Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveIntelCVE-2020-8731
HistoryAug 13, 2020 - 3:15 a.m.

CVE-2020-8731

2020-08-1303:15:16
CWE-732
intel
web.nvd.nist.gov
22
cve-2020-8731
intel
server
boards
systems
compute modules
file system
permissions
privilege escalation

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

CVSS3

8.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

AI Score

8.6

Confidence

High

EPSS

0

Percentile

12.6%

JSON

Incorrect execution-assigned permissions in the file system for some Intelยฎ Server Boards, Server Systems and Compute Modules before version 1.59 may allow an authenticated user to potentially enable escalation of privilege via local access.

Affected configurations

Nvd
Node
intelserver_board_s2600wt_firmwareRange<1.59
AND
intelserver_board_s2600wt2Match-
OR
intelserver_board_s2600wt2rMatch-
OR
intelserver_board_s2600wttMatch-
OR
intelserver_board_s2600wttrMatch-
Node
intelserver_system_r1000wt_firmwareRange<1.59
AND
intelserver_system_r1208wt2gsMatch-
OR
intelserver_system_r1208wt2gsrMatch-
OR
intelserver_system_r1208wttgsMatch-
OR
intelserver_system_r1208wttgsbppMatch-
OR
intelserver_system_r1208wttgsrMatch-
OR
intelserver_system_r1304wt2gsMatch-
OR
intelserver_system_r1304wt2gsrMatch-
OR
intelserver_system_r1304wttgsMatch-
OR
intelserver_system_r1304wttgsrMatch-
Node
intelserver_system_r2000wt_firmwareRange<1.59
AND
intelserver_system_r2208wt2ysMatch-
OR
intelserver_system_r2208wt2ysrMatch-
OR
intelserver_system_r2208wttyc1Match-
OR
intelserver_system_r2208wttyc1rMatch-
OR
intelserver_system_r2208wttysMatch-
OR
intelserver_system_r2208wttysrMatch-
OR
intelserver_system_r2224wttysMatch-
OR
intelserver_system_r2224wttysrMatch-
OR
intelserver_system_r2308wttysMatch-
OR
intelserver_system_r2308wttysrMatch-
OR
intelserver_system_r2312wttysMatch-
OR
intelserver_system_r2312wttysrMatch-
Node
intelserver_board_s2600cwRange<1.59
AND
intelserver_board_s2600cw2Match-
OR
intelserver_board_s2600cw2rMatch-
OR
intelserver_board_s2600cw2sMatch-
OR
intelserver_board_s2600cw2srMatch-
OR
intelserver_board_s2600cwtMatch-
OR
intelserver_board_s2600cwtrMatch-
OR
intelserver_board_s2600cwtsMatch-
OR
intelserver_board_s2600cwtsrMatch-
Node
intelcompute_module_hns2600kp_firmwareRange<1.59
AND
intelcompute_module_hns2600kpMatch-
OR
intelcompute_module_hns2600kpfMatch-
OR
intelcompute_module_hns2600kpfrMatch-
OR
intelcompute_module_hns2600kprMatch-
Node
intelserver_board_s2600kp_firmwareRange<1.59
AND
intelserver_board_s2600kpMatch-
OR
intelserver_board_s2600kpfMatch-
OR
intelserver_board_s2600kpfrMatch-
OR
intelserver_board_s2600kprMatch-
OR
intelserver_board_s2600kptrMatch-
Node
intelcompute_module_hns2600tp_firmwareRange<1.59
AND
intelcompute_module_hns2600tpMatch-
OR
intelcompute_module_hns2600tp24rMatch-
OR
intelcompute_module_hns2600tp24srMatch-
OR
intelcompute_module_hns2600tpfMatch-
OR
intelcompute_module_hns2600tpfrMatch-
OR
