CVE-2020-24475

MEDIUM

Intel(R) Server Boards, Server Systems and Compute Modules <2.48 - DoS

Title source: llm

Description

Improper initialization in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authenticated user to potentially enable denial of service via local access.

References (1)

Core 1

Core References

Vendor Advisory x_refsource_misc

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00476.html

Scores

CVSS v3 5.5

EPSS 0.0022

EPSS Percentile 12.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-665

Status published

Products (1)

intel/baseboard_management_controller_firmware < 2.48.ce3e3bd2

Published Jun 09, 2021

Tracked Since Feb 18, 2026