Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2020-8709
HistoryAug 13, 2020 - 3:15 a.m.

CVE-2020-8709

2020-08-1303:15:15
CWE-287
[email protected]
web.nvd.nist.gov
17
cve-2020-8709
intel
server
authentication
privilege escalation

5.8 Medium

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:L/Au:N/C:P/I:P/A:P

8.8 High

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.1 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

32.9%

JSON

Improper authentication in socket services for some Intelยฎ Server Boards, Server Systems and Compute Modules before version 2.45 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

Affected configurations

NVD
Node
intelserver_board_s2600wt2Match-
OR
intelserver_board_s2600wt2rMatch-
OR
intelserver_board_s2600wttMatch-
OR
intelserver_board_s2600wttrMatch-
AND
intelserver_board_s2600wt_firmwareRange<2.45
Node
intelserver_system_r1208wt2gsMatch-
OR
intelserver_system_r1208wt2gsrMatch-
OR
intelserver_system_r1208wttgsMatch-
OR
intelserver_system_r1208wttgsbppMatch-
OR
intelserver_system_r1208wttgsrMatch-
OR
intelserver_system_r1304wt2gsMatch-
OR
intelserver_system_r1304wt2gsrMatch-
OR
intelserver_system_r1304wttgsMatch-
OR
intelserver_system_r1304wttgsrMatch-
AND
intelserver_system_r1000wt_firmwareRange<2.45
Node
intelserver_system_r2208wt2ysMatch-
OR
intelserver_system_r2208wt2ysrMatch-
OR
intelserver_system_r2208wttyc1Match-
OR
intelserver_system_r2208wttyc1rMatch-
OR
intelserver_system_r2208wttysMatch-
OR
intelserver_system_r2208wttysrMatch-
OR
intelserver_system_r2224wttysMatch-
OR
intelserver_system_r2224wttysrMatch-
OR
intelserver_system_r2308wttysMatch-
OR
intelserver_system_r2308wttysrMatch-
OR
intelserver_system_r2312wttysMatch-
OR
intelserver_system_r2312wttysrMatch-
AND
intelserver_system_r2000wt_firmwareRange<2.45
Node
intelserver_board_s2600cw2Match-
OR
intelserver_board_s2600cw2rMatch-
OR
intelserver_board_s2600cw2sMatch-
OR
intelserver_board_s2600cw2srMatch-
OR
intelserver_board_s2600cwtMatch-
OR
intelserver_board_s2600cwtrMatch-
OR
intelserver_board_s2600cwtsMatch-
OR
intelserver_board_s2600cwtsrMatch-
AND
intelserver_board_s2600cwRange<2.45
Node
intelcompute_module_hns2600kpMatch-
OR
intelcompute_module_hns2600kpfMatch-
OR
intelcompute_module_hns2600kpfrMatch-
OR
intelcompute_module_hns2600kprMatch-
AND
intelcompute_module_hns2600kp_firmwareRange<2.45
Node
intelserver_board_s2600kpMatch-
OR
intelserver_board_s2600kpfMatch-
OR
intelserver_board_s2600kpfrMatch-
OR
intelserver_board_s2600kprMatch-
OR
intelserver_board_s2600kptrMatch-
AND
intelserver_board_s2600kp_firmwareRange<2.45
Node
intelcompute_module_hns2600tpMatch-
OR
intelcompute_module_hns2600tp24rMatch-
OR
intelcompute_module_hns2600tp24srMatch-
OR
intelcompute_module_hns2600tpfMatch-
OR
intelcompute_module_hns2600tpfrMatch-
OR
intelcompute_module_hns2600tprMatch-
AND
intelcompute_module_hns2600tp_firmwareRange<2.45
Node
intelserver_board_s2600tpMatch-
OR
intelserver_board_s2600tpfMatch-
OR
intelserver_board_s2600tpfrMatch-
OR
intelserver_board_s2600tprMatch-
AND
intelcompute_module_s2600tp_firmwareRange<2.45
Node
intelserver_board_s1200sp_firmwareRange<2.45
AND
intelserver_board_s1200splMatch-
OR
intelserver_board_s1200splrMatch-
OR
intelserver_board_s1200spoMatch-
OR
intelserver_board_s1200sporMatch-
OR
intelserver_board_s1200spsMatch-
OR
intelserver_board_s1200spsrMatch-
Node
intelserver_system_lr1304sp_firmwareRange<2.45
AND
intelserver_system_lr1304spcfg1Match-
OR
intelserver_system_lr1304spcfg1rMatch-
OR
intelserver_system_lr1304spcfsgx1Match-
Node
intelserver_system_lsvrp_firmwareRange<2.45
AND
intelserver_system_lsvrp4304es6xx1Match-
OR
intelserver_system_lsvrp4304es6xxrMatch-
Node
intelserver_system_r1000sp_firmwareRange<2.45
AND
intelserver_system_r1208sposhorMatch-
OR
intelserver_system_r1208sposhorrMatch-
OR
intelserver_system_r1304sposhbnMatch-
OR
intelserver_system_r1304sposhbnrMatch-
OR
intelserver_system_r1304sposhorMatch-
OR
intelserver_system_r1304sposhorrMatch-
Node
intelserver_board_s2600wf_firmwareRange<2.45
AND
intelserver_board_s2600wf0Match-
OR
intelserver_board_s2600wf0rMatch-
OR
intelserver_board_s2600wfqMatch-
OR
intelserver_board_s2600wfqrMatch-
OR
intelserver_board_s2600wftMatch-
OR
intelserver_board_s2600wftrMatch-
Node
intelserver_system_r1000wf_firmwareRange<2.45
AND
intelserver_system_lnetcnt3yMatch-
OR
intelserver_system_mcb2208wfaf4Match-
OR
intelserver_system_mcb2208wfaf5Match-
OR
intelserver_system_mcb2208wfaf6Match-
OR
intelserver_system_mcb2208wfhy2Match-
OR
intelserver_system_nb2208wfqnfviMatch-
OR
intelserver_system_r1208wfqysrMatch-
OR
intelserver_system_r1208wftysMatch-
OR
intelserver_system_r1208wftysrMatch-
OR
intelserver_system_r1304wf0ysMatch-
OR
intelserver_system_r1304wf0ysrMatch-
OR
intelserver_system_r1304wftysMatch-
OR
intelserver_system_r1304wftysrMatch-
Node
intelserver_system_r2000wf_firmwareRange<2.45
AND
intelserver_system_r2208wf0zsMatch-
OR
intelserver_system_r2208wf0zsrMatch-
OR
intelserver_system_r2208wfqzsMatch-
OR
intelserver_system_r2208wfqzsrMatch-
OR
intelserver_system_r2208wftzsMatch-
OR
intelserver_system_r2208wftzsrMatch-
OR
intelserver_system_r2224wfqzsMatch-
OR
intelserver_system_r2224wftzsMatch-
OR
intelserver_system_r2224wftzsrMatch-
OR
intelserver_system_r2308wftzsMatch-
OR
intelserver_system_r2308wftzsrMatch-
OR
intelserver_system_r2312wf0npMatch-
OR
intelserver_system_r2312wf0nprMatch-
OR
intelserver_system_r2312wfqzsMatch-
OR
intelserver_system_r2312wftzsMatch-
OR
intelserver_system_r2312wftzsrMatch-
OR
intelserver_system_vrn2208waf6Match-
OR
intelserver_system_vrn2208wfaf81Match-
OR
intelserver_system_vrn2208wfaf82Match-
OR
intelserver_system_vrn2208wfaf83Match-
OR
intelserver_system_vrn2208wfhy6Match-
Node
intelserver_board_s2600st_firmwareRange<2.45
AND
intelserver_board_s2600stbMatch-
OR
intelserver_board_s2600stbrMatch-
OR
intelserver_board_s2600stqMatch-
OR
intelserver_board_s2600stqrMatch-
Node
intelcompute_module_hns2600bp_firmwareRange<2.45
AND
intelcompute_module_hns2600bpbMatch-
OR
intelcompute_module_hns2600bpb24Match-
OR
intelcompute_module_hns2600bpb24rMatch-
OR
intelcompute_module_hns2600bpblcMatch-
OR
intelcompute_module_hns2600bpblc24Match-
OR
intelcompute_module_hns2600bpblc24rMatch-
OR
intelcompute_module_hns2600bpblcrMatch-
OR
intelcompute_module_hns2600bpbrMatch-
OR
intelcompute_module_hns2600bpqMatch-
OR
intelcompute_module_hns2600bpq24Match-
OR
intelcompute_module_hns2600bpq24rMatch-
OR
intelcompute_module_hns2600bpqrMatch-
OR
intelcompute_module_hns2600bpsMatch-
OR
intelcompute_module_hns2600bps24Match-
OR
intelcompute_module_hns2600bps24rMatch-
OR
intelcompute_module_hns2600bpsrMatch-
Node
intelserver_board_s2600bp_firmwareRange<2.45
AND
intelserver_board_s2600bpbMatch-
OR
intelserver_board_s2600bpbrMatch-
OR
intelserver_board_s2600bpqMatch-
OR
intelserver_board_s2600bpqrMatch-
OR
intelserver_board_s2600bpsMatch-
OR
intelserver_board_s2600bpsrMatch-

CNA Affected

[
  {
    "product": "Intel(R) Server Boards, Server Systems and Compute Modules Advisory",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Before version 2.45"
      }
    ]
  }
]

Related

prion 1
cvelist 1
nvd 1
intel 1
prion
prion
Authentication flaw
2020-08-13 03:15:00
cvelist
cvelist
CVE-2020-8709
2020-08-13 02:52:30
nvd
nvd
CVE-2020-8709
2020-08-13 03:15:15
intel
intel
Intelยฎ Server Boards, Server Systems and Compute Modulesย Advisory
2020-08-11 00:00:00

5.8 Medium

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:L/Au:N/C:P/I:P/A:P

8.8 High

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.1 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

32.9%

JSON
Related for CVE-2020-8709
prion1cvelist1nvd1intel1