CVE-2020-24516

MEDIUM

Intel(R) CSME <15.0.22 - Privilege Escalation

Title source: llm
STIX 2.1

Description

Modification of assumed-immutable data in subsystem in Intel(R) CSME versions before 13.0.47, 13.30.17, 14.1.53, 14.5.32, 15.0.22 may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

References (2)

Core 2

Scores

CVSS v3 6.8
EPSS 0.0027
EPSS Percentile 18.5%
Attack Vector PHYSICAL
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

Status published
Products (1)
intel/converged_security_and_manageability_engine < 13.0.47
Published Jun 09, 2021
Tracked Since Feb 18, 2026