1. Home
  2. CVE Database
  3. CVE-2020-8749
HIGH · 8.8

CVE-2020-8749

Out-of-bounds read in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable escalation of privilege via ad...

Vulnerability Description

Out-of-bounds read in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

CVSS Score

8.8

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
IntelActive Management Technology Firmware< 11.8.80
NetappCloud Backup-

Related Weaknesses (CWE)

CWE-125

References

FAQ

What is CVE-2020-8749?

CVE-2020-8749 is a vulnerability with a CVSS score of 8.8 (HIGH). Out-of-bounds read in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable escalation of privilege via ad...

How severe is CVE-2020-8749?

CVE-2020-8749 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-8749?

Check the references section above for vendor advisories and patch information. Affected products include: Intel Active Management Technology Firmware, Netapp Cloud Backup.