Vulnerability Description
Insufficient control flow management in subsystem for Intel(R) CSME versions before 11.8.80, Intel(R) TXE versions before 3.1.80 may allow an unauthenticated user to potentially enable information disclosure via physical access.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Intel | Converged Security And Manageability Engine | < 11.8.80 |
| Intel | Trusted Execution Technology | < 3.1.80 |
References
- https://security.netapp.com/advisory/ntap-20201113-0002/Third Party Advisory
- https://security.netapp.com/advisory/ntap-20201113-0005/Third Party Advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00391Vendor Advisory
- https://security.netapp.com/advisory/ntap-20201113-0002/Third Party Advisory
- https://security.netapp.com/advisory/ntap-20201113-0005/Third Party Advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00391Vendor Advisory
FAQ
What is CVE-2020-8751?
CVE-2020-8751 is a vulnerability with a CVSS score of 4.6 (MEDIUM). Insufficient control flow management in subsystem for Intel(R) CSME versions before 11.8.80, Intel(R) TXE versions before 3.1.80 may allow an unauthenticated user to potentially enable information dis...
How severe is CVE-2020-8751?
CVE-2020-8751 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-8751?
Check the references section above for vendor advisories and patch information. Affected products include: Intel Converged Security And Manageability Engine, Intel Trusted Execution Technology.