Intel Server Boards/Server Systems/Compute Modules till 2.46 BMC Firmware minneskorruption

InträderedigeraHistoryDiffjsonxmlCTI

En kritiskt svag punkt identifierades i Intel Server Boards, Server Systems och Compute Modules till 2.46 (Forum Software). Som påverkar en okänd funktion av komponenten BMC Firmware. En uppgradering till den version 2.47 att åtgärda problemet.

Fält20/02/2021 18:2803/03/2021 19:0303/03/2021 19:09
vendorIntelIntelIntel
nameServer Boards/Server Systems/Compute ModulesServer Boards/Server Systems/Compute ModulesServer Boards/Server Systems/Compute Modules
version<=2.46<=2.46<=2.46
componentBMC FirmwareBMC FirmwareBMC Firmware
cwe120 (minneskorruption)120 (minneskorruption)120 (minneskorruption)
risk222
cvss3_vuldb_avLLL
cvss3_vuldb_acLLL
cvss3_vuldb_prLLL
cvss3_vuldb_uiNNN
cvss3_vuldb_sUUU
cvss3_vuldb_cHHH
cvss3_vuldb_iHHH
cvss3_vuldb_aHHH
cvss3_vuldb_rlOOO
cvss3_vuldb_rcCCC
identifierintel-sa-00434intel-sa-00434intel-sa-00434
urlhttps://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00434.htmlhttps://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00434.htmlhttps://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00434.html
nameUpgradeUpgradeUpgrade
upgrade_version2.472.472.47
cveCVE-2020-12374CVE-2020-12374CVE-2020-12374
date1613775600 (20/02/2021)1613775600 (20/02/2021)1613775600 (20/02/2021)
typeForum SoftwareForum SoftwareForum Software
cvss2_vuldb_avLLL
cvss2_vuldb_acLLL
cvss2_vuldb_ciCCC
cvss2_vuldb_iiCCC
cvss2_vuldb_aiCCC
cvss2_vuldb_rcCCC
cvss2_vuldb_rlOFOFOF
cvss2_vuldb_auSSS
cvss2_vuldb_eNDNDND
cvss3_vuldb_eXXX
cvss2_vuldb_basescore6.86.86.8
cvss2_vuldb_tempscore6.85.95.9
cvss3_vuldb_basescore7.87.87.8
cvss3_vuldb_tempscore7.87.57.5
cvss3_meta_basescore7.87.87.3
cvss3_meta_tempscore7.87.57.0
price_0day$5k-$25k$5k-$25k$5k-$25k
cve_assigned15880248001588024800
cve_nvd_summaryBuffer overflow in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.47 may allow a privileged user to potentially enable escalation of privilege via local access.Buffer overflow in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.47 may allow a privileged user to potentially enable escalation of privilege via local access.
cvss3_nvd_avL
cvss3_nvd_acL
cvss3_nvd_prH
cvss3_nvd_uiN
cvss3_nvd_sU
cvss3_nvd_cH
cvss3_nvd_iH
cvss3_nvd_aH
cvss2_nvd_avL
cvss2_nvd_acL
cvss2_nvd_auN
cvss2_nvd_ciP
cvss2_nvd_iiP
cvss2_nvd_aiP
cvss2_nvd_basescore4.6
cvss3_nvd_basescore6.7

Interested in the pricing of exploits?

See the underground prices here!