Published: 12/11/2020 Updated: 19/10/2022

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 409

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

Improper initialization in subsystem for Intel(R) CSME versions before12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25, Intel(R) TXE versions prior to 4.0.30 Intel(R) SPS versions before E3_05.01.04.200 may allow a privileged user to potentially enable escalation of privilege via local access.

Vulnerable Product	Search on Vulmon	Subscribe to Product
intel trusted execution engine
intel server platform services
intel converged security and management engine
siemens simatic_s7-1518-4_pn\\/dp_mfp_firmware -
siemens simatic_s7-1518f-4_pn\\/dp_mfp_firmware -
siemens simatic_s7-1500_firmware -

Intel has informed HP of potential security vulnerabilities identified in Intel® Converged Security and Manageability Engine (CSME), Server Platform Services (SPS), Intel® Trusted Execution Engine (TXE), Intel® Dynamic Application Loader (DAL), Intel® Active Management Technology (AMT), Intel® Standard Manageability (ISM) and Intel® Dynamic A ...

CWE-665 https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00391 https://security.netapp.com/advisory/ntap-20201113-0005/https://security.netapp.com/advisory/ntap-20201113-0002/https://security.netapp.com/advisory/ntap-20201113-0004/https://cert-portal.siemens.com/productcert/pdf/ssa-501073.pdf https://nvd.nist.gov https://support.hp.com/us-en/document/c06962103

CVE-2020-8744

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect