Published: 15/06/2020 Updated: 22/07/2020

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

CVSS v3 Base Score: 4.4 | Impact Score: 3.6 | Exploitability Score: 0.8

VMScore: 187

Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P

Integer overflow in subsystem for Intel(R) CSME versions prior to 11.8.77, 11.12.77, 11.22.77 and Intel(R) TXE versions prior to 3.1.75, 4.0.25 and Intel(R) Server Platform Services (SPS) versions before SPS_E5_04.01.04.380.0, SPS_SoC-X_04.00.04.128.0, SPS_SoC-A_04.00.04.211.0, SPS_E3_04.01.04.109.0, SPS_E3_04.08.04.070.0 may allow a privileged user to potentially enable denial of service via local access.

Vulnerable Product	Search on Vulmon	Subscribe to Product
intel converged security management engine firmware
intel server platform services
intel trusted execution engine

HP has been notified by Intel of potential security vulnerabilities in the Intel® Converged Security and Manageability Engine (CSME), Server Platform Services (SPS), Intel® Trusted Execution Engine (TXE), Intel® Active Management Technology (AMT) and Intel® Dynamic Application Loader (DAL) may allow escalation of privilege, denial of service o ...

CWE-190 https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html https://kc.mcafee.com/corporate/index?page=content&id=SB10321 https://cert-portal.siemens.com/productcert/pdf/ssa-631949.pdf https://security.netapp.com/advisory/ntap-20200611-0006/https://support.lenovo.com/de/en/product_security/len-30041 https://nvd.nist.gov https://support.hp.com/us-en/document/c06655639

CVE-2020-0545

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect