VDB
CVE-2020-0596
CVE-2020-0596
PUBLISHED
CVSS 7.5 HIGH
Improper input validation in DHCPv6 subsystem in Intel(R) AMT and Intel(R) ISM versions before 11.8.77, 11.12.77, 11.22.77 and 12.0.64 may allow an unauthenticated user to potentially enable information disclosure via network access.
EPSS 1.26% · 79.8th percentile
Risk Scores
CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS Score
1.26%
79.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | Intel(R) AMT and Intel(R) ISM | See provided reference |
| intel | active_management_technology_firmware | 11.10, 11.20, 12.0 |
| intel | service_manager | 11.0, 11.20, 12.0 |
Timeline
- Jun 9, 2020 CVE Published
- Apr 14, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 19, 2025 EPSS Score
- Mar 25, 2025 EPSS Score
- Mar 29, 2025 EPSS Score
- Mar 30, 2025 EPSS Score
- Apr 1, 2025 EPSS Score
- Apr 2, 2025 EPSS Score
- Apr 4, 2025 EPSS Score
References
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00366.html advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00322.html advisory
- https://software.intel.com/security-software-guidance/processors-affected-transient-execution-attack-mitigation-product-cpu-model advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00320.html advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00266.html advisory
- https://security.netapp.com/advisory/ntap-20200611-0007/ url
- https://www.synology.com/security/advisory/Synology_SA_20_15 url
- https://support.lenovo.com/de/en/product_security/len-30041 url
- https://nvd.nist.gov/vuln/detail/CVE-2020-0596 advisory
- https://security.netapp.com/advisory/ntap-20200611-0007 url