Improper Initialization in Intel SPS Products
CVE-2020-0586

7.8HIGH

Key Information:

Vendor
Intel
Status
Intel(r) Sps
Vendor
CVE Published:
15 June 2020

Summary

Improper initialization in the subsystem for certain versions of Intel SPS may permit an authenticated user to exploit this weakness, potentially leading to escalation of privileges or denial of service through local access. This vulnerability underscores the importance of updating to the latest software versions to mitigate potential security risks.

Affected Version(s)

Intel(R) SPS See provided reference

References

https://www.intel.com/content/www/us/en/security-center/a...
x_refsource_CONFIRM
https://security.netapp.com/advisory/ntap-20200611-0004/
x_refsource_CONFIRM
https://www.intel.com/content/www/us/en/security-center/a...
x_refsource_MISC

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.