F5F5:K61095244K61095244 : Intel software vulnerabilities CVE-2020-8705, CVE-2020-8744, CVE-2020-8745, CVE-2020-8756
Security Advisory Description
Insecure default initialization of resource in Intelยฎ Boot Guard in Intelยฎ CSME versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25, Intelยฎ TXE versions before 3.1.80 and 4.0.30, Intelยฎ SPS versions before E5_04.01.04.400, E3_04.01.04.200, SoC-X_04.00.04.200 and SoC-A_04.00.04.300 may allow an unauthenticated user to potentially enable escalation of privileges via physical access.
Improper initialization in subsystem for Intelยฎ CSME versions before12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25, Intelยฎ TXE versions before 4.0.30 Intelยฎ SPS versions before E3_05.01.04.200 may allow a privileged user to potentially enable escalation of privilege via local access.
Insufficient control flow management in subsystem for Intelยฎ CSME versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25 , Intelยฎ TXE versions before 3.1.80 and 4.0.30 may allow an unauthenticated user to potentially enable escalation of privilege via physical access.
Improper input validation in subsystem for Intelยฎ CSME versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow a privileged user to potentially enable escalation of privilege via local access.
Impact
There is no impact; F5 products are not affected by this vulnerability.
Related
