CVE-2020-8745
Summary
| CVE | CVE-2020-8745 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2020-11-12 18:15:00 UTC |
| Updated | 2022-10-14 11:23:00 UTC |
| Description | Insufficient control flow management in subsystem for Intel(R) CSME versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25 , Intel(R) TXE versions before 3.1.80 and 4.0.30 may allow an unauthenticated user to potentially enable escalation of privilege via physical access. |
Risk And Classification
Problem Types: NVD-CWE-noinfo
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Intel | Converged Security And Manageability Engine | All | All | All | All |
| Application | Intel | Converged Security And Manageability Engine | All | All | All | All |
| Application | Intel | Trusted Execution Technology | All | All | All | All |
| Application | Intel | Trusted Execution Technology | All | All | All | All |
| Hardware | Siemens | Simatic Drive Controller | - | All | All | All |
| Operating System | Siemens | Simatic Drive Controller Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Et200sp 1515sp Pc2 | - | All | All | All |
| Operating System | Siemens | Simatic Et200sp 1515sp Pc2 Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Field Pg M5 | - | All | All | All |
| Operating System | Siemens | Simatic Field Pg M5 Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Field Pg M6 | - | All | All | All |
| Operating System | Siemens | Simatic Field Pg M6 Firmware | - | All | All | All |
| Hardware | Siemens | Simatic Ipc127e | - | All | All | All |
| Operating System | Siemens | Simatic Ipc127e Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Ipc427e | - | All | All | All |
| Operating System | Siemens | Simatic Ipc427e Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Ipc477e | - | All | All | All |
| Operating System | Siemens | Simatic Ipc477e Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Ipc477e Pro | - | All | All | All |
| Hardware | Siemens | Simatic Ipc527g | - | All | All | All |
| Operating System | Siemens | Simatic Ipc527g Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Ipc547g | - | All | All | All |
| Operating System | Siemens | Simatic Ipc547g Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Ipc627e | - | All | All | All |
| Operating System | Siemens | Simatic Ipc627e Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Ipc647e | - | All | All | All |
| Operating System | Siemens | Simatic Ipc647e Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Ipc667e | - | All | All | All |
| Operating System | Siemens | Simatic Ipc667e Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Ipc847e | - | All | All | All |
| Operating System | Siemens | Simatic Ipc847e Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Itp1000 | - | All | All | All |
| Operating System | Siemens | Simatic Itp1000 Firmware | All | All | All | All |
| Hardware | Siemens | Sinumerik 828d Hw Pu.4 | - | All | All | All |
| Operating System | Siemens | Sinumerik 828d Hw Pu.4 Firmware | All | All | All | All |
| Hardware | Siemens | Sinumerik 840d Sl Ht 10 | - | All | All | All |
| Operating System | Siemens | Sinumerik 840d Sl Ht 10 Firmware | - | All | All | All |
| Hardware | Siemens | Sinumerik Mc Mcu 1720 | - | All | All | All |
| Operating System | Siemens | Sinumerik Mc Mcu 1720 Firmware | All | All | All | All |
| Hardware | Siemens | Sinumerik One | - | All | All | All |
| Operating System | Siemens | Sinumerik One Firmware | - | All | All | All |
| Hardware | Siemens | Sinumerik One Ncu 1740 | - | All | All | All |
| Operating System | Siemens | Sinumerik One Ncu 1740 Firmware | All | All | All | All |
| Hardware | Siemens | Sinumerik One Ppu 1740 | - | All | All | All |
| Operating System | Siemens | Sinumerik One Ppu 1740 Firmware | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Intel SA-00391 Intel TXE Vulnerabilities in NetApp Products | NetApp Product Security | CONFIRM | security.netapp.com | Third Party Advisory |
| Intel SA-00391 CSME Vulnerabilities in NetApp Products | NetApp Product Security | CONFIRM | security.netapp.com | Third Party Advisory |
| cert-portal.siemens.com/productcert/pdf/ssa-678983.pdf | CONFIRM | cert-portal.siemens.com | |
| INTEL-SA-00391 | MISC | www.intel.com | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.