Race condition vulnerability in Intel(R) CSME and SPS subsystems allows unauthenticated privilege escalation via physical access

Race condition vulnerability in Intel(R) CSME and SPS subsystems allows unauthenticated privilege escalation via physical access

CVE-2020-8755 · MEDIUM Severity

CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Race condition in subsystem for Intel(R) CSME versions before 12.0.70 and 14.0.45, Intel(R) SPS versions before E5_04.01.04.400 and E3_05.01.04.200 may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

Learn more about our Physical Security Assessment.