6.7
CVE-2020-12375
- EPSS 0.07%
- Veröffentlicht 17.02.2021 14:15:15
- Zuletzt bearbeitet 21.11.2024 04:59:36
- Quelle secure@intel.com
- Teams Watchlist Login
- Unerledigt Login
Heap overflow in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.47 may allow an authenticated user to potentially enable escalation of privilege via local access.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Intel ≫ Bmc Firmware Version < 2.47
Intel ≫ Hns2600bpb Version-
Intel ≫ Hns2600bpb24 Version-
Intel ≫ Hns2600bpb24r Version-
Intel ≫ Hns2600bpblc Version-
Intel ≫ Hns2600bpblc24 Version-
Intel ≫ Hns2600bpblc24r Version-
Intel ≫ Hns2600bpbr Version-
Intel ≫ Hns2600bpq Version-
Intel ≫ Hns2600bpq24 Version-
Intel ≫ Hns2600bpq24r Version-
Intel ≫ Hns2600bpqr Version-
Intel ≫ Hns2600bps Version-
Intel ≫ Hns2600bps24 Version-
Intel ≫ Hns2600bps24r Version-
Intel ≫ Hns2600bpsr Version-
Intel ≫ R1000wf Version-
Intel ≫ R1208wfqysr Version-
Intel ≫ R1208wftys Version-
Intel ≫ R1208wftysr Version-
Intel ≫ R1304wf0ys Version-
Intel ≫ R1304wf0ysr Version-
Intel ≫ R1304wftys Version-
Intel ≫ R1304wftysr Version-
Intel ≫ R2208wf0zs Version-
Intel ≫ R2208wf0zsr Version-
Intel ≫ R2208wfqzs Version-
Intel ≫ R2208wfqzsr Version-
Intel ≫ R2208wftzs Version-
Intel ≫ R2208wftzsr Version-
Intel ≫ R2224wfqzs Version-
Intel ≫ R2224wftzs Version-
Intel ≫ R2224wftzsr Version-
Intel ≫ R2308wftzs Version-
Intel ≫ R2308wftzsr Version-
Intel ≫ R2312wf0np Version-
Intel ≫ R2312wf0npr Version-
Intel ≫ R2312wfqzs Version-
Intel ≫ R2312wftzs Version-
Intel ≫ R2312wftzsr Version-
Intel ≫ S2600bpbr Version-
Intel ≫ S2600bpqr Version-
Intel ≫ S2600bpsr Version-
Intel ≫ S2600stb Version-
Intel ≫ S2600stq Version-
Intel ≫ S2600wf0 Version-
Intel ≫ S2600wfq Version-
Intel ≫ S2600wft Version-
Intel ≫ Hns2600bpb24 Version-
Intel ≫ Hns2600bpb24r Version-
Intel ≫ Hns2600bpblc Version-
Intel ≫ Hns2600bpblc24 Version-
Intel ≫ Hns2600bpblc24r Version-
Intel ≫ Hns2600bpbr Version-
Intel ≫ Hns2600bpq Version-
Intel ≫ Hns2600bpq24 Version-
Intel ≫ Hns2600bpq24r Version-
Intel ≫ Hns2600bpqr Version-
Intel ≫ Hns2600bps Version-
Intel ≫ Hns2600bps24 Version-
Intel ≫ Hns2600bps24r Version-
Intel ≫ Hns2600bpsr Version-
Intel ≫ R1000wf Version-
Intel ≫ R1208wfqysr Version-
Intel ≫ R1208wftys Version-
Intel ≫ R1208wftysr Version-
Intel ≫ R1304wf0ys Version-
Intel ≫ R1304wf0ysr Version-
Intel ≫ R1304wftys Version-
Intel ≫ R1304wftysr Version-
Intel ≫ R2208wf0zs Version-
Intel ≫ R2208wf0zsr Version-
Intel ≫ R2208wfqzs Version-
Intel ≫ R2208wfqzsr Version-
Intel ≫ R2208wftzs Version-
Intel ≫ R2208wftzsr Version-
Intel ≫ R2224wfqzs Version-
Intel ≫ R2224wftzs Version-
Intel ≫ R2224wftzsr Version-
Intel ≫ R2308wftzs Version-
Intel ≫ R2308wftzsr Version-
Intel ≫ R2312wf0np Version-
Intel ≫ R2312wf0npr Version-
Intel ≫ R2312wfqzs Version-
Intel ≫ R2312wftzs Version-
Intel ≫ R2312wftzsr Version-
Intel ≫ S2600bpbr Version-
Intel ≫ S2600bpqr Version-
Intel ≫ S2600bpsr Version-
Intel ≫ S2600stb Version-
Intel ≫ S2600stq Version-
Intel ≫ S2600wf0 Version-
Intel ≫ S2600wfq Version-
Intel ≫ S2600wft Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.07% | 0.184 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.7 | 0.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 4.6 | 3.9 | 6.4 |
AV:L/AC:L/Au:N/C:P/I:P/A:P
|
CWE-787 Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.