Latest netapp solidfire bios Vulnerabilities

CVE-2021-0060
Insufficient compartmentalization in HECI subsystem for the Intel(R) SPS before versions SPS_E5_04.01.04.516.0, SPS_E5_04.04.04.033.0, SPS_E5_04.04.03.281.0, SPS_E5_03.01.03.116.0, SPS_E3_05.01.04.309...
Intel C620a Series Firmware<sps_e5_04.04.03.281.0
Intel C621a
Intel C627a
Intel C629a
Intel C620 Series Firmware<sps_e5_04.01.04.516.0
Intel C621
and 184 more
CVE-2020-12357
Improper initialization in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
Intel BIOS
Intel Core I3-l13g4
Intel Core I5-l16g7
Intel Core I7-10510u
Intel Core I7-10510y
Intel Core I7-1060g7
and 562 more
CVE-2020-12360
Out of bounds read in the firmware for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege via local access.
Intel BIOS
Intel Core I3-l13g4
Intel Core I5-l16g7
Intel Core I7-10510u
Intel Core I7-10510y
Intel Core I7-1060g7
and 546 more
CVE-2020-12359
Insufficient control flow management in the firmware for some Intel(R) Processors may allow an unauthenticated user to potentially enable escalation of privilege via physical access.
Intel BIOS
Intel Core I3-l13g4
Intel Core I5-l16g7
Intel Core I7-10510u
Intel Core I7-10510y
Intel Core I7-1060g7
and 540 more
CVE-2020-12358
Out of bounds write in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable denial of service via local access.
Intel BIOS
Intel Core I3-l13g4
Intel Core I5-l16g7
Intel Core I7-10510u
Intel Core I7-10510y
Intel Core I7-1060g7
and 542 more
CVE-2020-24512
Observable timing discrepancy in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
debian/intel-microcode
Intel Microcode<20210608
Debian Debian Linux=10.0
Netapp Fas\/aff Bios
Netapp Hci Compute Node Bios
Netapp Solidfire Bios
CVE-2020-24511
Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
debian/intel-microcode
Intel Microcode<20210608
Debian Debian Linux=10.0
Netapp Fas\/aff Bios
Netapp Hci Compute Node Bios
Netapp Solidfire Bios
CVE-2020-8764
Improper access control in BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
Intel BIOS
Intel Core I5-7640x
Intel Core I7-3820
Intel Core I7-3920xm
Intel Core I7-3930k
Intel Core I7-3940xm
and 331 more
CVE-2020-8740
Intel BIOS
Intel Core I5-7640x
Intel Core I7-3820
Intel Core I7-3920xm
Intel Core I7-3930k
Intel Core I7-3940xm
and 319 more
CVE-2020-8739
Use of potentially dangerous function in Intel BIOS platform sample code for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege via local access.
Intel BIOS
Intel Core I5-7640x
Intel Core I7-3820
Intel Core I7-3920xm
Intel Core I7-3930k
Intel Core I7-3940xm
and 215 more
CVE-2020-8698
A flaw was found in the CPU microarchitecture where a local attacker is able to abuse a timing issue which may allow them to infer internal architectural state from previous executions on the CPU.
Intel Microcode
Intel Core I3-1000g1
Intel Core I3-1000g4
Intel Core I3-1005g1
Intel Core I3-1110g4
Intel Core I3-1115g4
and 43 more
CVE-2020-8696
Improper removal of sensitive information before storage or transfer in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
Intel Microcode
Intel Celeron 3855u
Intel Celeron 3865u
Intel Celeron 3955u
Intel Celeron 3965u
Intel Celeron 3965y
and 496 more

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203