CVE-2020-0594

CRITICAL

Intel AMT and ISM < 11.8.77 - Unauthenticated Out-of-bounds Read in IPv6 Subsystem

Title source: llm
STIX 2.1

Description

Out-of-bounds read in IPv6 subsystem in Intel(R) AMT and Intel(R) ISM versions before 11.8.77, 11.12.77, 11.22.77 and 12.0.64 may allow an unauthenticated user to potentially enable escalation of privilege via network access.

References (5)

Core 5
Core References
Vendor Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20200611-0007/
Third Party Advisory, US Government Resource third-party-advisory x_refsource_cert-vn
https://www.kb.cert.org/vuls/id/257161
Third Party Advisory x_refsource_confirm
https://www.synology.com/security/advisory/Synology_SA_20_15

Scores

CVSS v3 9.8
EPSS 0.0354
EPSS Percentile 87.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-125
Status published
Products (2)
intel/active_management_technology_firmware 11.0 - 11.8.77
intel/service_manager 11.0 - 11.8.77
Published Jun 15, 2020
Tracked Since Feb 18, 2026