CVE & CISA-KEV Catalog

CVE-2020-8742

MEDIUM
6.7
CVSS v3
NVD

Description

Improper input validation in the firmware for Intel(R) NUCs may allow a privileged user to potentially enable escalation of privilege via local access.

How to fix

Remediation Available
cd1c32gk firmwareNVD
Affected:< gkaplcpx.86aFixed in:gkaplcpx.86aCVE-2020-8742derived from NVD
cd1c64gk firmwareNVD
Affected:< gkaplcpx.86aFixed in:gkaplcpx.86aCVE-2020-8742derived from NVD
cd1p64gk firmwareNVD
Affected:< gkaplcpx.86aFixed in:gkaplcpx.86aCVE-2020-8742derived from NVD
de3815tybe firmwareNVD
Affected:< tybyt10h.86aFixed in:tybyt10h.86aCVE-2020-8742derived from NVD
de3815tykhe firmwareNVD
Affected:< tybyt10h.86aFixed in:tybyt10h.86aCVE-2020-8742derived from NVD
nuc5cpyh firmwareNVD
Affected:< pybswcel.86aFixed in:pybswcel.86aCVE-2020-8742derived from NVD
nuc5i3mybe firmwareNVD
Affected:< mybdwi5v.86aFixed in:mybdwi5v.86aCVE-2020-8742derived from NVD
nuc5i3myhe firmwareNVD
Affected:< mybdwi5v.86aFixed in:mybdwi5v.86aCVE-2020-8742derived from NVD
nuc5i3ryh firmwareNVD
Affected:< pybswcel.86aFixed in:pybswcel.86aCVE-2020-8742derived from NVD
nuc5i3ryhs firmwareNVD
Affected:< pybswcel.86aFixed in:pybswcel.86aCVE-2020-8742derived from NVD
nuc5i3ryhsn firmwareNVD
Affected:< pybswcel.86aFixed in:pybswcel.86aCVE-2020-8742derived from NVD
nuc5i3ryk firmwareNVD
Affected:< pybswcel.86aFixed in:pybswcel.86aCVE-2020-8742derived from NVD
nuc5i5mybe firmwareNVD
Affected:< mybdwi5v.86aFixed in:mybdwi5v.86aCVE-2020-8742derived from NVD
nuc5i5myhe firmwareNVD
Affected:< mybdwi5v.86aFixed in:mybdwi5v.86aCVE-2020-8742derived from NVD
nuc5i5ryh firmwareNVD
Affected:< pybswcel.86aFixed in:pybswcel.86aCVE-2020-8742derived from NVD
nuc5i5ryhs firmwareNVD
Affected:< pybswcel.86aFixed in:pybswcel.86aCVE-2020-8742derived from NVD
nuc5i5ryk firmwareNVD
Affected:< pybswcel.86aFixed in:pybswcel.86aCVE-2020-8742derived from NVD
nuc5i7ryh firmwareNVD
Affected:< pybswcel.86aFixed in:pybswcel.86aCVE-2020-8742derived from NVD
nuc5pgyh firmwareNVD
Affected:< pybswcel.86aFixed in:pybswcel.86aCVE-2020-8742derived from NVD
nuc5ppyh firmwareNVD
Affected:< pybswcel.86aFixed in:pybswcel.86aCVE-2020-8742derived from NVD
nuc6cayh firmwareNVD
Affected:< ayaplcel.86aFixed in:ayaplcel.86aCVE-2020-8742derived from NVD
nuc6cays firmwareNVD
Affected:< ayaplcel.86aFixed in:ayaplcel.86aCVE-2020-8742derived from NVD
nuc6i7kyk firmwareNVD
Affected:< kyskli70.86aFixed in:kyskli70.86aCVE-2020-8742derived from NVD
nuc7cjyh firmwareNVD
Affected:< jyglkcpx.86aFixed in:jyglkcpx.86aCVE-2020-8742derived from NVD
nuc7cjysal firmwareNVD
Affected:< jyglkcpx.86aFixed in:jyglkcpx.86aCVE-2020-8742derived from NVD
nuc7i3bnb firmwareNVD
Affected:< bnkbl357.86aFixed in:bnkbl357.86aCVE-2020-8742derived from NVD
nuc7i3bnh firmwareNVD
Affected:< bnkbl357.86aFixed in:bnkbl357.86aCVE-2020-8742derived from NVD
nuc7i3bnhx1 firmwareNVD
Affected:< bnkbl357.86aFixed in:bnkbl357.86aCVE-2020-8742derived from NVD
nuc7i3bnhxf firmwareNVD
Affected:< bnkbl357.86aFixed in:bnkbl357.86aCVE-2020-8742derived from NVD
nuc7i3bnk firmwareNVD
Affected:< bnkbl357.86aFixed in:bnkbl357.86aCVE-2020-8742derived from NVD
nuc7i3dnbe firmwareNVD
Affected:< dnkbli30.86aFixed in:dnkbli30.86aCVE-2020-8742derived from NVD
nuc7i3dnhe firmwareNVD
Affected:< dnkbli30.86aFixed in:dnkbli30.86aCVE-2020-8742derived from NVD
nuc7i3dnhnc firmwareNVD
Affected:< dnkbli30.86aFixed in:dnkbli30.86aCVE-2020-8742derived from NVD
nuc7i3dnke firmwareNVD
Affected:< dnkbli30.86aFixed in:dnkbli30.86aCVE-2020-8742derived from NVD
nuc7i3dnktc firmwareNVD
Affected:< dnkbli30.86aFixed in:dnkbli30.86aCVE-2020-8742derived from NVD
nuc7i5bnb firmwareNVD
