Design/Logic Flaw

2023-05-1014:15:00

PRIOn knowledge base

www.prio-n.com

design flaw

logic flaw

memory access

buffer overflow

privileged user

escalation of privilege

local access

nvd

7.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

25.9%

JSON

Access of memory location after end of buffer in some Intel® Server Board BMC firmware before version 2.90 may allow a privileged user to enable escalation of privilege via local access.

CPENameOperatorVersion
server_system_d50tnp1mhcpac_firmwarelt2.90
server_system_d50tnp1mhcrac_firmwarelt2.90
server_system_d50tnp1mhcrlc_firmwarelt2.90
server_system_d50tnp2mfalac_firmwarelt2.90
server_system_d50tnp2mhstac_firmwarelt2.90
server_system_d50tnp2mhsvac_firmwarelt2.90
server_system_m50cyp1ur204_firmwarelt2.90
server_system_m50cyp1ur212_firmwarelt2.90
server_system_m50cyp2ur208_firmwarelt2.90
server_system_m50cyp2ur312_firmwarelt2.90

Name	Operator	Version
server_system_d50tnp1mhcpac_firmware	lt	2.90
server_system_d50tnp1mhcrac_firmware	lt	2.90
server_system_d50tnp1mhcrlc_firmware	lt	2.90
server_system_d50tnp2mfalac_firmware	lt	2.90
server_system_d50tnp2mhstac_firmware	lt	2.90
server_system_d50tnp2mhsvac_firmware	lt	2.90
server_system_m50cyp1ur204_firmware	lt	2.90
server_system_m50cyp1ur212_firmware	lt	2.90
server_system_m50cyp2ur208_firmware	lt	2.90
server_system_m50cyp2ur312_firmware	lt	2.90