CVE-2020-12299: Input Validation
First published: Thu Aug 13 2020(Updated: )
Improper input validation in BIOS firmware for Intel(R) Server Board Families S2600ST, S2600BP and S2600WF may allow a privileged user to potentially enable escalation of privilege via local access.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Intel S2600STQR Firmware | <02.01.0012 | |
| Intel S2600STQR | ||
| Intel S2600STBR Firmware | <02.01.0012 | |
| Intel S2600STBR | ||
| Intel S2600BP Firmware | <02.01.0012 | |
| Intel S2600BP SR | ||
| Intel s2600bpbr firmware | <02.01.0012 | |
| Intel S2600BPBR | ||
| Intel S2600BPQR Firmware | <02.01.0012 | |
| Intel BBS2600BPQR | ||
| Intel S2600WFTR Firmware | <02.01.0012 | |
| Intel S2600WFTR | ||
| Intel S2600WF0R Firmware | <02.01.0012 | |
| Intel s2600wf0r | ||
| Intel S2600WFQR Firmware | <02.01.0012 | |
| Intel S2600WFQR |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2020-12299?
CVE-2020-12299 is a vulnerability in the BIOS firmware for Intel(R) Server Board Families S2600ST, S2600BP, and S2600WF that may allow a privileged user to potentially enable escalation of privilege via local access.
What is the severity of CVE-2020-12299?
The severity of CVE-2020-12299 is rated as high with a CVSS score of 8.2.
How does CVE-2020-12299 affect Intel Server Board Families S2600ST?
CVE-2020-12299 affects Intel Server Board Family S2600ST firmware versions up to exclusive version 02.01.0012.
How can the CVE-2020-12299 vulnerability be exploited?
The CVE-2020-12299 vulnerability can be exploited by a privileged user with local access to potentially enable escalation of privilege.
Where can I find more information about CVE-2020-12299?
More information about CVE-2020-12299 can be found in the advisories published by NetApp and Intel.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/severity
- agent/author
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/weakness
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/intel
- canonical/intel s2600stqr firmware
- canonical/intel s2600stqr
- canonical/intel s2600stbr firmware
- canonical/intel s2600stbr
- canonical/intel s2600bp firmware
- canonical/intel s2600bp sr
- canonical/intel s2600bpbr firmware
- canonical/intel s2600bpbr
- canonical/intel s2600bpqr firmware
- canonical/intel bbs2600bpqr
- canonical/intel s2600wftr firmware
- canonical/intel s2600wftr
- canonical/intel s2600wf0r firmware
- canonical/intel s2600wf0r
- canonical/intel s2600wfqr firmware
- canonical/intel s2600wfqr