CVE-2020-8674

Name of the Vulnerable Software and Affected Versions: Intel(R) AMT and Intel(R)ISM versions prior to 11.8.77 Intel(R) AMT and Intel(R)ISM versions prior to 11.12.77 Intel(R) AMT and Intel(R)ISM versions prior to 11.22.77 Intel(R) AMT and Intel(R)ISM versions prior to 12.0.64 Intel(R) AMT and Intel(R)ISM versions prior to 14.0.33

Description: The issue is related to an out-of-bounds read in the DHCPv6 subsystem of Intel Active Management Technology and Standard Manageability implementations. This could allow a remote attacker to gain unauthorized access to protected information. The exploitation of this issue may enable information disclosure via network access.

Recommendations: For Intel(R) AMT and Intel(R)ISM versions prior to 11.8.77, update to version 11.8.77 or later. For Intel(R) AMT and Intel(R)ISM versions prior to 11.12.77, update to version 11.12.77 or later. For Intel(R) AMT and Intel(R)ISM versions prior to 11.22.77, update to version 11.22.77 or later. For Intel(R) AMT and Intel(R)ISM versions prior to 12.0.64, update to version 12.0.64 or later. For Intel(R) AMT and Intel(R)ISM versions prior to 14.0.33, update to version 14.0.33 or later.