Описание
Out of bounds write in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authenticated user to potentially enable escalation of privilege via local access.
Уязвимые конфигурации
Конфигурация 1Версия до 2.48.ce3e3bd2 (исключая)
Одновременно
cpe:2.3:o:intel:baseboard_management_controller_firmware:*:*:*:*:*:*:*:*
Одно из
cpe:2.3:h:intel:compute_module_hns2600bpb24r:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_module_hns2600bpbr:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_module_hns2600bpq24r:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_module_hns2600bpqr:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_module_hns2600bps24r:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:compute_module_hns2600bpsr:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_board_s2600bpb:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_board_s2600bpbr:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_board_s2600bpq:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_board_s2600bpqr:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_board_s2600bps:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_board_s2600bpsr:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_board_s2600stb:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_board_s2600stbr:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_board_s2600stq:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_board_s2600stqr:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_board_s2600wf0:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_board_s2600wf0r:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_board_s2600wfq:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_board_s2600wfqr:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_board_s2600wft:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_board_s2600wftr:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_r1208wfqysr:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_r1208wftys:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_r1208wftysr:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_r1304wf0ys:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_r1304wf0ysr:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_r1304wftys:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_r1304wftysr:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_r2208wf0zs:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_r2208wf0zsr:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_r2208wfqzs:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_r2208wfqzsr:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_r2208wftzs:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_r2208wftzsr:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_r2224wfqzs:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_r2224wftzs:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_r2224wftzsr:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_r2308wftzs:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_r2308wftzsr:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_r2312wf0np:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_r2312wf0npr:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_r2312wfqzs:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_r2312wftzs:-:*:*:*:*:*:*:*
cpe:2.3:h:intel:server_system_r2312wftzsr:-:*:*:*:*:*:*:*
EPSS
Процентиль: 18%
0.00058
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-787
Связанные уязвимости
github
больше 3 лет назад
Out of bounds write in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authenticated user to potentially enable escalation of privilege via local access.
EPSS
Процентиль: 18%
0.00058
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-787