Mondoo

Vulnerability Management
Technology
Services

Solutions

Financial Services
Manufacturing
Healthcare

Resources

Blog
Vulnerability Database
Documentation
GitHub

Company

About
Careers
Partners
Contact

Legal

Privacy
Terms
Imprint

Vulnerability IntelligenceUBUNTU-CVE-2020-0548

UBUNTU-CVE-2020-0548

MEDIUM5.5

Cleanup errors in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

Published Jan 27, 2020

Modified 8 months ago

Fix available

Details

Cleanup errors in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

Affected Packages

intel-microcode

Ubuntu 16.04 LTS

Fixed in:

3.20200609.0ubuntu0.16.04.0

intel-microcode

Ubuntu 18.04 LTS

Fixed in:

3.20200609.0ubuntu0.18.04.0

intel-microcode

Ubuntu 20.04 LTS

Fixed in:

3.20200609.0ubuntu0.20.04.0

intel-microcode

Ubuntu Pro 14.04 LTS

Fixed in:

3.20200609.0ubuntu0.14.04.0

References

REPORT

https://software.intel.com/security-software-guidance/software-guidance/vector-register-sampling

REPORT

https://ubuntu.com/security/CVE-2020-0548

ADVISORY

https://ubuntu.com/security/notices/USN-4385-1

REPORT

https://www.cve.org/CVERecord?id=CVE-2020-0548

REPORT

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00329.html

CVSS Analysis

CVSS v3.1

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Scope

UnchangedS:U

Impact

Confidentiality

HighC:H

Integrity

NoneI:N

Availability

NoneA:N

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Upstream

CVE-2020-0548

USN-4385-1

Ecosystems

Ubuntu 16.04 LTS Ubuntu 18.04 LTS Ubuntu 20.04 LTS Ubuntu Pro 14.04 LTS

Timeline

PublishedJan 27, 2020

ModifiedJul 16, 2025

UBUNTU-CVE-2020-0548 | Mondoo Vulnerability Intelligence