intelcompute_module_hns2600tprMatch-
Node
intelcompute_module_s2600tp_firmwareRange<1.59
AND
intelserver_board_s2600tpMatch-
OR
intelserver_board_s2600tpfMatch-
OR
intelserver_board_s2600tpfrMatch-
OR
intelserver_board_s2600tprMatch-
Node
intelserver_board_s1200sp_firmwareRange<1.59
AND
intelserver_board_s1200splMatch-
OR
intelserver_board_s1200splrMatch-
OR
intelserver_board_s1200spoMatch-
OR
intelserver_board_s1200sporMatch-
OR
intelserver_board_s1200spsMatch-
OR
intelserver_board_s1200spsrMatch-
Node
intelserver_system_lr1304sp_firmwareRange<1.59
AND
intelserver_system_lr1304spcfg1Match-
OR
intelserver_system_lr1304spcfg1rMatch-
OR
intelserver_system_lr1304spcfsgx1Match-
Node
intelserver_system_lsvrp_firmwareRange<1.59
AND
intelserver_system_lsvrp4304es6xx1Match-
OR
intelserver_system_lsvrp4304es6xxrMatch-
Node
intelserver_system_r1000sp_firmwareRange<1.59
AND
intelserver_system_r1208sposhorMatch-
OR
intelserver_system_r1208sposhorrMatch-
OR
intelserver_system_r1304sposhbnMatch-
OR
intelserver_system_r1304sposhbnrMatch-
OR
intelserver_system_r1304sposhorMatch-
OR
intelserver_system_r1304sposhorrMatch-
Node
intelserver_board_s2600wf_firmwareRange<1.59
AND
intelserver_board_s2600wf0Match-
OR
intelserver_board_s2600wf0rMatch-
OR
intelserver_board_s2600wfqMatch-
OR
intelserver_board_s2600wfqrMatch-
OR
intelserver_board_s2600wftMatch-
OR
intelserver_board_s2600wftrMatch-
Node
intelserver_system_r1000wf_firmwareRange<1.59
AND
intelserver_system_lnetcnt3yMatch-
OR
intelserver_system_mcb2208wfaf4Match-
OR
intelserver_system_mcb2208wfaf5Match-
OR
intelserver_system_mcb2208wfaf6Match-
OR
intelserver_system_mcb2208wfhy2Match-
OR
intelserver_system_nb2208wfqnfviMatch-
OR
intelserver_system_r1208wfqysrMatch-
OR
intelserver_system_r1208wftysMatch-
OR
intelserver_system_r1208wftysrMatch-
OR
intelserver_system_r1304wf0ysMatch-
OR
intelserver_system_r1304wf0ysrMatch-
OR
intelserver_system_r1304wftysMatch-
OR
intelserver_system_r1304wftysrMatch-
Node
intelserver_system_r2000wf_firmwareRange<1.59
AND
intelserver_system_r2208wf0zsMatch-
OR
intelserver_system_r2208wf0zsrMatch-
OR
intelserver_system_r2208wfqzsMatch-
OR
intelserver_system_r2208wfqzsrMatch-
OR
intelserver_system_r2208wftzsMatch-
OR
intelserver_system_r2208wftzsrMatch-
OR
intelserver_system_r2224wfqzsMatch-
OR
intelserver_system_r2224wftzsMatch-
OR
intelserver_system_r2224wftzsrMatch-
OR
intelserver_system_r2308wftzsMatch-
OR
intelserver_system_r2308wftzsrMatch-
OR
intelserver_system_r2312wf0npMatch-
OR
intelserver_system_r2312wf0nprMatch-
OR
intelserver_system_r2312wfqzsMatch-
OR
intelserver_system_r2312wftzsMatch-
OR
intelserver_system_r2312wftzsrMatch-
OR
intelserver_system_vrn2208waf6Match-
OR
intelserver_system_vrn2208wfaf81Match-
OR
intelserver_system_vrn2208wfaf82Match-
OR
intelserver_system_vrn2208wfaf83Match-
OR
intelserver_system_vrn2208wfhy6Match-
Node
intelserver_board_s2600st_firmwareRange<1.59
AND
intelserver_board_s2600stbMatch-
