Vulnerability Details CVE-2020-0537
Improper input validation in subsystem for Intel(R) AMT versions before 11.8.77, 11.12.77, 11.22.77 and 12.0.64 may allow a privileged user to potentially enable denial of service via network access.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 61.2%
CVSS Severity
CVSS v3 Score 4.9
CVSS v2 Score 4.0
References
- https://security.netapp.com/advisory/ntap-20200611-0007/
- https://support.lenovo.com/de/en/product_security/len-30041
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html
- https://security.netapp.com/advisory/ntap-20200611-0007/
- https://support.lenovo.com/de/en/product_security/len-30041
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html
Products affected by CVE-2020-0537
-
cpe:2.3:o:intel:active_management_technology_firmware:11.0
-
cpe:2.3:o:intel:active_management_technology_firmware:11.0.25.3001
-
cpe:2.3:o:intel:active_management_technology_firmware:11.0.26.3000
-
cpe:2.3:o:intel:active_management_technology_firmware:11.10
-
cpe:2.3:o:intel:active_management_technology_firmware:11.11.60
-
cpe:2.3:o:intel:active_management_technology_firmware:11.11.65
-
cpe:2.3:o:intel:active_management_technology_firmware:11.11.70
-
cpe:2.3:o:intel:active_management_technology_firmware:11.11.76
-
cpe:2.3:o:intel:active_management_technology_firmware:11.11.77
-
cpe:2.3:o:intel:active_management_technology_firmware:11.12
-
cpe:2.3:o:intel:active_management_technology_firmware:11.12.0
-
cpe:2.3:o:intel:active_management_technology_firmware:11.2
-
cpe:2.3:o:intel:active_management_technology_firmware:11.20
-
cpe:2.3:o:intel:active_management_technology_firmware:11.22
-
cpe:2.3:o:intel:active_management_technology_firmware:11.22.0
-
cpe:2.3:o:intel:active_management_technology_firmware:11.22.60
-
cpe:2.3:o:intel:active_management_technology_firmware:11.22.65
-
cpe:2.3:o:intel:active_management_technology_firmware:11.22.70
-
cpe:2.3:o:intel:active_management_technology_firmware:11.22.76
-
cpe:2.3:o:intel:active_management_technology_firmware:11.5
-
cpe:2.3:o:intel:active_management_technology_firmware:11.6
-
cpe:2.3:o:intel:active_management_technology_firmware:11.7
-
cpe:2.3:o:intel:active_management_technology_firmware:11.8
-
cpe:2.3:o:intel:active_management_technology_firmware:11.8.50.3420
-
cpe:2.3:o:intel:active_management_technology_firmware:11.8.60
-
cpe:2.3:o:intel:active_management_technology_firmware:11.8.65
-
cpe:2.3:o:intel:active_management_technology_firmware:11.8.70
-
cpe:2.3:o:intel:active_management_technology_firmware:11.8.76
-
cpe:2.3:o:intel:active_management_technology_firmware:12.0
-
cpe:2.3:o:intel:active_management_technology_firmware:12.0.0
-
cpe:2.3:o:intel:active_management_technology_firmware:12.0.20
-
cpe:2.3:o:intel:active_management_technology_firmware:12.0.35
-
cpe:2.3:o:intel:active_management_technology_firmware:12.0.45
-
cpe:2.3:o:intel:active_management_technology_firmware:12.0.5
-
cpe:2.3:o:intel:active_management_technology_firmware:12.0.63