Insufficient Control Flow Vulnerability in Intel Modular Server MFS2600KISPP Compute Module
CVE-2020-0577

8.8HIGH

Key Information:

Vendor: Intel
Status: Intel(r) Modular Server Compute Module
Vendor: CVE Published:; 15 April 2020

What is CVE-2020-0577?

The Intel Modular Server MFS2600KISPP Compute Module is affected by a vulnerability that arises from insufficient control flow. This deficiency allows an unauthenticated user to exploit adjacent access vulnerabilities to potentially escalate their privileges. It is crucial for users and administrators of the affected module to review security practices and implement recommended mitigations to protect their systems from potential exploitation.

Affected Version(s)

Intel(R) Modular Server Compute Module See provided reference

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_MISC

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 15, 2020
Vulnerability Reserved
Oct 28, 2019