Vulnerability Details CVE-2020-0586
Improper initialization in subsystem for Intel(R) SPS versions before SPS_E3_04.01.04.109.0 and SPS_E3_04.08.04.070.0 may allow an authenticated user to potentially enable escalation of privilege and/or denial of service via local access.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 37.8%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 4.6
References
- https://kc.mcafee.com/corporate/index?page=content&id=SB10321
- https://security.netapp.com/advisory/ntap-20200611-0004/
- https://support.lenovo.com/de/en/product_security/len-30041
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html
- https://kc.mcafee.com/corporate/index?page=content&id=SB10321
- https://security.netapp.com/advisory/ntap-20200611-0004/
- https://support.lenovo.com/de/en/product_security/len-30041
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html
Products affected by CVE-2020-0586
-
cpe:2.3:a:intel:server_platform_services:*
-
cpe:2.3:a:intel:server_platform_services:sps_e3_04.01.04.054.0
-
cpe:2.3:a:intel:server_platform_services:sps_e5_04.00.04.381.0
-
cpe:2.3:a:intel:server_platform_services:sps_soc-a_04.00.04.181.0
-
cpe:2.3:a:intel:server_platform_services:sps_soc-x_04.00.04.086.0