Intel Server Board S2600WF Firmware 02.01.0011

CPE Details

Intel Server Board S2600WF Firmware 02.01.0011
intel
server_board_s2600wf_firmware
02.01.0011
2020-11-18
11h27 +00:00
2021-05-04
13h06 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:o:intel:server_board_s2600wf_firmware:02.01.0011:*:*:*:*:*:*:*

Informations

Vendor

intel

Product

server_board_s2600wf_firmware

Version

02.01.0011

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2020-0572 2020-11-12 17h56 +00:00 Improper input validation in the firmware for Intel(R) Server Board S2600ST and S2600WF families may allow a privileged user to potentially enable escalation of privilege via local access.
6.7
Moyen
CVE-2020-8709 2020-08-13 00h52 +00:00 Improper authentication in socket services for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.45 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.
8.8
Haute
CVE-2020-8712 2020-08-13 00h42 +00:00 Buffer overflow in a verification process for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.45 may allow an authenticated user to potentially enable escalation of privilege via local access.
7.8
Haute
CVE-2020-8711 2020-08-13 00h42 +00:00 Improper access control in the bootloader for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.45 may allow a privileged user to potentially enable escalation of privilege via local access.
6.7
Moyen
CVE-2020-8710 2020-08-13 00h31 +00:00 Buffer overflow in the bootloader for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.45 may allow a privileged user to potentially enable escalation of privilege via local access.
6.7
Moyen
Les informations affichées sur CVE Find proviennent de plusieurs sources de référence rigoureusement sélectionnées. Les données CVE sont fournies par MITRE Corporation et la National Vulnerability Database (NVD). Le catalogue des vulnérabilités activement exploitées (KEV) provient de la Cybersecurity and Infrastructure Security Agency (CISA), tandis que les scores EPSS sont issus de FIRST.org. Enfin, les données relatives aux faiblesses logicielles (CWE) et aux schémas d'attaque courants (CAPEC) sont maintenues par MITRE Corporation, et les informations sur les configurations logicielles et matérielles (CPE) proviennent du NVD.