Out of bounds write in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authenticated user to potentially enable escalation of privilege via local access.
References
Link | Resource |
---|---|
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00476.html | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2021-06-09 13:15
Updated : 2021-07-01 12:55
NVD link : CVE-2020-24473
Mitre link : CVE-2020-24473
JSON object : View
CWE
CWE-787
Out-of-bounds Write
Products Affected
intel
- server_system_r2208wftzs
- server_system_r1304wf0ysr
- server_system_r1304wftys
- baseboard_management_controller_firmware
- server_system_r2224wfqzs
- compute_module_hns2600bps24r
- server_board_s2600wft
- server_board_s2600bpbr
- server_board_s2600wftr
- server_board_s2600stb
- server_system_r2312wfqzs
- compute_module_hns2600bpb24r
- server_system_r2312wf0np
- server_system_r2208wf0zsr
- compute_module_hns2600bpbr
- server_system_r1208wftysr
- server_system_r1208wftys
- server_system_r2312wftzs
- server_system_r1208wfqysr
- compute_module_hns2600bpqr
- server_system_r2208wfqzsr
- server_system_r2224wftzsr
- server_board_s2600bps
- server_system_r1304wf0ys
- server_board_s2600wf0
- server_board_s2600stbr
- server_system_r1304wftysr
- server_board_s2600bpsr
- server_board_s2600wf0r
- server_system_r2224wftzs
- server_board_s2600bpq
- server_board_s2600stqr
- server_system_r2208wftzsr
- server_board_s2600bpqr
- server_system_r2208wf0zs
- server_board_s2600wfqr
- server_system_r2312wftzsr
- server_board_s2600stq
- server_board_s2600bpb
- server_system_r2208wfqzs
- compute_module_hns2600bpsr
- server_system_r2308wftzs
- compute_module_hns2600bpq24r
- server_system_r2308wftzsr
- server_system_r2312wf0npr
- server_board_s2600wfq