Intel Server Board S2600St Firmware vulnerabilities

CVE-2020-8717 [MEDIUM] CWE-20 CVE-2020-8717: Improper input validation in a subsystem for some Intel Server Boards, Server Systems and Compute Mo Improper input validation in a subsystem for some Intel Server Boards, Server Systems and Compute Modules before version 1.59 may allow an authenticated user to potentially enable denial of service via local access.

CVE-2020-8723 [MEDIUM] CWE-79 CVE-2020-8723: Cross-site scripting for some Intel(R) Server Boards, Server Systems and Compute Modules before vers Cross-site scripting for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

CVE-2020-8710 [MEDIUM] CWE-120 CVE-2020-8710: Buffer overflow in the bootloader for some Intel(R) Server Boards, Server Systems and Compute Module Buffer overflow in the bootloader for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.45 may allow a privileged user to potentially enable escalation of privilege via local access.

CVE-2020-8715 [MEDIUM] CWE-763 CVE-2020-8715: Invalid pointer for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1 Invalid pointer for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow an unauthenticated user to potentially enable denial of service via local access.

CVE-2018-12173 [HIGH] CWE-732 CVE-2018-12173: Insufficient access protection in firmware in Intel Server Board, Intel Server System and Intel Comp Insufficient access protection in firmware in Intel Server Board, Intel Server System and Intel Compute Module before firmware version 00.01.0014 may allow an unauthenticated attacker to potentially execute arbitrary code resulting in information disclosure, escalation of privilege and/or denial of service via local access.