{"containers": {"cna": {"affected": [{"product": "Intel(R) AMT and Intel(R) ISM", "vendor": "n/a", "versions": [{"status": "affected", "version": "See provided reference"}]}], "descriptions": [{"lang": "en", "value": "Out-of-bounds read in DHCPv6 subsystem in Intel(R) AMT and Intel(R)ISM versions before 11.8.77, 11.12.77, 11.22.77, 12.0.64 and 14.0.33 may allow an unauthenticated user to potentially enable information disclosure via network access."}], "problemTypes": [{"descriptions": [{"description": "Information Disclosure", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2021-03-18T12:06:38", "orgId": "6dda929c-bb53-4a77-a76d-48e79601a1ce", "shortName": "intel"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://security.netapp.com/advisory/ntap-20200611-0007/"}, {"tags": ["x_refsource_MISC"], "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html"}, {"name": "VU#257161", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "https://www.kb.cert.org/vuls/id/257161"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://www.synology.com/security/advisory/Synology_SA_20_15"}, {"tags": ["x_refsource_MISC"], "url": "https://support.lenovo.com/de/en/product_security/len-30041"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "[email protected]", "ID": "CVE-2020-8674", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Intel(R) AMT and Intel(R) ISM", "version": {"version_data": [{"version_value": "See provided reference"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Out-of-bounds read in DHCPv6 subsystem in Intel(R) AMT and Intel(R)ISM versions before 11.8.77, 11.12.77, 11.22.77, 12.0.64 and 14.0.33 may allow an unauthenticated user to potentially enable information disclosure via network access."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Information Disclosure"}]}]}, "references": {"reference_data": [{"name": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html", "refsource": "CONFIRM", "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html"}, {"name": "https://security.netapp.com/advisory/ntap-20200611-0007/", "refsource": "CONFIRM", "url": "https://security.netapp.com/advisory/ntap-20200611-0007/"}, {"name": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html", "refsource": "MISC", "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html"}, {"name": "VU#257161", "refsource": "CERT-VN", "url": "https://www.kb.cert.org/vuls/id/257161"}, {"name": "https://www.synology.com/security/advisory/Synology_SA_20_15", "refsource": "CONFIRM", "url": "https://www.synology.com/security/advisory/Synology_SA_20_15"}, {"name": "https://support.lenovo.com/de/en/product_security/len-30041", "refsource": "MISC", "url": "https://support.lenovo.com/de/en/product_security/len-30041"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T10:03:46.339Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://security.netapp.com/advisory/ntap-20200611-0007/"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html"}, {"name": "VU#257161", "tags": ["third-party-advisory", "x_refsource_CERT-VN", "x_transferred"], "url": "https://www.kb.cert.org/vuls/id/257161"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://www.synology.com/security/advisory/Synology_SA_20_15"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://support.lenovo.com/de/en/product_security/len-30041"}]}]}, "cveMetadata": {"assignerOrgId": "6dda929c-bb53-4a77-a76d-48e79601a1ce", "assignerShortName": "intel", "cveId": "CVE-2020-8674", "datePublished": "2020-06-15T14:00:54", "dateReserved": "2020-02-06T00:00:00", "dateUpdated": "2024-08-04T10:03:46.339Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:intel:active_management_technology_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "2CD1D393-58BA-4F53-835F-C7B13F44BBC6", "versionEndExcluding": "11.8.77", "versionStartIncluding": "11.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:intel:active_management_technology_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "1171B682-C648-451B-97D2-4AADA9638BB9", "versionEndExcluding": "11.12.77", "versionStartIncluding": "11.10", "vulnerable": true}, {"criteria": "cpe:2.3:o:intel:active_management_technology_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "FBF0384F-DBAC-49FD-9E31-453AF6A13A68", "versionEndExcluding": "11.22.77", "versionStartIncluding": "11.20", "vulnerable": true}, {"criteria": "cpe:2.3:o:intel:active_management_technology_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "064D0505-C8E2-4F3E-9186-6923C7D01A55", "versionEndExcluding": "12.0.64", "versionStartIncluding": "12.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:intel:active_management_technology_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "1A288FA3-B8DE-48C0-ACB3-2CB0C2F212AF", "versionEndExcluding": "14.0.33", "versionStartIncluding": "14.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:intel:service_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "F18CD125-5319-4955-ADEA-24073521E975", "versionEndExcluding": "11.8.77", "versionStartIncluding": "11.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:intel:service_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "B907926D-451E-4435-AEC2-2E5DBA695AE7", "versionEndExcluding": "11.12.77", "versionStartIncluding": "11.10", "vulnerable": true}, {"criteria": "cpe:2.3:a:intel:service_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "564A5BEF-C36A-4D8E-B458-D3083294AFCD", "versionEndExcluding": "11.22.77", "versionStartIncluding": "11.20", "vulnerable": true}, {"criteria": "cpe:2.3:a:intel:service_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "A433A19A-BBC9-4A5A-8D55-31371F91ABDA", "versionEndExcluding": "12.0.64", "versionStartIncluding": "12.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:intel:service_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "AAEB6ABB-9539-44C2-9177-DFB20AAA4274", "versionEndExcluding": "14.0.33", "versionStartIncluding": "14.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Out-of-bounds read in DHCPv6 subsystem in Intel(R) AMT and Intel(R)ISM versions before 11.8.77, 11.12.77, 11.22.77, 12.0.64 and 14.0.33 may allow an unauthenticated user to potentially enable information disclosure via network access."}, {"lang": "es", "value": "Una lectura fuera de l\u00edmite en el subsistema DHCPv6 en Intel\u00ae AMT e Intel\u00ae ISM versiones anteriores a 11.8.77, 11.12.77, 11.22.77, 12.0.64 y 14.0.33, puede permitir a un usuario no autenticado habilitar potencialmente una divulgaci\u00f3n de informaci\u00f3n por medio de un acceso de red"}], "id": "CVE-2020-8674", "lastModified": "2024-11-21T05:39:14.073", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "[email protected]", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "[email protected]", "type": "Primary"}]}, "published": "2020-06-15T14:15:12.440", "references": [{"source": "[email protected]", "url": "https://security.netapp.com/advisory/ntap-20200611-0007/"}, {"source": "[email protected]", "url": "https://support.lenovo.com/de/en/product_security/len-30041"}, {"source": "[email protected]", "tags": ["Vendor Advisory"], "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html"}, {"source": "[email protected]", "tags": ["Vendor Advisory"], "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html"}, {"source": "[email protected]", "url": "https://www.kb.cert.org/vuls/id/257161"}, {"source": "[email protected]", "tags": ["Third Party Advisory"], "url": "https://www.synology.com/security/advisory/Synology_SA_20_15"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://security.netapp.com/advisory/ntap-20200611-0007/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://support.lenovo.com/de/en/product_security/len-30041"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00295.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://www.kb.cert.org/vuls/id/257161"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://www.synology.com/security/advisory/Synology_SA_20_15"}], "sourceIdentifier": "[email protected]", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-125"}], "source": "[email protected]", "type": "Primary"}]}

{}