CVE-2020-0543

Incomplete cleanup from specific special register read operations in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

Published: 2020-06-15 Last update: 2024-11-21 Assigner: [email protected] Source: [email protected]
NVD Status:ModifiedCVE State: published
View at NVD, CVE.org, EUVD

CVE-2020-0543 is rated Moderate Risk (44.8/100): CVSS Medium severity, with medium exploitation likelihood (EPSS 0.48%). Review affected assets and schedule remediation.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Exploit prediction scoring system (EPSS) score for CVE-2020-0543

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

# Date Old EPSS score New EPSS score Delta (New - Old)
1 2025-11-21 0.19% 0.48% +0.29%
2 2025-11-18 0.53% 0.19% -0.34%
3 2025-05-27 0.53%

Full EPSS history (12 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2020-0543

CVSS metrics for this CVE.

Base score Version Severity Vector Exploitability Impact Score source
5.5 3.1 MEDIUM
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Click to expand
Attack vector (AV:L)
They already need access on the box, or another person has to do something wrong; it’s not a remote drive-by.
Attack complexity (AC:L)
Once they can reach the bug, pulling it off is straightforward—no weird race conditions or rare setup.
Privileges required (PR:L)
A normal user session is enough; they don’t have to be admin.
User interaction (UI:N)
Nobody has to click “OK” or open a trap file; it can work without a victim helping.
Scope (S:U)
Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems.
Confidentiality (C:H)
Serious risk that confidential data gets exposed in a big way.
Integrity (I:N)
Data isn’t meaningfully altered or forged.
Availability (A:N)
Service keeps running; no real outage angle.
 1.8 3.6 [email protected]
2.1 2.0 LOW
AV:L/AC:L/Au:N/C:P/I:N/A:N Click to expand
Access vector (AV:L)
Requires local access to the target system.
Access complexity (AC:L)
Exploitation conditions are straightforward and predictable.
Authentication (AU:N)
No authentication is required.
Confidentiality impact (C:P)
Partial confidentiality impact.
Integrity impact (I:N)
No integrity impact.
Availability impact (A:N)
No availability impact.
 3.9 2.9 [email protected]

Weakness enumeration for CVE-2020-0543

OS Trackers for CVE-2020-0543

vendor priority summary link
alpine medium CVE-2020-0543: 1 source package rows (xen); 10 state rows across 10 repos (3.10-main, 3.11-main, 3.12-main, 3.17-main, 3.18-main, 3.19-main, 3.20-main, 3.21-main, 3.22-main, edge-main); fixed 10, open 0. https://security.alpinelinux.org/vuln/CVE-2020-0543
debian not yet assigned CVE-2020-0543 not yet assigned priority: Debian including 2 source packages (intel-microcode, linux), 10 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 10. https://security-tracker.debian.org/tracker/CVE-2020-0543
redhat medium https://access.redhat.com/security/cve/CVE-2020-0543
suse medium CVE-2020-0543 severity moderate: SUSE including 814 source package names (0.38.1:xen-libs-4.13.1_04-3.4.1, amazon/suse-sles-15-sp1-chost-byos-v20210304-hvm-ssd-x86_64, …), 1399 product×package rows across 148 product lines (Container suse/sles/15.2/virt-launcher, HPE Helion OpenStack 8, … (148 product lines)): Fixed 1133, Known Affected 157, Known Not Affected 109. https://www.suse.com/security/cve/CVE-2020-0543/
ubuntu medium CVE-2020-0543 medium priority: Ubuntu including 2 source packages (intel-microcode, xen), 29 status rows across 16 suites (bionic, disco, eoan, focal, groovy, jammy, kinetic, lunar, mantic, noble, oracular, plucky, questing, trusty, upstream, xenial): not-affected 16, released 8, needed 2, DNE 1, ignored 1, needs-triage 1. https://ubuntu.com/security/CVE-2020-0543

