CVE-2020-0551

MEDIUM

Intel Xeon 4820 V2 - Information Disclosure

Title source: rule

Description

Load value injection in some Intel(R) Processors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. The list of affected products is provided in intel-sa-00334: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00334.html

Exploits (1)

nomisec WORKING POC 26 stars

by bitdefender · poc

https://github.com/bitdefender/lvi-lfb-attack-poc

View Code ZIP pw:eip

References (2)

Core 2

Core References

Vendor Advisory x_refsource_confirm

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00334.html

Third Party Advisory x_refsource_confirm

https://security.netapp.com/advisory/ntap-20200320-0002/

Scores

CVSS v3 5.6

EPSS 0.0395

EPSS Percentile 88.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

Details

Status published

Products (50)

intel/atom_c2308

intel/atom_c2316

intel/atom_c2338

intel/atom_c2350

intel/atom_c2358

intel/atom_c2508

intel/atom_c2516

intel/atom_c2518

intel/atom_c2530

intel/atom_c2538

... and 40 more

Published Mar 12, 2020

Tracked Since Feb 18, 2026