Integer Overflow Vulnerability in Intel AMT Subsystem
CVE-2020-8746

6.5MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Amt
Vendor: CVE Published:; 12 November 2020

Summary

An integer overflow vulnerability exists in the subsystem for Intel Active Management Technology (AMT) prior to certain secure versions. This flaw potentially allows unauthenticated users with adjacent access to compromise system integrity, leading to potential denial of service conditions. Ensuring timely updates to the product is critical to safeguarding networks from exploitation.

Affected Version(s)

Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_MISC

https://security.netapp.com/advisory/ntap-20201113-0003/

x_refsource_CONFIRM

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 12, 2020
Vulnerability Reserved
Feb 6, 2020