CVE-2020-0586

HIGH

Intel Server Platform Services - Denial of Service

Title source: rule

Description

Improper initialization in subsystem for Intel(R) SPS versions before SPS_E3_04.01.04.109.0 and SPS_E3_04.08.04.070.0 may allow an authenticated user to potentially enable escalation of privilege and/or denial of service via local access.

References (4)

[Vendor Advisory] https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html

[Vendor Advisory] https://security.netapp.com/advisory/ntap-20200611-0004/

[Vendor Advisory] https://kc.mcafee.com/corporate/index?page=content&id=SB10321

[Various Sources] https://support.lenovo.com/de/en/product_security/len-30041

Scores

CVSS v3 7.8

EPSS 0.0007

EPSS Percentile 21.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-665

Status published

Products (1)

intel/server_platform_services sps_e3_04.00.00.000.0 - sps_e3_04.01.04.109.0

Published Jun 15, 2020

Tracked Since Feb 18, 2026