Vulnerability Details CVE-2020-0597
Out-of-bounds read in IPv6 subsystem in Intel(R) AMT and Intel(R) ISM versions before 14.0.33 may allow an unauthenticated user to potentially enable denial of service via network access.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.02
EPSS Ranking 82.8%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
- https://security.netapp.com/advisory/ntap-20200611-0007/
- https://support.lenovo.com/de/en/product_security/len-30041
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html
- https://www.kb.cert.org/vuls/id/257161
- https://www.synology.com/security/advisory/Synology_SA_20_15
- https://security.netapp.com/advisory/ntap-20200611-0007/
- https://support.lenovo.com/de/en/product_security/len-30041
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html
- https://www.kb.cert.org/vuls/id/257161
- https://www.synology.com/security/advisory/Synology_SA_20_15
Products affected by CVE-2020-0597
-
cpe:2.3:a:intel:software_manager:11.0
-
cpe:2.3:a:intel:software_manager:11.10
-
cpe:2.3:a:intel:software_manager:11.11.76
-
cpe:2.3:a:intel:software_manager:11.20
-
cpe:2.3:a:intel:software_manager:11.22.76
-
cpe:2.3:a:intel:software_manager:11.8.76
-
cpe:2.3:a:intel:software_manager:12.0
-
cpe:2.3:a:intel:software_manager:12.0.63
-
cpe:2.3:a:intel:software_manager:13.0
-
cpe:2.3:a:intel:software_manager:13.0.31
-
cpe:2.3:a:intel:software_manager:14.0
-
cpe:2.3:a:intel:software_manager:14.0.32
-
cpe:2.3:o:intel:active_management_technology_firmware:11.0
-
cpe:2.3:o:intel:active_management_technology_firmware:11.0.25.3001
-
cpe:2.3:o:intel:active_management_technology_firmware:11.0.26.3000
-
cpe:2.3:o:intel:active_management_technology_firmware:11.10
-
cpe:2.3:o:intel:active_management_technology_firmware:11.11.60
-
cpe:2.3:o:intel:active_management_technology_firmware:11.11.65
-
cpe:2.3:o:intel:active_management_technology_firmware:11.11.70
-
cpe:2.3:o:intel:active_management_technology_firmware:11.11.76
-
cpe:2.3:o:intel:active_management_technology_firmware:11.2
-
cpe:2.3:o:intel:active_management_technology_firmware:11.20
-
cpe:2.3:o:intel:active_management_technology_firmware:11.22
-
cpe:2.3:o:intel:active_management_technology_firmware:11.22.0
-
cpe:2.3:o:intel:active_management_technology_firmware:11.22.60
-
cpe:2.3:o:intel:active_management_technology_firmware:11.22.65
-
cpe:2.3:o:intel:active_management_technology_firmware:11.22.70
-
cpe:2.3:o:intel:active_management_technology_firmware:11.22.76
-
cpe:2.3:o:intel:active_management_technology_firmware:11.5
-
cpe:2.3:o:intel:active_management_technology_firmware:11.6
-
cpe:2.3:o:intel:active_management_technology_firmware:11.7
-
cpe:2.3:o:intel:active_management_technology_firmware:11.8
-
cpe:2.3:o:intel:active_management_technology_firmware:11.8.50.3420
-
cpe:2.3:o:intel:active_management_technology_firmware:11.8.60
-
cpe:2.3:o:intel:active_management_technology_firmware:11.8.65
-
cpe:2.3:o:intel:active_management_technology_firmware:11.8.70
-
cpe:2.3:o:intel:active_management_technology_firmware:11.8.76
-
cpe:2.3:o:intel:active_management_technology_firmware:12.0
-
cpe:2.3:o:intel:active_management_technology_firmware:12.0.0
-
cpe:2.3:o:intel:active_management_technology_firmware:12.0.20
-
cpe:2.3:o:intel:active_management_technology_firmware:12.0.35
-
cpe:2.3:o:intel:active_management_technology_firmware:12.0.45
-
cpe:2.3:o:intel:active_management_technology_firmware:12.0.5
-
cpe:2.3:o:intel:active_management_technology_firmware:12.0.63
-
cpe:2.3:o:intel:active_management_technology_firmware:13.0
-
cpe:2.3:o:intel:active_management_technology_firmware:13.0.0
-
cpe:2.3:o:intel:active_management_technology_firmware:13.0.31
-
cpe:2.3:o:intel:active_management_technology_firmware:14.0
-
cpe:2.3:o:intel:active_management_technology_firmware:14.0.0
-
cpe:2.3:o:intel:active_management_technology_firmware:14.0.10
-
cpe:2.3:o:intel:active_management_technology_firmware:14.0.32