cbcvebase.
CVE-2020-8709
published 2020-08-13

CVE-2020-8709: Improper authentication in socket services for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.45 may allow an unauthenticated…

high8.8CVSS 3.1
AVAACLPRNUINSUCHIHAH
Improper authentication in socket services for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.45 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

Affected

18 ranges
VendorProductVersion rangeFixed in
intelcompute_module_hns2600bp_firmware< 2.452.45
intelcompute_module_hns2600kp_firmware< 2.452.45
intelcompute_module_hns2600tp_firmware< 2.452.45
intelcompute_module_s2600tp_firmware< 2.452.45
intelserver_board_s1200sp_firmware< 2.452.45
intelserver_board_s2600bp_firmware< 2.452.45
intelserver_board_s2600cw< 2.452.45
intelserver_board_s2600kp_firmware< 2.452.45
intelserver_board_s2600st_firmware< 2.452.45
intelserver_board_s2600wf_firmware< 2.452.45
intelserver_board_s2600wt_firmware< 2.452.45
intelserver_system_lr1304sp_firmware< 2.452.45
intelserver_system_lsvrp_firmware< 2.452.45
intelserver_system_r1000sp_firmware< 2.452.45
intelserver_system_r1000wf_firmware< 2.452.45
intelserver_system_r1000wt_firmware< 2.452.45
intelserver_system_r2000wf_firmware< 2.452.45
intelserver_system_r2000wt_firmware< 2.452.45