CVE-2020-8758

Опубликовано: 10 сент. 2020

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

Improper buffer restrictions in network subsystem in provisioned Intel(R) AMT and Intel(R) ISM versions before 11.8.79, 11.12.79, 11.22.79, 12.0.68 and 14.0.39 may allow an unauthenticated user to potentially enable escalation of privilege via network access. On un-provisioned systems, an authenticated user may potentially enable escalation of privilege via local access.

Ссылки

https://security.netapp.com/advisory/ntap-20200911-0005/
Third Party Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00404.html
Vendor Advisory
https://security.netapp.com/advisory/ntap-20200911-0005/
Third Party Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00404.html
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:intel:standard_manageability:*:*:*:*:*:*:*:*

Версия от 11.8 (включая) до 11.8.79 (исключая)

cpe:2.3:a:intel:standard_manageability:*:*:*:*:*:*:*:*

Версия от 11.12 (включая) до 11.12.79 (исключая)

cpe:2.3:a:intel:standard_manageability:*:*:*:*:*:*:*:*

Версия от 11.22 (включая) до 11.22.79 (исключая)

cpe:2.3:a:intel:standard_manageability:*:*:*:*:*:*:*:*

Версия от 12.0 (включая) до 12.0.68 (исключая)

cpe:2.3:a:intel:standard_manageability:*:*:*:*:*:*:*:*

Версия от 14.0 (включая) до 14.0.39 (исключая)