CVE-2020-0586

CWE-6653 documents3 sources
Severity
7.8HIGH
EPSS
0.1%
top 78.00%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Intel Server Platform Services
Timeline
PublishedJun 15
Latest updateMay 24

Description

Improper initialization in subsystem for Intel(R) SPS versions before SPS_E3_04.01.04.109.0 and SPS_E3_04.08.04.070.0 may allow an authenticated user to potentially enable escalation of privilege and/or denial of service via local access.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

NVDintel/server_platform_servicessps_e3_04.00.00.000.0sps_e3_04.01.04.109.0+4
CVEListV5intel(r)_spsSee provided reference

🔴Vulnerability Details

2
GHSA
GHSA-78x4-h553-vjf2: Improper initialization in subsystem for Intel(R) SPS versions before SPS_E3_042022-05-24
CVEList
CVE-2020-0586: Improper initialization in subsystem for Intel(R) SPS versions before SPS_E3_042020-06-15
CVE-2020-0586 (HIGH CVSS 7.8) | Improper initialization in subsyste | cvebase.io