Local Security Checks | low |
| 137313 | RHEL 7 : microcode_ctl (RHSA-2020:2432) | Nessus | Red Hat Local Security Checks | low |
| 137295 | Ubuntu 16.04 LTS / 18.04 LTS / 19.10 / 20.04 : intel-microcode vulnerabilities (USN-4385-1) | Nessus | Ubuntu Local Security Checks | low |
| 137276 | RHEL 8 : microcode_ctl (RHSA-2020:2431) | Nessus | Red Hat Local Security Checks | low |
| 137273 | RHEL 6 : microcode_ctl (RHSA-2020:2433) | Nessus | Red Hat Local Security Checks | low |