What is CVE-2020-8750?

CVE-2020-8750 is a high-severity vulnerability in Intel Trusted_execution_engine, classified under Use After Free. CVSS score: 7.8/10. Published 2020-11-12.

How severe is CVE-2020-8750?

High severity. CVSS v3 base score is 7.8 out of 10.

Use After Free in Intel Trusted_execution_engine

CVE-2020-8750

Use after free in Kernel Mode Driver for Intel(R) TXE versions before 3.1.80 and 4.0.30 may allow an authenticated user to potentially enable escalation of privilege via local access.

Vulnerability class: Use-After-Free

EPSS: 0.003 (26.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

Intel Trusted_execution_engine
N/a Intel(r) Txe — versions versions before 3.1.80 and 4.0.30

Weakness classification (CWE)

CWE-416 — Use After Free

References

secure@intel.com (x_refsource_MISC, Vendor Advisory)
secure@intel.com (x_refsource_CONFIRM, Third Party Advisory)

Frequently asked questions

What is CVE-2020-8750?: CVE-2020-8750 is a high-severity vulnerability in Intel Trusted_execution_engine, classified under Use After Free. CVSS score: 7.8/10. Published 2020-11-12.
How severe is CVE-2020-8750?: High severity. CVSS v3 base score is 7.8 out of 10.