CVE-2020-24474 : Buffer overflow in the BMC firmware for some Intel(R) Server Boards, Server Syst

Buffer overflow in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authenticated user to potentially enable escalation of privilege via adjacent access.

Published 2021-06-09 20:15:08

Updated 2021-07-01 19:51:58

Source Intel Corporation

View at NVD, CVE.org

Vulnerability category: Overflow

Products affected by CVE-2020-24474

Intel » Baseboard Management Controller Firmware
Versions before (<) 2.48.ce3e3bd2
cpe:2.3:o:intel:baseboard_management_controller_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Intel » Compute Module Hns2600bpb24r » Version: N/A
When used together with: Intel » Compute Module Hns2600bpbr » Version: N/A
When used together with: Intel » Compute Module Hns2600bpq24r » Version: N/A
When used together with: Intel » Compute Module Hns2600bpqr » Version: N/A
When used together with: Intel » Compute Module Hns2600bps24r » Version: N/A
When used together with: Intel » Compute Module Hns2600bpsr » Version: N/A
When used together with: Intel » Server Board S2600bpb » Version: N/A
When used together with: Intel » Server Board S2600bpbr » Version: N/A
When used together with: Intel » Server Board S2600bpq » Version: N/A
When used together with: Intel » Server Board S2600bpqr » Version: N/A
When used together with: Intel » Server Board S2600bps » Version: N/A
When used together with: Intel » Server Board S2600bpsr » Version: N/A
When used together with: Intel » Server Board S2600stb » Version: N/A
When used together with: Intel » Server Board S2600stbr » Version: N/A
When used together with: Intel » Server Board S2600stq » Version: N/A
When used together with: Intel » Server Board S2600stqr » Version: N/A
When used together with: Intel » Server Board S2600wf0 » Version: N/A
When used together with: Intel » Server Board S2600wf0r » Version: N/A
When used together with: Intel » Server Board S2600wfq » Version: N/A
When used together with: Intel » Server Board S2600wfqr » Version: N/A
When used together with: Intel » Server Board S2600wft » Version: N/A
When used together with: Intel » Server Board S2600wftr » Version: N/A
When used together with: Intel » Server System R1208wfqysr » Version: N/A
When used together with: Intel » Server System R1208wftys » Version: N/A
When used together with: Intel » Server System R1208wftysr » Version: N/A
When used together with: Intel » Server System R1304wf0ys » Version: N/A
When used together with: Intel » Server System R1304wf0ysr » Version: N/A
When used together with: Intel » Server System R1304wftys » Version: N/A
When used together with: Intel » Server System R1304wftysr » Version: N/A
When used together with: Intel » Server System R2208wf0zs » Version: N/A
When used together with: Intel » Server System R2208wf0zsr » Version: N/A
When used together with: Intel » Server System R2208wfqzs » Version: N/A
When used together with: Intel » Server System R2208wfqzsr » Version: N/A
When used together with: Intel » Server System R2208wftzs » Version: N/A
When used together with: Intel » Server System R2208wftzsr » Version: N/A
When used together with: Intel » Server System R2224wfqzs » Version: N/A
When used together with: Intel » Server System R2224wftzs » Version: N/A
When used together with: Intel » Server System R2224wftzsr » Version: N/A
When used together with: Intel » Server System R2308wftzs » Version: N/A
When used together with: Intel » Server System R2308wftzsr » Version: N/A
When used together with: Intel » Server System R2312wf0np » Version: N/A
When used together with: Intel » Server System R2312wf0npr » Version: N/A
When used together with: Intel » Server System R2312wfqzs » Version: N/A
When used together with: Intel » Server System R2312wftzs » Version: N/A
When used together with: Intel » Server System R2312wftzsr » Version: N/A

Exploit prediction scoring system (EPSS) score for CVE-2020-24474

EPSS FAQ

0.04%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 10 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2020-24474

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.2	MEDIUM	AV:A/AC:L/Au:S/C:P/I:P/A:P	5.1	6.4	NIST
Access Vector: Adjacent Network Access Complexity: Low Authentication: Single Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial
8.0	HIGH	CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H	2.1	5.9	NIST
Attack Vector: Adjacent Network Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2020-24474

CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2020-24474

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00476.html

INTEL-SA-00476
Vendor Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2020-24474

Products affected by CVE-2020-24474

Exploit prediction scoring system (EPSS) score for CVE-2020-24474

CVSS scores for CVE-2020-24474

CWE ids for CVE-2020-24474

References for CVE-2020-24474