9.8
CVE-2020-8758
- EPSS 1.59%
- Veröffentlicht 10.09.2020 15:16:53
- Zuletzt bearbeitet 21.11.2024 05:39:23
- Quelle secure@intel.com
- Teams Watchlist Login
- Unerledigt Login
Improper buffer restrictions in network subsystem in provisioned Intel(R) AMT and Intel(R) ISM versions before 11.8.79, 11.12.79, 11.22.79, 12.0.68 and 14.0.39 may allow an unauthenticated user to potentially enable escalation of privilege via network access. On un-provisioned systems, an authenticated user may potentially enable escalation of privilege via local access.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Intel ≫ Standard Manageability Version >= 11.8 < 11.8.79
Intel ≫ Standard Manageability Version >= 11.12 < 11.12.79
Intel ≫ Standard Manageability Version >= 11.22 < 11.22.79
Intel ≫ Standard Manageability Version >= 12.0 < 12.0.68
Intel ≫ Standard Manageability Version >= 14.0 < 14.0.39
Intel ≫ Active Management Technology Firmware Version >= 11.8 < 11.8.79
Intel ≫ Active Management Technology Firmware Version >= 11.12 < 11.12.79
Intel ≫ Active Management Technology Firmware Version >= 11.22 < 11.22.79
Intel ≫ Active Management Technology Firmware Version >= 12.0 < 12.0.68
Intel ≫ Active Management Technology Firmware Version >= 14.0 < 14.0.39
Netapp ≫ Steelstore Cloud Integrated Storage Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.59% | 0.809 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.8 | 3.9 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|