CVE-2020-0586
HIGHIntel Server Platform Services < sps_e3_04.01.04.109.0 - Privilege Escalation and DoS via Improper Initialization
Title source: llmDescription
Improper initialization in subsystem for Intel(R) SPS versions before SPS_E3_04.01.04.109.0 and SPS_E3_04.08.04.070.0 may allow an authenticated user to potentially enable escalation of privilege and/or denial of service via local access.
References (4)
Core 4
Core References
Vendor Advisory x_refsource_confirm
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html
Vendor Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20200611-0004/
Vendor Advisory x_refsource_confirm
https://kc.mcafee.com/corporate/index?page=content&id=SB10321
Various Sources x_refsource_misc
https://support.lenovo.com/de/en/product_security/len-30041
Scores
CVSS v3
7.8
EPSS
0.0036
EPSS Percentile
27.2%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-665
Status
published
Products (1)
intel/server_platform_services
sps_e3_04.00.00.000.0 - sps_e3_04.01.04.109.0
Published
Jun 15, 2020
Tracked Since
Feb 18, 2026