PT-2020-19466 · Intel+1 · Intel Innovation Engine+1

Published

2020-11-05

Updated

2021-07-21

CVE-2020-7207

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions HPE Proliant Gen10 Servers (affected versions not specified)

Description A local elevation of privilege using physical access security issue was found in HPE Proliant Gen10 Servers using Intel Innovation Engine (IE). This attack requires a physical attack to the server motherboard. To mitigate this issue, ensure your server is always physically secured. HPE recommends using appropriate physical security methods as a compensating control to disallow an attacker from having physical access to the server main circuit board.

Recommendations Ensure your server is always physically secured. Use appropriate physical security methods as a compensating control to disallow an attacker from having physical access to the server main circuit board.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2020-7207

Affected Products

Hpe Proliant Gen10 Servers

Intel Innovation Engine

PT-2020-19466 · Intel+1 · Intel Innovation Engine+1

CVE-2020-7207

Related Identifiers

Affected Products

References · 3