CVE-2020-8761: Weak Encryption
First published: Thu Nov 12 2020(Updated: )
Inadequate encryption strength in subsystem for Intel(R) CSME versions before 13.0.40 and 13.30.10 may allow an unauthenticated user to potentially enable information disclosure via physical access.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Intel Converged Security And Manageability Engine | <13.0.40 | |
| Intel Converged Security And Manageability Engine | >=13.30.0<13.30.10 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2020-8761?
CVE-2020-8761 is a vulnerability in the Intel Converged Security And Manageability Engine (CSME) versions before 13.0.40 and 13.30.10 that allows an unauthenticated user with physical access to potentially enable information disclosure.
What is the severity of CVE-2020-8761?
The severity of CVE-2020-8761 is medium with a CVSS score of 4.6.
How does CVE-2020-8761 affect Intel CSME?
CVE-2020-8761 affects Intel CSME versions before 13.0.40 and 13.30.10 by having inadequate encryption strength in its subsystem, which may enable an unauthenticated user to potentially disclose sensitive information through physical access.
Which software versions are affected by CVE-2020-8761?
Intel CSME versions before 13.0.40 and 13.30.10 are affected by CVE-2020-8761.
How can I fix the CVE-2020-8761 vulnerability?
To fix the CVE-2020-8761 vulnerability, update Intel CSME to version 13.0.40 or 13.30.10 or later.
- collector/nvd-index
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/description
- agent/type
- agent/event
- agent/softwarecombine
- agent/last-modified-date
- agent/tags
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/intel
- canonical/intel converged security and manageability engine
- version/intel converged security and manageability engine/13.30.0