Published: 12/11/2020 Updated: 24/11/2020

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

CVSS v3 Base Score: 6.8 | Impact Score: 5.9 | Exploitability Score: 0.9

VMScore: 409

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

Authentication bypass by capture-replay in RPMB protocol message authentication subsystem in Intel(R) TXE versions prior to 4.0.30 may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

Vulnerable Product	Search on Vulmon	Subscribe to Product
intel trusted execution engine

Intel has informed HP of potential security vulnerabilities identified in Intel® Converged Security and Manageability Engine (CSME), Server Platform Services (SPS), Intel® Trusted Execution Engine (TXE), Intel® Dynamic Application Loader (DAL), Intel® Active Management Technology (AMT), Intel® Standard Manageability (ISM) and Intel® Dynamic A ...

CWE-294 https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00391 https://security.netapp.com/advisory/ntap-20201113-0005/https://nvd.nist.gov https://support.hp.com/us-en/document/c06962103

CVE-2020-12355

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect