CVE-2020-24475

MEDIUM

Intel(R) Server Boards, Server Systems and Compute Modules <2.48 - DoS

Title source: llm

Description

Improper initialization in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authenticated user to potentially enable denial of service via local access.

References (1)

[Vendor Advisory] https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00476.html

Scores

CVSS v3 5.5

EPSS 0.0005

EPSS Percentile 15.5%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-665

Status published

Products (1)

intel/baseboard_management_controller_firmware < 2.48.ce3e3bd2

Published Jun 09, 2021

Tracked Since Feb 18, 2026