Affected:< bnkbl357.86aFixed in:bnkbl357.86aCVE-2020-8742derived from NVD
nuc7i5bnh firmwareNVD
Affected:< bnkbl357.86aFixed in:bnkbl357.86aCVE-2020-8742derived from NVD
nuc7i5bnhx1 firmwareNVD
Affected:< bnkbl357.86aFixed in:bnkbl357.86aCVE-2020-8742derived from NVD
nuc7i5bnhxf firmwareNVD
Affected:< bnkbl357.86aFixed in:bnkbl357.86aCVE-2020-8742derived from NVD
nuc7i5bnk firmwareNVD
Affected:< bnkbl357.86aFixed in:bnkbl357.86aCVE-2020-8742derived from NVD
nuc7i5bnkp firmwareNVD
Affected:< bnkbl357.86aFixed in:bnkbl357.86aCVE-2020-8742derived from NVD
nuc7i5dnbe firmwareNVD
Affected:< dnkbli5v.86aFixed in:dnkbli5v.86aCVE-2020-8742derived from NVD
nuc7i5dnhe firmwareNVD
Affected:< dnkbli5v.86aFixed in:dnkbli5v.86aCVE-2020-8742derived from NVD
nuc7i5dnke firmwareNVD
Affected:< dnkbli5v.86aFixed in:dnkbli5v.86aCVE-2020-8742derived from NVD
nuc7i5dnkpc firmwareNVD
Affected:< dnkbli5v.86aFixed in:dnkbli5v.86aCVE-2020-8742derived from NVD
nuc7i7bnb firmwareNVD
Affected:< bnkbl357.86aFixed in:bnkbl357.86aCVE-2020-8742derived from NVD
nuc7i7bnh firmwareNVD
Affected:< bnkbl357.86aFixed in:bnkbl357.86aCVE-2020-8742derived from NVD
nuc7i7bnhx1 firmwareNVD
Affected:< bnkbl357.86aFixed in:bnkbl357.86aCVE-2020-8742derived from NVD
nuc7i7bnhxg firmwareNVD
Affected:< bnkbl357.86aFixed in:bnkbl357.86aCVE-2020-8742derived from NVD
nuc7i7bnkq firmwareNVD
Affected:< bnkbl357.86aFixed in:bnkbl357.86aCVE-2020-8742derived from NVD
nuc7i7dnbe firmwareNVD
Affected:< dnkbli7v.86aFixed in:dnkbli7v.86aCVE-2020-8742derived from NVD
nuc7i7dnhe firmwareNVD
Affected:< dnkbli7v.86aFixed in:dnkbli7v.86aCVE-2020-8742derived from NVD
nuc7i7dnke firmwareNVD
Affected:< dnkbli7v.86aFixed in:dnkbli7v.86aCVE-2020-8742derived from NVD
nuc7pjyh firmwareNVD
Affected:< jyglkcpx.86aFixed in:jyglkcpx.86aCVE-2020-8742derived from NVD
nuc8i3beh firmwareNVD
Affected:< becfl357.86aFixed in:becfl357.86aCVE-2020-8742derived from NVD
nuc8i3behfa firmwareNVD
Affected:< becfl357.86aFixed in:becfl357.86aCVE-2020-8742derived from NVD
nuc8i3behs firmwareNVD
Affected:< becfl357.86aFixed in:becfl357.86aCVE-2020-8742derived from NVD
nuc8i3bek firmwareNVD
Affected:< becfl357.86aFixed in:becfl357.86aCVE-2020-8742derived from NVD
nuc8i5beh firmwareNVD
Affected:< becfl357.86aFixed in:becfl357.86aCVE-2020-8742derived from NVD
nuc8i5behfa firmwareNVD
Affected:< becfl357.86aFixed in:becfl357.86aCVE-2020-8742derived from NVD
nuc8i5behs firmwareNVD
Affected:< becfl357.86aFixed in:becfl357.86aCVE-2020-8742derived from NVD
nuc8i5bek firmwareNVD
Affected:< becfl357.86aFixed in:becfl357.86aCVE-2020-8742derived from NVD
nuc8i5bekpa firmwareNVD
Affected:< becfl357.86aFixed in:becfl357.86aCVE-2020-8742derived from NVD
nuc8i7beh firmwareNVD
Affected:< becfl357.86aFixed in:becfl357.86aCVE-2020-8742derived from NVD
nuc8i7behga firmwareNVD
Affected:< becfl357.86aFixed in:becfl357.86aCVE-2020-8742derived from NVD
nuc8i7bek firmwareNVD
Affected:< becfl357.86aFixed in:becfl357.86aCVE-2020-8742derived from NVD
nuc8i7bekqa firmwareNVD
Affected:< becfl357.86aFixed in:becfl357.86aCVE-2020-8742derived from NVD
nuc8i7hnk firmwareNVD
Affected:< hnkbli70.86aFixed in:hnkbli70.86aCVE-2020-8742derived from NVD
nuc8i7hnkqc firmwareNVD
Affected:< hnkbli70.86aFixed in:hnkbli70.86aCVE-2020-8742derived from NVD
nuc8i7hvk firmwareNVD
Affected:< hnkbli70.86aFixed in:hnkbli70.86aCVE-2020-8742derived from NVD
nuc8i7hvkva firmwareNVD
Affected:< hnkbli70.86aFixed in:hnkbli70.86aCVE-2020-8742derived from NVD
nuc8i7hvkvaw firmwareNVD
Affected:< hnkbli70.86aFixed in:hnkbli70.86aCVE-2020-8742derived from NVD
stk2mv64cc firmwareNVD
Affected:< ccsklm5v.86aFixed in:ccsklm5v.86aCVE-2020-8742derived from NVD

