CVE-2020-12380

HIGH

Intel BMC Firmware < 2.47 - Authenticated Out-of-bounds Read

Title source: llm
STIX 2.1

Description

Out of bounds read in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.47 may allow an authenticated user to potentially enable escalation of privilege via local access.

References (1)

Core 1
Core References

Scores

CVSS v3 7.8
EPSS 0.0026
EPSS Percentile 17.8%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-125
Status published
Products (1)
intel/bmc_firmware < 2.47
Published Feb 17, 2021
Tracked Since Feb 18, 2026