Cross-Site Scripting Vulnerability in Intel Server Boards and Systems
CVE-2020-8723

6.3MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Server Boards, Server Systems And Compute Modules Advisory
Vendor: CVE Published:; 13 August 2020

Summary

A cross-site scripting vulnerability exists in certain Intel Server Boards, Server Systems, and Compute Modules prior to version 1.59. This vulnerability allows an unauthenticated user to potentially escalate privileges by exploiting the XSS flaw through adjacent access. If successfully exploited, it could enable unauthorized actions affecting server operations. If you're using affected Intel products, it's crucial to apply the necessary updates to mitigate the risks associated with this vulnerability.

Affected Version(s)

Intel(R) Server Boards, Server Systems and Compute Modules Advisory Before version 1.59

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_MISC

https://security.netapp.com/advisory/ntap-20200814-0002/

x_refsource_CONFIRM

CVSS V3.1

Score:

6.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Aug 13, 2020
Vulnerability Reserved
Feb 6, 2020