Published: 12/11/2020 Updated: 30/11/2020

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

CVSS v3 Base Score: 6.8 | Impact Score: 5.9 | Exploitability Score: 0.9

VMScore: 409

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

Insecure default initialization of resource in Intel(R) Boot Guard in Intel(R) CSME versions prior to 11.8.80, 11.12.80, 11.22.80, 12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25, Intel(R) TXE versions prior to 3.1.80 and 4.0.30, Intel(R) SPS versions before E5_04.01.04.400, E3_04.01.04.200, SoC-X_04.00.04.200 and SoC-A_04.00.04.300 may allow an unauthenticated user to potentially enable escalation of privileges via physical access.

Vulnerable Product	Search on Vulmon	Subscribe to Product
intel converged security and manageability engine
intel trusted execution technology 3.1.80
intel trusted execution technology 4.0.30
intel server platform services sps_e3_04.01.04.200
intel server platform services sps_e5_04.01.04.400
intel server platform services sps_soc-a_04.00.04.300
intel server platform services sps_soc-x_04.00.04.200

Intel has informed HP of potential security vulnerabilities identified in Intel® Converged Security and Manageability Engine (CSME), Server Platform Services (SPS), Intel® Trusted Execution Engine (TXE), Intel® Dynamic Application Loader (DAL), Intel® Active Management Technology (AMT), Intel® Standard Manageability (ISM) and Intel® Dynamic A ...

CWE-1188 https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00391 https://security.netapp.com/advisory/ntap-20201113-0005/https://security.netapp.com/advisory/ntap-20201113-0002/https://security.netapp.com/advisory/ntap-20201113-0004/https://nvd.nist.gov https://support.hp.com/us-en/document/c06962103

CVE-2020-8705

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect