Lucene search

[email protected]CVE-2020-8733

HistoryAug 13, 2020 - 3:15 a.m.

CVE-2020-8733

2020-08-1303:15:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cve-2020-8733

firmware vulnerability

buffer restrictions

intel server board m10jnp2sb

privilege escalation

6.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

7.2 High

AI Score

Confidence

High

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

12.3%

JSON

Improper buffer restrictions in the firmware for Intel® Server Board M10JNP2SB before version 7.210 may allow a privileged user to potentially enable escalation of privilege via local access.

CPENameOperatorVersion
intel:m10jnp2sb_firmwareintel m10jnp2sb firmwarelt7.210

CPE	Name	Operator	Version
intel:m10jnp2sb_firmware	intel m10jnp2sb firmware	lt	7.210

References

security.netapp.com/advisory/ntap-20200814-0003/

www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00386.html

6.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

7.2 High

AI Score

Confidence

High

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

12.3%

JSON

Related for CVE-2020-8733

cvelist1 prion1 intel1 nessus1