Unknown
CVE-2020-8745
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
CVE-2020-8745
MITRE ATT&CK
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Topic Tags
Description
Insufficient control flow management in subsystem for Intel® CSME versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25 , Intel® TXE versions before 3.1.80 and 4.0.30 may allow an unauthenticated user to potentially enable escalation of privilege via physical access.
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
General Information
Products
- converged security and manageability engine,
- simatic drive controller firmware,
- simatic et200sp 1515sp pc2 firmware,
- simatic field pg m5 firmware,
- simatic field pg m6 firmware -,
- simatic ipc127e firmware,
- simatic ipc427e firmware,
- simatic ipc477e firmware,
- simatic ipc527g firmware,
- simatic ipc547g firmware,
- simatic ipc627e firmware,
- simatic ipc647e firmware,
- simatic ipc667e firmware,
- simatic ipc847e firmware,
- simatic itp1000 firmware,
- sinumerik 828d hw pu.4 firmware,
- sinumerik 840d sl ht 10 firmware -,
- sinumerik mc mcu 1720 firmware,
- sinumerik one firmware -,
- sinumerik one ncu 1740 firmware,
- sinumerik one ppu 1740 firmware,
- trusted execution technology
References
Additional Info
Technical Analysis
Report as Emergent Threat Response
Report as Zero-day Exploit
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
