CVE-2020-0594
CRITICALIntel AMT and ISM < 11.8.77 - Unauthenticated Out-of-bounds Read in IPv6 Subsystem
Title source: llmDescription
Out-of-bounds read in IPv6 subsystem in Intel(R) AMT and Intel(R) ISM versions before 11.8.77, 11.12.77, 11.22.77 and 12.0.64 may allow an unauthenticated user to potentially enable escalation of privilege via network access.
References (5)
Core 5
Core References
Vendor Advisory x_refsource_confirm
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html
Vendor Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20200611-0007/
Third Party Advisory, US Government Resource third-party-advisory
x_refsource_cert-vn
https://www.kb.cert.org/vuls/id/257161
Third Party Advisory x_refsource_confirm
https://www.synology.com/security/advisory/Synology_SA_20_15
Various Sources x_refsource_misc
https://support.lenovo.com/de/en/product_security/len-30041
Scores
CVSS v3
9.8
EPSS
0.0354
EPSS Percentile
87.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-125
Status
published
Products (2)
intel/active_management_technology_firmware
11.0 - 11.8.77
intel/service_manager
11.0 - 11.8.77
Published
Jun 15, 2020
Tracked Since
Feb 18, 2026