HTTP: Intel AMT and ISM CVE-2020-8758 Privilege Escalation
This signature detects attempts to exploit a known vulnerability against Intel Active Management Technology and Intel Standard Manageability. A successful attack can lead to elevation of privilege and arbitrary code execution.
Extended Description
Improper buffer restrictions in network subsystem in provisioned Intel(R) AMT and Intel(R) ISM versions before 11.8.79, 11.12.79, 11.22.79, 12.0.68 and 14.0.39 may allow an unauthenticated user to potentially enable escalation of privilege via network access. On un-provisioned systems, an authenticated user may potentially enable escalation of privilege via local access.
Affected Products
Intel active_management_technology_firmware
References
CVE: CVE-2020-8758
Short Name
HTTP:CTS:INTEL-AMT-CVE2020-8758
Severity
Critical
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
AMT CVE-2020-8758 Escalation ISM Intel Privilege and
Release Date
09/08/2020
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3600
False Positive
Unknown
Vendors
Netapp
Intel
CVSS Score
7.5