Описание
Уязвимость микропрограммного обеспечения BIOS серверных плат Server Board S1200RP, S1400FP, S1400SP, S1600JP, S2400BB, S2400EP, S2400SC, S2600CO, S2600CP, S2600GL, S2600GZ, S2600IP, W2600CR, S2600JF, S2600WP, S4600LH, S4600LT, S2600CW, S2600KP, S2600TP, S2600WT, S1200BT связана с недостатками контроля доступа. Эксплуатация уязвимости может позволить нарушителю повысить свои привилегии
Вендор
Intel Corp.
Наименование ПО
Intel Server Board s1200v3rpl
Intel Server Board s1200v3rpm
Intel Server Board s1200v3rpo
Intel Server Board s1200v3rps
Intel Server Board s1400fp2
Intel Server Board s1400fp4
Intel Server Board s1400sp4
Intel Server Board s1400sp2
Intel Server Board s1600jp2
Intel Server Board s1600jp4
Intel Server Board s2400bb4
Intel Server Board s2400ep2
Intel Server Board s2400ep4
Intel Server Board s2400sc2
Intel Server Board s2600co4
Intel Server Board s2600coe
Intel Server Board s2600coeioc
Intel Server Board s2600cp2
Intel Server Board s2600cp2ioc
Intel Server Board s2600cp2j
Intel Server Board s2600cp4
Intel Server Board s2600cp4ioc
Intel Server Board s2600gl
Intel Server Board s2600gz
Intel Server Board s2600ip4
Intel Server Board s2600ip4l
Intel Server Board w2600cr2
Intel Server Board w2600cr2l
Intel Server Board s2600jf
Intel Server Board s2600jfq
Intel Server Board s2600jff
Intel Server Board s2600wpq
Intel Server Board s2600wpf
Intel Server Board s4600lt2
Intel Server Board s4600lh2
Intel Server Board s2600wp
Intel Server Board s2600cw2r
Intel Server Board s2600cw2sr
Intel Server Board s2600cwtr
Intel Server Board s2600cwtsr
Intel Server Board s2600cw2s
Intel Server Board s2600cwt
Intel Server Board s2600cwts
Intel Server Board s2600cw2
Intel Server Board s2600kpfr
Intel Server Board s2600kpr
Intel Server Board s2600kptr
Intel Server Board S2600KP
Intel Server Board s2600kpf
Intel Server Board s2600tpnr
Intel Server Board s2600tpfr
Intel Server Board s2600tpr
Intel Server Board s2600tpf
Intel Server Board S2600TP
Intel Server Board s2600wtts1r
Intel Server Board s2600wt2r
Intel Server Board s2600wttr
Intel Server Board s2600wt2
Intel Server Board s2600wtt
Intel Server Board s1200btlrm
Intel Server Board s1200btlr
Intel Server Board s1200btsr
Intel Server Board s1200btl
Intel Server Board s1200bts
Версия ПО
до 0006 (Intel Server Board s1200v3rpl)
до 0006 (Intel Server Board s1200v3rpm)
до 0006 (Intel Server Board s1200v3rpo)
до 0006 (Intel Server Board s1200v3rps)
до 0005 (Intel Server Board s1400fp2)
до 0005 (Intel Server Board s1400fp4)
до 0005 (Intel Server Board s1400sp4)
до 0005 (Intel Server Board s1400sp2)
до 0005 (Intel Server Board s1600jp2)
до 0005 (Intel Server Board s1600jp4)
до 005 (Intel Server Board s2400bb4)
до 005 (Intel Server Board s2400ep2)
до 005 (Intel Server Board s2400ep4)
до 005 (Intel Server Board s2400sc2)
до 005 (Intel Server Board s2600co4)
до 005 (Intel Server Board s2600coe)
до 005 (Intel Server Board s2600coeioc)
до 005 (Intel Server Board s2600cp2)
до 005 (Intel Server Board s2600cp2ioc)
до 0005 (Intel Server Board s2600cp2j)
до 0005 (Intel Server Board s2600cp4)
до 0005 (Intel Server Board s2600cp4ioc)
до 0005 (Intel Server Board s2600gl)
до 0005 (Intel Server Board s2600gz)
до 0005 (Intel Server Board s2600ip4)
до 0005 (Intel Server Board s2600ip4l)
до 0005 (Intel Server Board w2600cr2)
до 0005 (Intel Server Board w2600cr2l)
до 0005 (Intel Server Board s2600jf)
до 0005 (Intel Server Board s2600jfq)
до 0005 (Intel Server Board s2600jff)
до 0005 (Intel Server Board s2600wpq)
до 0005 (Intel Server Board s2600wpf)
до 0005 (Intel Server Board s4600lt2)
до 0005 (Intel Server Board s4600lh2)
до 0005 (Intel Server Board s2600wp)
до 0018 (Intel Server Board s2600cw2r)
до 0018 (Intel Server Board s2600cw2sr)
до 0018 (Intel Server Board s2600cwtr)
до 0018 (Intel Server Board s2600cwtsr)
до 0018 (Intel Server Board s2600cw2s)
до 0018 (Intel Server Board s2600cwt)
до 0018 (Intel Server Board s2600cwts)
до 0018 (Intel Server Board s2600cw2)
до 0018 (Intel Server Board s2600kpfr)
до 0018 (Intel Server Board s2600kpr)
до 0018 (Intel Server Board s2600kptr)
до 0018 (Intel Server Board S2600KP)
до 0018 (Intel Server Board s2600kpf)
до 0018 (Intel Server Board s2600tpnr)
до 0018 (Intel Server Board s2600tpfr)
до 0018 (Intel Server Board s2600tpr)
до 0018 (Intel Server Board s2600tpf)
до 0018 (Intel Server Board S2600TP)
до 0018 (Intel Server Board s2600wtts1r)
до 0018 (Intel Server Board s2600wt2r)
до 0018 (Intel Server Board s2600wttr)
до 0018 (Intel Server Board s2600wt2)
до 0018 (Intel Server Board s2600wtt)
до 0044 (Intel Server Board s1200btlrm)
до 0044 (Intel Server Board s1200btlr)
до 0044 (Intel Server Board s1200btsr)
до 0044 (Intel Server Board s1200btl)
до 0044 (Intel Server Board s1200bts)
Тип ПО
Микропрограммный код
СУБД
Операционные системы и аппаратные платформы
-
Уровень опасности уязвимости
Средний уровень опасности (базовая оценка CVSS 2.0 составляет 6,5)
Средний уровень опасности (базовая оценка CVSS 3.0 составляет 6,7)
Возможные меры по устранению уязвимости
Использование рекомендаций:
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00056.html
Статус уязвимости
Подтверждена производителем
Наличие эксплойта
Данные уточняются
Информация об устранении
Уязвимость устранена
Идентификаторы других систем описаний уязвимостей
- CVE
EPSS
Процентиль: 13%
0.00044
Низкий
6.7 Medium
CVSS3
6.5 Medium
CVSS2
Связанные уязвимости
CVSS3: 7.7
nvd
больше 2 лет назад
Improper access control in the Intel(R) Server Board S2600WTT belonging to the Intel(R) Server Board S2600WT Family with the BIOS version 0016 may allow a privileged user to potentially enable escalation of privilege via local access.
CVSS3: 7.7
github
больше 2 лет назад
Improper access control in the Intel(R) Server Board S2600WTT belonging to the Intel(R) Server Board S2600WT Family with the BIOS version 0016 may allow a privileged user to potentially enable escalation of privilege via local access.
EPSS
Процентиль: 13%
0.00044
Низкий
6.7 Medium
CVSS3
6.5 Medium
CVSS2