CVE-2020-8758

Published: Sep 10, 2020Modified: Nov 21, 2024

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

Improper buffer restrictions in network subsystem in provisioned Intel(R) AMT and Intel(R) ISM versions before 11.8.79, 11.12.79, 11.22.79, 12.0.68 and 14.0.39 may allow an unauthenticated user to potentially enable escalation of privilege via network access. On un-provisioned systems, an authenticated user may potentially enable escalation of privilege via local access.

Affected (11)

Products: Intel: Active Management Technology Firmware, Standard Manageability · Netapp: Steelstore Cloud Integrated Storage

Intel

2 products

Active Management Technology Firmware

Standard Manageability

Netapp

1 product

Steelstore Cloud Integrated Storage

Configuration A

10 vulnerable

Vulnerable Software	Affected Versions
Intel Active Management Technology Firmware	From 11.12 to 11.12.79
Intel Active Management Technology Firmware	From 11.22 to 11.22.79
Intel Active Management Technology Firmware	From 11.8 to 11.8.79
Intel Active Management Technology Firmware	From 12.0 to 12.0.68
Intel Active Management Technology Firmware	From 14.0 to 14.0.39
Intel Standard Manageability	From 11.12 to 11.12.79
Intel Standard Manageability	From 11.22 to 11.22.79
Intel Standard Manageability	From 11.8 to 11.8.79
Intel Standard Manageability	From 12.0 to 12.0.68
Intel Standard Manageability	From 14.0 to 14.0.39