Permissions, Privileges, and Access Controls in Intel Server Board S2600ST and Intel Server Board S2600WF - CVE-2020-0572
Published: November 11, 2020
Vulnerability identifier: #VU48369
CSH Severity: Low
CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2020-0572
CWE-ID: CWE-264
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vulnerable software:
Intel Server Board S2600ST
Intel Server Board S2600WF
Intel Server Board S2600ST
Intel Server Board S2600WF
Software vendor:
Intel
Intel
Description
The vulnerability allows a local administrator to escalate privileges on the system.
The vulnerability exists due to improper input validation, which leads to security restrictions bypass and privilege escalation.
Remediation
Install updates from vendor's website.