CVE-2020-8751

Published: Nov 12, 2020Modified: Nov 21, 2024

4.6

Vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability: 0.9 / Impact: 3.6

Source: NVD

Description

Insufficient control flow management in subsystem for Intel(R) CSME versions before 11.8.80, Intel(R) TXE versions before 3.1.80 may allow an unauthenticated user to potentially enable information disclosure via physical access.

Affected (2)

Products: Intel: Converged Security And Manageability Engine, Trusted Execution Technology

Intel

2 products

Converged Security And Manageability Engine

Trusted Execution Technology

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Intel Converged Security And Manageability Engine	Before 11.8.80

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Intel Trusted Execution Technology	Before 3.1.80

References (6)

https://security.netapp.com/advisory/ntap-20201113-0002/

Source: secure@intel.com

Third Party Advisory

https://security.netapp.com/advisory/ntap-20201113-0005/

Source: secure@intel.com

Third Party Advisory

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00391

Source: secure@intel.com

Vendor Advisory

https://security.netapp.com/advisory/ntap-20201113-0002/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://security.netapp.com/advisory/ntap-20201113-0005/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00391

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.