CVE-2020-24516 : Modification of assumed-immutable data in subsystem in Intel(R) CSME versions be

Modification of assumed-immutable data in subsystem in Intel(R) CSME versions before 13.0.47, 13.30.17, 14.1.53, 14.5.32, 15.0.22 may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

Published 2021-06-09 19:15:09

Updated 2021-07-01 20:11:10

Source Intel Corporation

View at NVD, CVE.org

Products affected by CVE-2020-24516

Intel » Converged Security And Manageability Engine
Versions before (<) 13.30.17
cpe:2.3:a:intel:converged_security_and_manageability_engine:*:*:*:*:*:*:*:*
Matching versions
When used together with: Intel » Core I3 L13g4 » Version: N/A
When used together with: Intel » Core I5 L16g7 » Version: N/A
Intel » Converged Security And Manageability Engine
Versions before (<) 14.1.53
cpe:2.3:a:intel:converged_security_and_manageability_engine:*:*:*:*:*:*:*:*
Matching versions
When used together with: Intel » B460 » Version: N/A
When used together with: Intel » Core I3-1000g1 » Version: N/A
When used together with: Intel » Core I3-1000g4 » Version: N/A
When used together with: Intel » Core I3-1000ng4 » Version: N/A
When used together with: Intel » Core I3-1005g1 » Version: N/A
When used together with: Intel » Core I3-10100 » Version: N/A
When used together with: Intel » Core I3-10100e » Version: N/A
When used together with: Intel » Core I3-10100f » Version: N/A
When used together with: Intel » Core I3-10100t » Version: N/A
When used together with: Intel » Core I3-10100te » Version: N/A
When used together with: Intel » Core I3-10100y » Version: N/A
When used together with: Intel » Core I3-10105 » Version: N/A
When used together with: Intel » Core I3-10105f » Version: N/A
When used together with: Intel » Core I3-10105t » Version: N/A
When used together with: Intel » Core I3-10110u » Version: N/A
When used together with: Intel » Core I3-10110y » Version: N/A
When used together with: Intel » Core I3-10300 » Version: N/A
When used together with: Intel » Core I3-10300t » Version: N/A
When used together with: Intel » Core I3-10305 » Version: N/A
When used together with: Intel » Core I3-10305t » Version: N/A
When used together with: Intel » Core I3-10320 » Version: N/A
When used together with: Intel » Core I3-10325 » Version: N/A
When used together with: Intel » Core I5-10200h » Version: N/A
When used together with: Intel » Core I5-10210u » Version: N/A
When used together with: Intel » Core I5-10210y » Version: N/A
When used together with: Intel » Core I5-10300h » Version: N/A
When used together with: Intel » Core I5-1030g4 » Version: N/A
When used together with: Intel » Core I5-1030g7 » Version: N/A
When used together with: Intel » Core I5-1030ng7 » Version: N/A
When used together with: Intel » Core I5-10310u » Version: N/A
When used together with: Intel » Core I5-10310y » Version: N/A
When used together with: Intel » Core I5-1035g1 » Version: N/A
When used together with: Intel » Core I5-1035g4 » Version: N/A
When used together with: Intel » Core I5-1035g7 » Version: N/A
When used together with: Intel » Core I5-1038ng7 » Version: N/A
When used together with: Intel » Core I5-10400 » Version: N/A
When used together with: Intel » Core I5-10400f » Version: N/A
When used together with: Intel » Core I5-10400h » Version: N/A
When used together with: Intel » Core I5-10400t » Version: N/A
When used together with: Intel » Core I5-10500 » Version: N/A
When used together with: Intel » Core I5-10500e » Version: N/A
When used together with: Intel » Core I5-10500h » Version: N/A
When used together with: Intel » Core I5-10500t » Version: N/A
When used together with: Intel » Core I5-10500te » Version: N/A
When used together with: Intel » Core I5-10505 » Version: N/A
When used together with: Intel » Core I5-10600 » Version: N/A
When used together with: Intel » Core I5-10600k » Version: N/A
When used together with: Intel » Core I5-10600kf » Version: N/A
When used together with: Intel » Core I5-10600t » Version: N/A
When used together with: Intel » Core I7-10510u » Version: N/A
When used together with: Intel » Core I7-10510y » Version: N/A
When used together with: Intel » Core I7-1060g7 » Version: N/A
When used together with: Intel » Core I7-1060ng7 » Version: N/A
When used together with: Intel » Core I7-10610u » Version: N/A
When used together with: Intel » Core I7-1065g7 » Version: N/A
When used together with: Intel » Core I7-1068ng7 » Version: N/A
When used together with: Intel » Core I7-10700 » Version: N/A
When used together with: Intel » Core I7-10700e » Version: N/A
When used together with: Intel » Core I7-10700f » Version: N/A
When used together with: Intel » Core I7-10700k » Version: N/A
When used together with: Intel » Core I7-10700kf » Version: N/A
When used together with: Intel » Core I7-10700t » Version: N/A
When used together with: Intel » Core I7-10700te » Version: N/A
When used together with: Intel » Core I7-10710u » Version: N/A
When used together with: Intel » Core I7-10750h » Version: N/A
When used together with: Intel » Core I7-10810u » Version: N/A
