Use after free in DAL subsystem for Intel(R) CSME versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25, Intel(R) TXE 3.1.80, 4.0.30 may allow an authenticated user to potentially enable escalation of privileges via local access.
References
Link | Resource |
---|---|
https://security.netapp.com/advisory/ntap-20201113-0002/ | Third Party Advisory |
https://security.netapp.com/advisory/ntap-20201113-0005/ | Third Party Advisory |
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00391 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
No history.
Information
Published : 2020-11-12 18:15
Updated : 2024-02-04 21:23
NVD link : CVE-2020-12303
Mitre link : CVE-2020-12303
CVE.ORG link : CVE-2020-12303
JSON object : View
Products Affected
intel
- converged_security_and_manageability_engine
- trusted_execution_technology
CWE
CWE-416
Use After Free