CVE-2020-24473

HIGH

Intel(R) Server Boards, Server Systems and Compute Modules <2.48 - ...

Title source: llm

Description

Out of bounds write in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authenticated user to potentially enable escalation of privilege via local access.

References (1)

Core 1

Core References

Vendor Advisory x_refsource_misc

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00476.html

Scores

CVSS v3 7.8

EPSS 0.0006

EPSS Percentile 18.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-787

Status published

Products (1)

intel/baseboard_management_controller_firmware < 2.48.ce3e3bd2

Published Jun 09, 2021

Tracked Since Feb 18, 2026