VDB
CVE-2020-0541
CVE-2020-0541
PUBLISHED
CVSS 6.699999809265137 MEDIUM
Out-of-bounds write in subsystem for Intel(R) CSME versions before 12.0.64, 13.0.32, 14.0.33 and 14.5.12 may allow a privileged user to potentially enable escalation of privilege via local access.
EPSS 0.08% · 23.2th percentile
Risk Scores
CVSS 3.1
6.699999809265137
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS Score
0.08%
23.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | Intel(R) CSME | See provided reference |
| intel | converged_security_management_engine_firmware | 12.0, 14.0, 14.5.11 |
Exploit Intelligence
Timeline
- Jun 9, 2020 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Feb 28, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- May 1, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
References
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00366.html advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00322.html advisory
- https://software.intel.com/security-software-guidance/processors-affected-transient-execution-attack-mitigation-product-cpu-model advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00320.html advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00266.html advisory
- https://security.netapp.com/advisory/ntap-20200611-0006/ url
- https://support.lenovo.com/de/en/product_security/len-30041 url
- https://nvd.nist.gov/vuln/detail/CVE-2020-0541 advisory
- https://security.netapp.com/advisory/ntap-20200611-0006 url