Affected software / configurations for CVE-2020-0543

Vendor Product Version Raw CPE
intel celeron_1000m cpe:2.3:h:intel:celeron_1000m:-:*:*:*:*:*:*:*
intel celeron_1005m cpe:2.3:h:intel:celeron_1005m:-:*:*:*:*:*:*:*
intel celeron_1007u cpe:2.3:h:intel:celeron_1007u:-:*:*:*:*:*:*:*
intel celeron_1017u cpe:2.3:h:intel:celeron_1017u:-:*:*:*:*:*:*:*
intel celeron_1019y cpe:2.3:h:intel:celeron_1019y:-:*:*:*:*:*:*:*
intel celeron_1020e cpe:2.3:h:intel:celeron_1020e:-:*:*:*:*:*:*:*
intel celeron_1020m cpe:2.3:h:intel:celeron_1020m:-:*:*:*:*:*:*:*
intel celeron_1037u cpe:2.3:h:intel:celeron_1037u:-:*:*:*:*:*:*:*
intel celeron_1047ue cpe:2.3:h:intel:celeron_1047ue:-:*:*:*:*:*:*:*
intel celeron_2955u cpe:2.3:h:intel:celeron_2955u:-:*:*:*:*:*:*:*
intel celeron_2957u cpe:2.3:h:intel:celeron_2957u:-:*:*:*:*:*:*:*
intel celeron_2970m cpe:2.3:h:intel:celeron_2970m:-:*:*:*:*:*:*:*
intel celeron_2980u cpe:2.3:h:intel:celeron_2980u:-:*:*:*:*:*:*:*
intel celeron_2981u cpe:2.3:h:intel:celeron_2981u:-:*:*:*:*:*:*:*
intel celeron_3755u cpe:2.3:h:intel:celeron_3755u:-:*:*:*:*:*:*:*
intel celeron_3765u cpe:2.3:h:intel:celeron_3765u:-:*:*:*:*:*:*:*
intel celeron_3855u cpe:2.3:h:intel:celeron_3855u:-:*:*:*:*:*:*:*
intel celeron_3865u cpe:2.3:h:intel:celeron_3865u:-:*:*:*:*:*:*:*
intel celeron_3955u cpe:2.3:h:intel:celeron_3955u:-:*:*:*:*:*:*:*
intel celeron_3965u cpe:2.3:h:intel:celeron_3965u:-:*:*:*:*:*:*:*
intel celeron_3965y cpe:2.3:h:intel:celeron_3965y:-:*:*:*:*:*:*:*
intel celeron_5305u cpe:2.3:h:intel:celeron_5305u:-:*:*:*:*:*:*:*
intel celeron_725c cpe:2.3:h:intel:celeron_725c:-:*:*:*:*:*:*:*
intel celeron_927ue cpe:2.3:h:intel:celeron_927ue:-:*:*:*:*:*:*:*
intel celeron_g1610 cpe:2.3:h:intel:celeron_g1610:-:*:*:*:*:*:*:*
intel celeron_g1610t cpe:2.3:h:intel:celeron_g1610t:-:*:*:*:*:*:*:*
intel celeron_g1620 cpe:2.3:h:intel:celeron_g1620:-:*:*:*:*:*:*:*
intel celeron_g1620t cpe:2.3:h:intel:celeron_g1620t:-:*:*:*:*:*:*:*
intel celeron_g1630 cpe:2.3:h:intel:celeron_g1630:-:*:*:*:*:*:*:*
intel celeron_g1820 cpe:2.3:h:intel:celeron_g1820:-:*:*:*:*:*:*:*
intel celeron_g1820t cpe:2.3:h:intel:celeron_g1820t:-:*:*:*:*:*:*:*
intel celeron_g1830 cpe:2.3:h:intel:celeron_g1830:-:*:*:*:*:*:*:*
intel celeron_g1840 cpe:2.3:h:intel:celeron_g1840:-:*:*:*:*:*:*:*
intel celeron_g1840t cpe:2.3:h:intel:celeron_g1840t:-:*:*:*:*:*:*:*
intel celeron_g1850 cpe:2.3:h:intel:celeron_g1850:-:*:*:*:*:*:*:*
intel celeron_g3900 cpe:2.3:h:intel:celeron_g3900:-:*:*:*:*:*:*:*
intel celeron_g3900t cpe:2.3:h:intel:celeron_g3900t:-:*:*:*:*:*:*:*
intel celeron_g3900te cpe:2.3:h:intel:celeron_g3900te:-:*:*:*:*:*:*:*
intel celeron_g3902e cpe:2.3:h:intel:celeron_g3902e:-:*:*:*:*:*:*:*
intel celeron_g3920 cpe:2.3:h:intel:celeron_g3920:-:*:*:*:*:*:*:*
intel celeron_g3920t cpe:2.3:h:intel:celeron_g3920t:-:*:*:*:*:*:*:*
intel celeron_g3930e cpe:2.3:h:intel:celeron_g3930e:-:*:*:*:*:*:*:*
intel celeron_g3930te cpe:2.3:h:intel:celeron_g3930te:-:*:*:*:*:*:*:*
intel celeron_g3940 cpe:2.3:h:intel:celeron_g3940:-:*:*:*:*:*:*:*
intel celeron_g4900 cpe:2.3:h:intel:celeron_g4900:-:*:*:*:*:*:*:*
intel celeron_g4900t cpe:2.3:h:intel:celeron_g4900t:-:*:*:*:*:*:*:*
intel celeron_g4920 cpe:2.3:h:intel:celeron_g4920:-:*:*:*:*:*:*:*
intel celeron_g4930 cpe:2.3:h:intel:celeron_g4930:-:*:*:*:*:*:*:*
intel celeron_g4950 cpe:2.3:h:intel:celeron_g4950:-:*:*:*:*:*:*:*
