CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-8756

Improper input validation in subsystem for Intel(R) CSME versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow a privileged user to potentially enable escalation of privilege via local access.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 17.4%

CVSS Severity

CVSS v3 Score 6.7

CVSS v2 Score 4.6

References

https://security.netapp.com/advisory/ntap-20201113-0002/
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00391
https://security.netapp.com/advisory/ntap-20201113-0002/
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00391

Products affected by CVE-2020-8756

Intel » Converged Security And Manageability Engine » Version: Any

cpe:2.3:a:intel:converged_security_and_manageability_engine:*
Intel » Converged Security And Manageability Engine » Version: N/A

cpe:2.3:a:intel:converged_security_and_manageability_engine:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-8756

Products

Pricing

Contact Us