OR
intelserver_board_s2600stbrMatch-
OR
intelserver_board_s2600stqMatch-
OR
intelserver_board_s2600stqrMatch-
Node
intelcompute_module_hns2600bp_firmwareRange<1.59
AND
intelcompute_module_hns2600bpbMatch-
OR
intelcompute_module_hns2600bpb24Match-
OR
intelcompute_module_hns2600bpb24rMatch-
OR
intelcompute_module_hns2600bpblcMatch-
OR
intelcompute_module_hns2600bpblc24Match-
OR
intelcompute_module_hns2600bpblc24rMatch-
OR
intelcompute_module_hns2600bpblcrMatch-
OR
intelcompute_module_hns2600bpbrMatch-
OR
intelcompute_module_hns2600bpqMatch-
OR
intelcompute_module_hns2600bpq24Match-
OR
intelcompute_module_hns2600bpq24rMatch-
OR
intelcompute_module_hns2600bpqrMatch-
OR
intelcompute_module_hns2600bpsMatch-
OR
intelcompute_module_hns2600bps24Match-
OR
intelcompute_module_hns2600bps24rMatch-
OR
intelcompute_module_hns2600bpsrMatch-
Node
intelserver_board_s2600bp_firmwareRange<1.59
AND
intelserver_board_s2600bpbMatch-
OR
intelserver_board_s2600bpbrMatch-
OR
intelserver_board_s2600bpqMatch-
OR
intelserver_board_s2600bpqrMatch-
OR
intelserver_board_s2600bpsMatch-
OR
intelserver_board_s2600bpsrMatch-
VendorProductVersionCPE
intelserver_board_s2600wt_firmware*cpe:2.3:o:intel:server_board_s2600wt_firmware:*:*:*:*:*:*:*:*
intelserver_board_s2600wt2-cpe:2.3:h:intel:server_board_s2600wt2:-:*:*:*:*:*:*:*
intelserver_board_s2600wt2r-cpe:2.3:h:intel:server_board_s2600wt2r:-:*:*:*:*:*:*:*
intelserver_board_s2600wtt-cpe:2.3:h:intel:server_board_s2600wtt:-:*:*:*:*:*:*:*
intelserver_board_s2600wttr-cpe:2.3:h:intel:server_board_s2600wttr:-:*:*:*:*:*:*:*
intelserver_system_r1000wt_firmware*cpe:2.3:o:intel:server_system_r1000wt_firmware:*:*:*:*:*:*:*:*
intelserver_system_r1208wt2gs-cpe:2.3:h:intel:server_system_r1208wt2gs:-:*:*:*:*:*:*:*
intelserver_system_r1208wt2gsr-cpe:2.3:h:intel:server_system_r1208wt2gsr:-:*:*:*:*:*:*:*
intelserver_system_r1208wttgs-cpe:2.3:h:intel:server_system_r1208wttgs:-:*:*:*:*:*:*:*
intelserver_system_r1208wttgsbpp-cpe:2.3:h:intel:server_system_r1208wttgsbpp:-:*:*:*:*:*:*:*
Rows per page:
1-10 of 1531

CNA Affected

[
  {
    "product": "Intel(R) Server Boards, Server Systems and Compute Modules Advisory",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Before version 1.59"
      }
    ]
  }
]

Related

nvd 1
cvelist 1
prion 1
threatpost 1
intel 1
nvd
nvd
CVE-2020-8731
2020-08-13 03:15:16
cvelist
cvelist
CVE-2020-8731
2020-08-13 02:26:24
prion
prion
Privilege escalation
2020-08-13 03:15:00
threatpost
threatpost
Critical Intel Flaw Afflicts Several Motherboards, Server Systems, Compute Modules
2020-08-11 20:02:22
intel
intel
Intelยฎ Server Boards, Server Systems and Compute Modulesย Advisory
2020-08-11 00:00:00

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

CVSS3

8.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

AI Score

8.6

Confidence

High

EPSS

0

Percentile

12.6%

JSON
Related for CVE-2020-8731
nvd1cvelist1prion1threatpost1intel1