Path Traversal in Intel DAL and TXE Software
CVE-2020-0539

5.5MEDIUM

Key Information:

Vendor
Intel
Status
Intel(r) Amt And Intel(r) Csme
Vendor
CVE Published:
15 June 2020

Summary

The vulnerability allows an unprivileged user to exploit a path traversal issue within the Intel DAL and TXE software. This security flaw may result in the potential enablement of denial of service through local access, impacting system stability and performance. The affected software versions prior to specified thresholds must be updated to protect against this issue.

Affected Version(s)

Intel(R) AMT and Intel(R) CSME See provided reference

References

https://www.intel.com/content/www/us/en/security-center/a...
x_refsource_CONFIRM
https://security.netapp.com/advisory/ntap-20200611-0006/
x_refsource_CONFIRM
https://www.intel.com/content/www/us/en/security-center/a...
x_refsource_MISC

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.