VDB
CVE-2020-8747
CVE-2020-8747
PUBLISHED
CVSS 6.400000095367432 MEDIUM
Out-of-bounds read in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable information disclosure and/or denial of service via network access.
EPSS 0.80% · 74.5th percentile
Risk Scores
CVSS 2.0
6.400000095367432
EPSS Score
0.80%
74.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| netapp | cloud_backup | |
| intel | active_management_technology_firmware | 11.12.0, 14.0, 0 |
| n/a | Intel(R) AMT | * |
Exploit Intelligence
Timeline
- Nov 12, 2020 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Feb 28, 2022 EPSS Score
- May 1, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Nov 6, 2022 EPSS Score
References
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00403.html advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00391.html advisory
- https://www.moxa.com/en/support/product-support/security-advisory/mpsa-256821-security-enhancement-intel%C2%AE-bios-firmware-dos-(intel-sa-00813) advisory
- https://www.moxa.com/en/support/product-support/security-advisory/mpsa-256823-security-enhancement-intel%C2%AE-active-management-technology-(amt)-multiple-vulnerabilities-(intel-sa-00709) advisory
- https://www.moxa.com/en/support/product-support/security-advisory/mpsa-256822-security-enhancement-intel%C2%AE-converged-security-management-engine-(csme)-active-management-technology-(amt) advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00391 url
- https://security.netapp.com/advisory/ntap-20201113-0003/ url
- https://nvd.nist.gov/vuln/detail/CVE-2020-8747 advisory
- https://security.netapp.com/advisory/ntap-20201113-0003 url