PT-2020-4733 · Intel · Intel Txe+1

Published

2020-11-10

Updated

2021-07-21

CVE-2020-8751

CVSS v2.0

4.9

Medium

Vector

AV:L/AC:L/Au:N/C:C/I:N/A:N

Name of the Vulnerable Software and Affected Versions: Intel(R) CSME versions prior to 11.8.80 Intel(R) TXE versions prior to 3.1.80

Description: The issue is related to insufficient control flow management in the subsystem for Intel(R) CSME and Intel(R) TXE, which may allow an unauthenticated user to potentially enable information disclosure via physical access. This could lead to unauthorized access to protected information.

Recommendations: For Intel(R) CSME versions prior to 11.8.80, update to version 11.8.80 or later. For Intel(R) TXE versions prior to 3.1.80, update to version 3.1.80 or later. As a temporary workaround, consider restricting physical access to the affected systems until a patch is available.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

BDU:2020-05285

CVE-2020-8751

Affected Products

Intel Csme

Intel Txe

PT-2020-4733 · Intel · Intel Txe+1

CVE-2020-8751

Weakness Enumeration

Related Identifiers

Affected Products

References · 9