CVE-2020-0588

Опубликовано: 12 нояб. 2020

Источник: nvd

CVSS3: 6.7

CVSS2: 4.6

EPSS Низкий

Описание

Improper conditions check in BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

Ссылки

https://security.netapp.com/advisory/ntap-20201113-0001/
Third Party Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00358
Vendor Advisory
https://security.netapp.com/advisory/ntap-20201113-0001/
Third Party Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00358
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:intel:bios:-:*:*:*:*:*:*:*

Одно из

cpe:2.3:h:intel:xeon_bronze_3204:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_bronze_3206r:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_5215:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_5215l:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_5217:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_5218:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_5218b:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_5218n:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_5218r:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_5218t:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_5220:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_5220r:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_5220s:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_5220t:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_5222:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6208u:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6209u:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6210u:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6212u:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6222v:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6226:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6226r:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6230:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6230n:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6230r:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6230t:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6234:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6238:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6238l:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6238r:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6238t:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6240:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6240l:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6240r:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6240y:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6242:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6242r:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6244:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6246:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6246r:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6248:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6248r:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6250:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6250l:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6252:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6252n:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6254:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6256:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6258r:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_gold_6262v:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_platinum_8253:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_platinum_8256:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_platinum_8260l:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_platinum_8260y:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_platinum_8268:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_platinum_8270:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_platinum_8276:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_platinum_8276l:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_platinum_8280:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_platinum_8280l:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_platinum_9221:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_platinum_9222:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_platinum_9242:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_platinum_9282:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_silver_4208:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_silver_4209t:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_silver_4210:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_silver_4210r:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_silver_4210t:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_silver_4214:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_silver_4214r:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_silver_4214y:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_silver_4215:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_silver_4215r:-:*:*:*:*:*:*:*

cpe:2.3:h:intel:xeon_silver_4216:-:*:*:*:*:*:*:*

EPSS

Процентиль: 20%

0.00063

Низкий

6.7 Medium

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-754

Связанные уязвимости

GHSA-j4w4-w582-6gjc

github

больше 3 лет назад

Improper conditions check in BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

BDU:2020-05211

CVSS3: 3.8

fstec

около 5 лет назад

Уязвимость микропрограммного обеспечения процессоров Intel, связанная с недостатками разграничения доступа, позволяющая нарушителю повысить свои привилегии