Insufficient input validation in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.47 may allow an authenticated user to potentially enable escalation of privilege via local access.
References
Link | Resource |
---|---|
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00434.html | Patch Vendor Advisory |
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00434.html | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 04:59
Type | Values Removed | Values Added |
---|---|---|
References | () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00434.html - Patch, Vendor Advisory |
Information
Published : 2021-02-17 14:15
Updated : 2024-11-21 04:59
NVD link : CVE-2020-12377
Mitre link : CVE-2020-12377
CVE.ORG link : CVE-2020-12377
JSON object : View
Products Affected
intel
- r1304wftysr
- r2312wf0npr
- s2600bpsr
- r2208wfqzs
- r2224wftzsr
- r2312wftzs
- r2208wf0zsr
- hns2600bps24r
- hns2600bpbr
- s2600bpbr
- r1000wf
- r1304wf0ysr
- r2208wftzsr
- r2308wftzsr
- hns2600bpqr
- s2600wfq
- r1304wftys
- r2312wf0np
- r2208wftzs
- hns2600bpb24r
- hns2600bps24
- r2208wfqzsr
- bmc_firmware
- hns2600bpb24
- r1304wf0ys
- r1208wftys
- r2308wftzs
- r1208wfqysr
- s2600wft
- hns2600bpb
- s2600bpqr
- r2224wfqzs
- r2312wftzsr
- hns2600bpsr
- s2600stq
- r2312wfqzs
- hns2600bpq
- r2208wf0zs
- hns2600bpq24
- r1208wftysr
- hns2600bps
- s2600stb
- hns2600bpblc
- s2600wf0
- hns2600bpq24r
- hns2600bpblc24
- r2224wftzs
- hns2600bpblc24r
CWE
CWE-20
Improper Input Validation