CVE-2020-8698 - OpenCVE

Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:L/AC:L/Au:N/C:P/I:N/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Intel	Core I5-1130g7 Core I7-1060g7 Core I5-1030g7 Core I7-1165g7 Core I3-1000g4 Core I3-1120g4 Core I3-1005g1 Core I5-1135g7 Core I7-1065g7 Core I3-1115g4 Core I3-1110g4 Core I5-1035g4 Core I3-1000g1 Microcode Core I7-1185g7 Core I7-1160g7 Core I5-1035g1 Core I5-1030g4 Core I5-1035g7 Core I3-1125g4
Siemens	Simatic Itp1000 Simatic Ipc647e Firmware Simatic Ipc477e Pro Firmware Simatic Ipc427e Firmware Simatic Itp1000 Firmware Simatic Field Pg M6 Firmware Simatic Ipc427e Simatic Ipc647e Simatic Ipc847e Firmware Simatic Field Pg M6 Simatic Ipc477e Simatic Field Pg M5 Simatic Ipc677e Firmware Simatic Ipc847e Simatic Ipc627e Firmware Simatic Field Pg M5 Firmware Simatic Ipc677e Simatic Ipc627e Simatic Ipc477e Pro Simatic Ipc477e Firmware
Netapp	Hci Storage Node Solidfire Bios Solidfire Clustered Data Ontap Hci Compute Node Bios Hci Storage Node Bios Hci Compute Node
Debian	Debian Linux
Fedoraproject	Fedora

Configuration 1 [-]

AND

cpe:2.3:o:intel:microcode:-:*:*:*:*:*:*:*

OR	cpe:2.3:h:intel:core_i3-1000g1:-:::::::*
	cpe:2.3:h:intel:core_i3-1000g4:-:::::::*
	cpe:2.3:h:intel:core_i3-1005g1:-:::::::*
	cpe:2.3:h:intel:core_i3-1110g4:-:::::::*
	cpe:2.3:h:intel:core_i3-1115g4:-:::::::*
	cpe:2.3:h:intel:core_i3-1120g4:-:::::::*
	cpe:2.3:h:intel:core_i3-1125g4:-:::::::*
	cpe:2.3:h:intel:core_i5-1030g4:-:::::::*
	cpe:2.3:h:intel:core_i5-1030g7:-:::::::*
	cpe:2.3:h:intel:core_i5-1035g1:-:::::::*
	cpe:2.3:h:intel:core_i5-1035g4:-:::::::*
	cpe:2.3:h:intel:core_i5-1035g7:-:::::::*
	cpe:2.3:h:intel:core_i5-1130g7:-:::::::*
	cpe:2.3:h:intel:core_i5-1135g7:-:::::::*
	cpe:2.3:h:intel:core_i7-1060g7:-:::::::*
	cpe:2.3:h:intel:core_i7-1065g7:-:::::::*
	cpe:2.3:h:intel:core_i7-1160g7:-:::::::*
	cpe:2.3:h:intel:core_i7-1165g7:-:::::::*
	cpe:2.3:h:intel:core_i7-1185g7:-:::::::*

Configuration 2 [-]

cpe:2.3:a:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:netapp:hci_compute_node_bios:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:netapp:hci_storage_node_bios:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:hci_storage_node:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:netapp:solidfire_bios:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:solidfire:-:*:*:*:*:*:*:*

Configuration 6 [-]

cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*

Configuration 7 [-]

cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:siemens:simatic_field_pg_m5_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_field_pg_m5:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:siemens:simatic_field_pg_m6_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_field_pg_m6:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:siemens:simatic_ipc427e_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_ipc427e:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND

cpe:2.3:o:siemens:simatic_ipc477e_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_ipc477e:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND

cpe:2.3:o:siemens:simatic_ipc477e_pro_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_ipc477e_pro:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND

cpe:2.3:o:siemens:simatic_ipc627e_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_ipc627e:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND

cpe:2.3:o:siemens:simatic_ipc647e_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_ipc647e:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND

cpe:2.3:o:siemens:simatic_ipc677e_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_ipc677e:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND

cpe:2.3:o:siemens:simatic_ipc847e_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_ipc847e:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND

cpe:2.3:o:siemens:simatic_itp1000_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_itp1000:-:*:*:*:*:*:*:*

References

Link	Resource
https://cert-portal.siemens.com/productcert/pdf/ssa-678983.pdf	Third Party Advisory
https://lists.debian.org/debian-lts-announce/2021/02/msg00007.html	Mailing List Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MAAGIK5CXKBPGY3R4UR5VO56M7MKLZ43/
https://security.netapp.com/advisory/ntap-20201113-0006/	Third Party Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00381	Vendor Advisory