Uninitialized pointer in BIOS firmware for Intel(R) Server Board Families S2600CW, S2600KP, S2600TP, and S2600WT may allow a privileged user to potentially enable escalation of privilege via local access.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required High

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

The EPSS score is 0.00063.

Key SSVC decision points have not yet been added.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions
n/a Intel(R) Server Board Families Advisory affected
Version Status Constraints
See provided reference affected

Configuration 1 [-]

AND
cpe:2.3:o:intel:s2600cw2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:s2600cw2:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND
cpe:2.3:o:intel:s2600cw2s_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:s2600cw2s:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND
cpe:2.3:o:intel:s2600cwt_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:s2600cwt:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND
cpe:2.3:o:intel:s2600cwts_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:s2600cwts:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND
cpe:2.3:o:intel:s2600cw2r_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:s2600cw2r:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND
cpe:2.3:o:intel:s2600cw2sr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:s2600cw2sr:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND
cpe:2.3:o:intel:s2600cwtr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:s2600cwtr:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND
cpe:2.3:o:intel:s2600cwtsr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:s2600cwtsr:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND
cpe:2.3:o:intel:s2600kp_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:s2600kp:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND
cpe:2.3:o:intel:s2600kpf_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:s2600kpf:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND
cpe:2.3:o:intel:s2600kpr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:s2600kpr:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND
cpe:2.3:o:intel:s2600kpfr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:s2600kpfr:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND
cpe:2.3:o:intel:s2600kptr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:s2600kptr:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND
cpe:2.3:o:intel:s2600tp_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:s2600tp:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND
cpe:2.3:o:intel:s2600tpf_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:s2600tpf:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND
cpe:2.3:o:intel:s2600tpfr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:s2600tpfr:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND
cpe:2.3:o:intel:s2600tpnr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:s2600tpnr:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND
cpe:2.3:o:intel:s2600tpr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:s2600tpr:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND
cpe:2.3:o:intel:s2600wt2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:s2600wt2:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND
cpe:2.3:o:intel:s2600wtt_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:s2600wtt:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND
cpe:2.3:o:intel:s2600wttr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:s2600wttr:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND
cpe:2.3:o:intel:s2600wt2r_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:s2600wt2r:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND
cpe:2.3:o:intel:s2600wtts1r_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:s2600wtts1r:-:*:*:*:*:*:*:*

No data.

No data.

Project Subscriptions

Vendors Products
Intel Subscribe
S2600cw2 Subscribe
S2600cw2 Firmware Subscribe
S2600cw2r Subscribe
S2600cw2r Firmware Subscribe
S2600cw2s Subscribe
S2600cw2s Firmware Subscribe
S2600cw2sr Subscribe
S2600cw2sr Firmware Subscribe
S2600cwt Subscribe
S2600cwt Firmware Subscribe
S2600cwtr Subscribe
S2600cwtr Firmware Subscribe
S2600cwts Subscribe
S2600cwts Firmware Subscribe
S2600cwtsr Subscribe
S2600cwtsr Firmware Subscribe
S2600kp Subscribe
S2600kp Firmware Subscribe
S2600kpf Subscribe
S2600kpf Firmware Subscribe
S2600kpfr Subscribe
S2600kpfr Firmware Subscribe
S2600kpr Subscribe
S2600kpr Firmware Subscribe
S2600kptr Subscribe
S2600kptr Firmware Subscribe
S2600tp Subscribe
S2600tp Firmware Subscribe
S2600tpf Subscribe
S2600tpf Firmware Subscribe
S2600tpfr Subscribe
S2600tpfr Firmware Subscribe
S2600tpnr Subscribe
S2600tpnr Firmware Subscribe
S2600tpr Subscribe
S2600tpr Firmware Subscribe
S2600wt2 Subscribe
S2600wt2 Firmware Subscribe
S2600wt2r Subscribe
S2600wt2r Firmware Subscribe
S2600wtt Subscribe
S2600wtt Firmware Subscribe
S2600wttr Subscribe
S2600wttr Firmware Subscribe
S2600wtts1r Subscribe
S2600wtts1r Firmware Subscribe
Advisories
Source ID Title
EUVD EUVD EUVD-2020-4612 Uninitialized pointer in BIOS firmware for Intel(R) Server Board Families S2600CW, S2600KP, S2600TP, and S2600WT may allow a privileged user to potentially enable escalation of privilege via local access.
Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References
Link Providers
https://security.netapp.com/advisory/ntap-20200814-0001/ cve-icon cve-icon
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00367.html cve-icon cve-icon
History

No history.

Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: intel

Published:

Updated: 2024-08-04T11:56:50.465Z

Reserved: 2020-04-28T00:00:00.000Z

Link: CVE-2020-12300

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-08-13T04:15:13.053

Modified: 2024-11-21T04:59:28.590

Link: CVE-2020-12300

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses