CVE-2020-8746

Integer overflow in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

Published: Nov 12, 2020
Updated: Apr 14, 2023
CVE: CVE-2020-8746
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.5
AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS v2:

Severity: Low
Score: 3.3
AV:A/AC:L/Au:N/C:N/I:N/A:P

CWEs:

CWE-190

Affected Software
References

Software	From	Fixed in
intel / active_management_technology_firmware	-	11.8.80
intel / active_management_technology_firmware	11.12.0	11.12.80
intel / active_management_technology_firmware	11.22.0	11.22.80
intel / active_management_technology_firmware	12.0	12.0.70
intel / active_management_technology_firmware	14.0	14.0.45

https://security.netapp.com/advisory/ntap-20201113-0003/
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00391

Vulnerability Database

289,599

CVE-2020-8746