intel core_4205u cpe:2.3:h:intel:core_4205u:-:*:*:*:*:*:*:*
intel core_4410y cpe:2.3:h:intel:core_4410y:-:*:*:*:*:*:*:*
intel core_4415y cpe:2.3:h:intel:core_4415y:-:*:*:*:*:*:*:*
intel core_5405u cpe:2.3:h:intel:core_5405u:-:*:*:*:*:*:*:*
intel core_8269u cpe:2.3:h:intel:core_8269u:-:*:*:*:*:*:*:*
intel core_9300h cpe:2.3:h:intel:core_9300h:-:*:*:*:*:*:*:*
intel core_9750hf cpe:2.3:h:intel:core_9750hf:-:*:*:*:*:*:*:*
intel core_i3-2115c cpe:2.3:h:intel:core_i3-2115c:-:*:*:*:*:*:*:*
intel core_i3-3110m cpe:2.3:h:intel:core_i3-3110m:-:*:*:*:*:*:*:*
intel core_i3-3115c cpe:2.3:h:intel:core_i3-3115c:-:*:*:*:*:*:*:*
intel core_i3-3120m cpe:2.3:h:intel:core_i3-3120m:-:*:*:*:*:*:*:*
intel core_i3-3120me cpe:2.3:h:intel:core_i3-3120me:-:*:*:*:*:*:*:*
intel core_i3-3130m cpe:2.3:h:intel:core_i3-3130m:-:*:*:*:*:*:*:*
intel core_i3-3210 cpe:2.3:h:intel:core_i3-3210:-:*:*:*:*:*:*:*
intel core_i3-3217u cpe:2.3:h:intel:core_i3-3217u:-:*:*:*:*:*:*:*
intel core_i3-3217ue cpe:2.3:h:intel:core_i3-3217ue:-:*:*:*:*:*:*:*
intel core_i3-3220 cpe:2.3:h:intel:core_i3-3220:-:*:*:*:*:*:*:*
intel core_i3-3220t cpe:2.3:h:intel:core_i3-3220t:-:*:*:*:*:*:*:*
intel core_i3-3225 cpe:2.3:h:intel:core_i3-3225:-:*:*:*:*:*:*:*
intel core_i3-3227u cpe:2.3:h:intel:core_i3-3227u:-:*:*:*:*:*:*:*
intel core_i3-3229y cpe:2.3:h:intel:core_i3-3229y:-:*:*:*:*:*:*:*
intel core_i3-3240 cpe:2.3:h:intel:core_i3-3240:-:*:*:*:*:*:*:*
intel core_i3-3240t cpe:2.3:h:intel:core_i3-3240t:-:*:*:*:*:*:*:*
intel core_i3-3245 cpe:2.3:h:intel:core_i3-3245:-:*:*:*:*:*:*:*
intel core_i3-3250 cpe:2.3:h:intel:core_i3-3250:-:*:*:*:*:*:*:*
intel core_i3-3250t cpe:2.3:h:intel:core_i3-3250t:-:*:*:*:*:*:*:*
intel core_i3-4005u cpe:2.3:h:intel:core_i3-4005u:-:*:*:*:*:*:*:*
intel core_i3-4010u cpe:2.3:h:intel:core_i3-4010u:-:*:*:*:*:*:*:*
intel core_i3-4010y cpe:2.3:h:intel:core_i3-4010y:-:*:*:*:*:*:*:*
intel core_i3-4012y cpe:2.3:h:intel:core_i3-4012y:-:*:*:*:*:*:*:*
intel core_i3-4020y cpe:2.3:h:intel:core_i3-4020y:-:*:*:*:*:*:*:*

References for CVE-2020-0543

URL Tags
http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00025.html Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00024.html Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00031.html Mailing List Third Party Advisory
http://www.openwall.com/lists/oss-security/2020/07/14/5 Mailing List Third Party Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-534763.pdf Third Party Advisory
https://kc.mcafee.com/corporate/index?page=content&id=SB10318 Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DT2VKDMQ3I37NBNJ256A2EXR7OJHXXKZ/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GRFC7UAPKAFFH5WX3AMDUBVHLKYQA2NZ/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NQZMOSHLTBBIECENNXA6M7DN5FEED4KI/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T5OUM24ZC43G4IDT3JUCIHJTSDXJSK6Y/
https://usn.ubuntu.com/4385-1/ Third Party Advisory
https://usn.ubuntu.com/4387-1/ Third Party Advisory
https://usn.ubuntu.com/4388-1/ Third Party Advisory
https://usn.ubuntu.com/4389-1/ Third Party Advisory
https://usn.ubuntu.com/4390-1/ Third Party Advisory
https://usn.ubuntu.com/4391-1/ Third Party Advisory
https://usn.ubuntu.com/4392-1/ Third Party Advisory
https://usn.ubuntu.com/4393-1/ Third Party Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00320.html Vendor Advisory
cvelogic Threat Intelligence