Intel Compute Module Hns2600Bp Firmware vulnerabilities

CVE-2022-29510 [HIGH] CWE-92 CVE-2022-29510: Improper buffer restrictions in some Intel(R) Server Board M10JNP2SB BIOS firmware before version 7. Improper buffer restrictions in some Intel(R) Server Board M10JNP2SB BIOS firmware before version 7.219 may allow a privileged user to potentially enable escalation of privilege via local access.

CVE-2020-8708 [HIGH] CWE-287 CVE-2020-8708: Improper authentication for some Intel(R) Server Boards, Server Systems and Compute Modules before v Improper authentication for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

CVE-2020-8706 [HIGH] CWE-120 CVE-2020-8706: Buffer overflow in a daemon for some Intel(R) Server Boards, Server Systems and Compute Modules befo Buffer overflow in a daemon for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

CVE-2020-8718 [HIGH] CWE-120 CVE-2020-8718: Buffer overflow in a subsystem for some Intel(R) Server Boards, Server Systems and Compute Modules b Buffer overflow in a subsystem for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2020-8712 [HIGH] CWE-120 CVE-2020-8712: Buffer overflow in a verification process for some Intel(R) Server Boards, Server Systems and Comput Buffer overflow in a verification process for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.45 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2020-8713 [HIGH] CWE-287 CVE-2020-8713: Improper authentication for some Intel(R) Server Boards, Server Systems and Compute Modules before v Improper authentication for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

CVE-2020-8731 [HIGH] CWE-732 CVE-2020-8731: Incorrect execution-assigned permissions in the file system for some Intel(R) Server Boards, Server Incorrect execution-assigned permissions in the file system for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2020-8722 [HIGH] CWE-120 CVE-2020-8722: Buffer overflow in a subsystem for some Intel(R) Server Boards, Server Systems and Compute Modules b Buffer overflow in a subsystem for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow a privileged user to potentially enable escalation of privilege via local access.

CVE-2020-8714 [HIGH] CWE-287 CVE-2020-8714: Improper authentication for some Intel(R) Server Boards, Server Systems and Compute Modules before v Improper authentication for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2020-8730 [HIGH] CWE-787 CVE-2020-8730: Heap-based overflow for some Intel(R) Server Boards, Server Systems and Compute Modules before versi Heap-based overflow for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2020-8729 [HIGH] CWE-120 CVE-2020-8729: Buffer copy without checking size of input for some Intel(R) Server Boards, Server Systems and Compu Buffer copy without checking size of input for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow an authenticated user to potentially enable escalation of privilege via local access.

CVE-2020-8721 [HIGH] CWE-20 CVE-2020-8721: Improper input validation for some Intel(R) Server Boards, Server Systems and Compute Modules before Improper input validation for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow a privileged user to potentially enable escalation of privilege via local access.

CVE-2020-8709 [HIGH] CWE-287 CVE-2020-8709: Improper authentication in socket services for some Intel(R) Server Boards, Server Systems and Compu Improper authentication in socket services for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.45 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

CVE-2020-8707 [HIGH] CWE-120 CVE-2020-8707: Buffer overflow in daemon for some Intel(R) Server Boards, Server Systems and Compute Modules before Buffer overflow in daemon for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

CVE-2020-8719 [HIGH] CWE-120 CVE-2020-8719: Buffer overflow in subsystem for some Intel(R) Server Boards, Server Systems and Compute Modules bef Buffer overflow in subsystem for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow a privileged user to potentially enable escalation of privilege via local access.

CVE-2020-8732 [HIGH] CWE-787 CVE-2020-8732: Heap-based buffer overflow in the firmware for some Intel(R) Server Boards, Server Systems and Compu Heap-based buffer overflow in the firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

CVE-2020-8720 [MEDIUM] CWE-120 CVE-2020-8720: Buffer overflow in a subsystem for some Intel(R) Server Boards, Server Systems and Compute Modules b Buffer overflow in a subsystem for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow a privileged user to potentially enable denial of service via local access.

CVE-2020-8711 [MEDIUM] CVE-2020-8711: Improper access control in the bootloader for some Intel(R) Server Boards, Server Systems and Comput Improper access control in the bootloader for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.45 may allow a privileged user to potentially enable escalation of privilege via local access.

CVE-2020-8716 [MEDIUM] CVE-2020-8716: Improper access control for some Intel(R) Server Boards, Server Systems and Compute Modules before v Improper access control for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow an authenticated user to potentially enable denial of service via local access.

CVE-2020-8717 [MEDIUM] CWE-20 CVE-2020-8717: Improper input validation in a subsystem for some Intel Server Boards, Server Systems and Compute Mo Improper input validation in a subsystem for some Intel Server Boards, Server Systems and Compute Modules before version 1.59 may allow an authenticated user to potentially enable denial of service via local access.