When used together with: Intel » Core I7-10850h » Version: N/A
When used together with: Intel » Core I7-10870h » Version: N/A
When used together with: Intel » Core I7-10875h » Version: N/A
When used together with: Intel » Core I9-10850k » Version: N/A
When used together with: Intel » Core I9-10885h » Version: N/A
When used together with: Intel » Core I9-10900 » Version: N/A
When used together with: Intel » Core I9-10900e » Version: N/A
When used together with: Intel » Core I9-10900f » Version: N/A
When used together with: Intel » Core I9-10900k » Version: N/A
When used together with: Intel » Core I9-10900kf » Version: N/A
When used together with: Intel » Core I9-10900t » Version: N/A
When used together with: Intel » Core I9-10900te » Version: N/A
When used together with: Intel » Core I9-10910 » Version: N/A
When used together with: Intel » Core I9-10980hk » Version: N/A
When used together with: Intel » H410 » Version: N/A
When used together with: Intel » H420e » Version: N/A
When used together with: Intel » H470 » Version: N/A
When used together with: Intel » Q470 » Version: N/A
When used together with: Intel » Q470e » Version: N/A
When used together with: Intel » W480 » Version: N/A
When used together with: Intel » W480e » Version: N/A
When used together with: Intel » Z490 » Version: N/A
Intel » Converged Security And Manageability Engine
Versions before (<) 13.0.47
cpe:2.3:a:intel:converged_security_and_manageability_engine:*:*:*:*:*:*:*:*
Matching versions
When used together with: Intel » Core I3-1000g1 » Version: N/A
When used together with: Intel » Core I3-1000g4 » Version: N/A
When used together with: Intel » Core I3-1000ng4 » Version: N/A
When used together with: Intel » Core I3-1005g1 » Version: N/A
When used together with: Intel » Core I3-10100 » Version: N/A
When used together with: Intel » Core I3-10100e » Version: N/A
When used together with: Intel » Core I3-10100f » Version: N/A
When used together with: Intel » Core I3-10100t » Version: N/A
When used together with: Intel » Core I3-10100te » Version: N/A
When used together with: Intel » Core I3-10100y » Version: N/A
When used together with: Intel » Core I3-10105 » Version: N/A
When used together with: Intel » Core I3-10105f » Version: N/A
When used together with: Intel » Core I3-10105t » Version: N/A
When used together with: Intel » Core I3-10110u » Version: N/A
When used together with: Intel » Core I3-10110y » Version: N/A
When used together with: Intel » Core I3-10300 » Version: N/A
When used together with: Intel » Core I3-10300t » Version: N/A
When used together with: Intel » Core I3-10305 » Version: N/A
When used together with: Intel » Core I3-10305t » Version: N/A
When used together with: Intel » Core I3-10320 » Version: N/A
When used together with: Intel » Core I3-10325 » Version: N/A
When used together with: Intel » Core I5-10200h » Version: N/A
When used together with: Intel » Core I5-10210u » Version: N/A
When used together with: Intel » Core I5-10210y » Version: N/A
When used together with: Intel » Core I5-10300h » Version: N/A
When used together with: Intel » Core I5-1030g4 » Version: N/A
When used together with: Intel » Core I5-1030g7 » Version: N/A
When used together with: Intel » Core I5-1030ng7 » Version: N/A
When used together with: Intel » Core I5-10310u » Version: N/A
When used together with: Intel » Core I5-10310y » Version: N/A
When used together with: Intel » Core I5-1035g1 » Version: N/A
When used together with: Intel » Core I5-1035g4 » Version: N/A
When used together with: Intel » Core I5-1035g7 » Version: N/A
When used together with: Intel » Core I5-1038ng7 » Version: N/A
When used together with: Intel » Core I5-10400 » Version: N/A
When used together with: Intel » Core I5-10400f » Version: N/A
When used together with: Intel » Core I5-10400h » Version: N/A
When used together with: Intel » Core I5-10400t » Version: N/A
When used together with: Intel » Core I5-10500 » Version: N/A
When used together with: Intel » Core I5-10500e » Version: N/A
When used together with: Intel » Core I5-10500h » Version: N/A
When used together with: Intel » Core I5-10500t » Version: N/A
When used together with: Intel » Core I5-10500te » Version: N/A
When used together with: Intel » Core I5-10505 » Version: N/A
When used together with: Intel » Core I5-10600 » Version: N/A
When used together with: Intel » Core I5-10600k » Version: N/A
When used together with: Intel » Core I5-10600kf » Version: N/A
When used together with: Intel » Core I5-10600t » Version: N/A
When used together with: Intel » Core I7-10510u » Version: N/A
When used together with: Intel » Core I7-10510y » Version: N/A
When used together with: Intel » Core I7-1060g7 » Version: N/A
When used together with: Intel » Core I7-1060ng7 » Version: N/A
When used together with: Intel » Core I7-10610u » Version: N/A
When used together with: Intel » Core I7-1065g7 » Version: N/A
When used together with: Intel » Core I7-1068ng7 » Version: N/A
When used together with: Intel » Core I7-10700 » Version: N/A
