Path Traversal Vulnerability in Intel EMA Product
CVE-2020-12315

9.8CRITICAL

Key Information:

Vendor: Intel
Status: Intel(r) Ema
Vendor: CVE Published:; 12 November 2020

What is CVE-2020-12315?

The vulnerability in Intel EMA, prior to version 1.3.3, allows an unauthenticated user to exploit path traversal flaws. This may potentially facilitate an escalation of privilege through network access, compromising the integrity and security of the system. Organizations using affected versions are urged to update their software to safeguard against this risk.

Affected Version(s)

Intel(R) EMA before version 1.3.3

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_MISC

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 12, 2020
Vulnerability Reserved
Apr 28, 2020