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorLocal
Attack ComplexityLow
Privileges RequiredHigh
User InteractionNone
ScopeUnchanged

Impact

ConfidentialityHigh
IntegrityHigh
AvailabilityHigh

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Exploit Intelligence

0.32%probability of exploitation in 30 days
24thpercentile

Low risk: more likely to be exploited than 24% of all known CVEs.

References

Patch1

Related Vulnerabilities

Other CWE-20 (Improper Input Validation) vulnerabilities, ordered by exploit likelihood. View all

CVESeverityCVSSEPSSExploitedFix
CVE-2024-3400Critical10.0100%KEV + Ransom-
CVE-2021-45105Medium5.9100%-Fix
CVE-2021-44228Critical10.0100%KEV + RansomFix
CVE-2021-21985Critical9.8100%KEV + RansomFix
CVE-2018-7600Critical9.8100%KEV + RansomFix
CVE-2020-3452High7.5100%KEVFix
Embed a live status badge for CVE-2020-8742
CVE-2020-8742 severity badge

Markdown

[![CVE-2020-8742](https://tridentstack.com/cve/badge/CVE-2020-8742.svg)](https://tridentstack.com/cve/CVE-2020-8742)

HTML

<a href="https://tridentstack.com/cve/CVE-2020-8742"><img src="https://tridentstack.com/cve/badge/CVE-2020-8742.svg" alt="CVE-2020-8742"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2024-11-21.