When used together with: Intel » Core I7-10700e » Version: N/A
When used together with: Intel » Core I7-10700f » Version: N/A
When used together with: Intel » Core I7-10700k » Version: N/A
When used together with: Intel » Core I7-10700kf » Version: N/A
When used together with: Intel » Core I7-10700t » Version: N/A
When used together with: Intel » Core I7-10700te » Version: N/A
When used together with: Intel » Core I7-10710u » Version: N/A
When used together with: Intel » Core I7-10750h » Version: N/A
When used together with: Intel » Core I7-10810u » Version: N/A
When used together with: Intel » Core I7-10850h » Version: N/A
When used together with: Intel » Core I7-10870h » Version: N/A
When used together with: Intel » Core I7-10875h » Version: N/A
When used together with: Intel » Core I9-10850k » Version: N/A
When used together with: Intel » Core I9-10885h » Version: N/A
When used together with: Intel » Core I9-10900 » Version: N/A
When used together with: Intel » Core I9-10900e » Version: N/A
When used together with: Intel » Core I9-10900f » Version: N/A
When used together with: Intel » Core I9-10900k » Version: N/A
When used together with: Intel » Core I9-10900kf » Version: N/A
When used together with: Intel » Core I9-10900t » Version: N/A
When used together with: Intel » Core I9-10900te » Version: N/A
When used together with: Intel » Core I9-10910 » Version: N/A
When used together with: Intel » Core I9-10980hk » Version: N/A
Intel » Converged Security And Manageability Engine
Versions before (<) 14.5.32
cpe:2.3:a:intel:converged_security_and_manageability_engine:*:*:*:*:*:*:*:*
Matching versions
When used together with: Intel » Pentium Gold 4410y » Version: N/A
When used together with: Intel » Pentium Gold 4415u » Version: N/A
When used together with: Intel » Pentium Gold 4415y » Version: N/A
When used together with: Intel » Pentium Gold 4417u » Version: N/A
When used together with: Intel » Pentium Gold 4425y » Version: N/A
When used together with: Intel » Pentium Gold 5405u » Version: N/A
When used together with: Intel » Pentium Gold 6405u » Version: N/A
When used together with: Intel » Pentium Gold 6500y » Version: N/A
When used together with: Intel » Pentium Gold 7505 » Version: N/A
When used together with: Intel » Pentium Gold G5400 » Version: N/A
When used together with: Intel » Pentium Gold G5400t » Version: N/A
When used together with: Intel » Pentium Gold G5420 » Version: N/A
When used together with: Intel » Pentium Gold G5420t » Version: N/A
When used together with: Intel » Pentium Gold G5500 » Version: N/A
When used together with: Intel » Pentium Gold G5500t » Version: N/A
When used together with: Intel » Pentium Gold G5600 » Version: N/A
When used together with: Intel » Pentium Gold G5600t » Version: N/A
When used together with: Intel » Pentium Gold G5620 » Version: N/A
When used together with: Intel » Pentium Gold G6400 » Version: N/A
When used together with: Intel » Pentium Gold G6400e » Version: N/A
When used together with: Intel » Pentium Gold G6400t » Version: N/A
When used together with: Intel » Pentium Gold G6400te » Version: N/A
When used together with: Intel » Pentium Gold G6405 » Version: N/A
When used together with: Intel » Pentium Gold G6405t » Version: N/A
When used together with: Intel » Pentium Gold G6500 » Version: N/A
When used together with: Intel » Pentium Gold G6500t » Version: N/A
When used together with: Intel » Pentium Gold G6505 » Version: N/A
When used together with: Intel » Pentium Gold G6505t » Version: N/A
When used together with: Intel » Pentium Gold G6600 » Version: N/A
When used together with: Intel » Pentium Gold G6605 » Version: N/A
Intel » Converged Security And Manageability Engine
Versions before (<) 15.0.22
cpe:2.3:a:intel:converged_security_and_manageability_engine:*:*:*:*:*:*:*:*
Matching versions
When used together with: Intel » Celeron 6305 » Version: N/A

Max 200 conditions are displayed on this page, to prevent potential performance issues, please refer to NVD for more details.

Exploit prediction scoring system (EPSS) score for CVE-2020-24516

EPSS FAQ

0.08%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 31 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2020-24516

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.6	MEDIUM	AV:L/AC:L/Au:N/C:P/I:P/A:P	3.9	6.4	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial
6.8	MEDIUM	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	0.9	5.9	NIST
Attack Vector: Physical Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

References for CVE-2020-24516

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00459.html

INTEL-SA-00459
Vendor Advisory

CVEs referencing this url
https://security.netapp.com/advisory/ntap-20210625-0008/

CVE-2020-24516 Intel CSME Vulnerability in NetApp Products | NetApp Product Security
Third Party Advisory

Jump to

Vulnerability Details : CVE-2020-24516

Products affected by CVE-2020-24516

Exploit prediction scoring system (EPSS) score for CVE-2020-24516

CVSS scores for CVE-2020-24516

References for CVE-2020-24516