Vulnerability   
Search   
    Search 187964 CVE descriptions
and 85075 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.144118
Category:Web application abuses
Title:Intel Active Management Technology Information Disclosure Vulnerability (INTEL-SA-00295)
Summary:Intel Active Management Technology (AMT) is prone to an information; disclosure vulnerability.
Description:Summary:
Intel Active Management Technology (AMT) is prone to an information
disclosure vulnerability.

Vulnerability Insight:
Out-of-bounds read in DHCPv6 subsystem in Intel(R) AMT may allow an
unauthenticated user to potentially enable information disclosure via network access.

Note: CVE-2020-8674 as assigned by Intel correspond to a subset of the CVEs disclosed in the linked
'Treck IP stacks contain multiple vulnerabilities' advisory (covering the 'Ripple20' called vulnerabilities)
and is matching CVE-2020-11905.

Affected Software/OS:
Intel Active Management Technology versions 11.0 through 11.8.76, 11.10
through 11.11.76, 11.20 through 11.22.76, 12.0 through 12.0.63 and 14.0.32.

Solution:
Upgrade to version 11.8.77, 11.11.77, 11.22.77, 12.0.64, 14.0.33 or later.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:N/A:N

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2020-8674
https://support.lenovo.com/de/en/product_security/len-30041
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html
CopyrightCopyright (C) 2020 Greenbone Networks GmbH

This is only one of 85075 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2020 E-Soft Inc. All rights reserved.