Published: 09/06/2021 Updated: 22/04/2022

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

CVSS v3 Base Score: 6.7 | Impact Score: 5.9 | Exploitability Score: 0.8

VMScore: 409

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

Improper buffer restrictions in a subsystem in the Intel(R) CSME versions prior to 11.8.86, 11.12.86, 11.22.86, 12.0.81, 13.0.47, 13.30.17, 14.1.53, 14.5.32 and 15.0.22 may allow a privileged user to potentially enable escalation of privilege via local access.

Vulnerable Product	Search on Vulmon	Subscribe to Product
intel converged_security_and_manageability_engine
netapp cloud backup -
siemens simatic_field_pg_m6_firmware
siemens simatic_field_pg_m5_firmware
siemens simatic_ipc427e_firmware
siemens simatic_ipc477e_firmware
siemens simatic_ipc477e_pro_firmware
siemens simatic_ipc527g_firmware
siemens simatic_ipc547g_firmware
siemens simatic_ipc627e_firmware
siemens simatic_ipc647e_firmware
siemens simatic_ipc677e_firmware
siemens simatic_ipc847e_firmware
siemens simatic_itp1000_firmware

CWE-119 https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00459.html https://security.netapp.com/advisory/ntap-20210611-0004/https://cert-portal.siemens.com/productcert/pdf/ssa-309571.pdf https://nvd.nist.gov https://www.cisa.gov/news-events/ics-advisories/icsa-21-222-05 https://www.cisa.gov/uscert/ics/advisories/icsa-21-222-05

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2020-8703

Vulnerability Summary

Vulnerability Trend

ICS Advisories

References

Vulmon Search

About

Products

Connect