9.8
CVE-2020-8758
- EPSS 1.59%
- Published 10.09.2020 15:16:53
- Last modified 21.11.2024 05:39:23
- Source secure@intel.com
- Teams watchlist Login
- Open Login
Improper buffer restrictions in network subsystem in provisioned Intel(R) AMT and Intel(R) ISM versions before 11.8.79, 11.12.79, 11.22.79, 12.0.68 and 14.0.39 may allow an unauthenticated user to potentially enable escalation of privilege via network access. On un-provisioned systems, an authenticated user may potentially enable escalation of privilege via local access.
Data is provided by the National Vulnerability Database (NVD)
Intel ≫ Standard Manageability Version >= 11.8 < 11.8.79
Intel ≫ Standard Manageability Version >= 11.12 < 11.12.79
Intel ≫ Standard Manageability Version >= 11.22 < 11.22.79
Intel ≫ Standard Manageability Version >= 12.0 < 12.0.68
Intel ≫ Standard Manageability Version >= 14.0 < 14.0.39
Intel ≫ Active Management Technology Firmware Version >= 11.8 < 11.8.79
Intel ≫ Active Management Technology Firmware Version >= 11.12 < 11.12.79
Intel ≫ Active Management Technology Firmware Version >= 11.22 < 11.22.79
Intel ≫ Active Management Technology Firmware Version >= 12.0 < 12.0.68
Intel ≫ Active Management Technology Firmware Version >= 14.0 < 14.0.39
Netapp ≫ Steelstore Cloud Integrated Storage Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.59% | 0.809 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 9.8 | 3.9 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|