CVE-2020-12300 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	8.2 HIGH	LOCAL	LOW	HIGH	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
intel	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 36%

Vendor	Product	Version
intel	s2600cw2_firmware	𝑥 < 01.01.0029
intel	s2600cw2s_firmware	𝑥 < 01.01.0029
intel	s2600cwt_firmware	𝑥 < 01.01.0029
intel	s2600cwts_firmware	𝑥 < 01.01.0029
intel	s2600cw2r_firmware	𝑥 < 01.01.0029
intel	s2600cw2sr_firmware	𝑥 < 01.01.0029
intel	s2600cwtr_firmware	𝑥 < 01.01.0029
intel	s2600cwtsr_firmware	𝑥 < 01.01.0029
intel	s2600kp_firmware	𝑥 < 01.01.0029
intel	s2600kpf_firmware	𝑥 < 01.01.0029
intel	s2600kpr_firmware	𝑥 < 01.01.0029
intel	s2600kpfr_firmware	𝑥 < 01.01.0029
intel	s2600kptr_firmware	𝑥 < 01.01.0029
intel	s2600tp_firmware	𝑥 < 01.01.0029
intel	s2600tpf_firmware	𝑥 < 01.01.0029
intel	s2600tpfr_firmware	𝑥 < 01.01.0029
intel	s2600tpnr_firmware	𝑥 < 01.01.0029
intel	s2600tpr_firmware	𝑥 < 01.01.0029
intel	s2600wt2_firmware	𝑥 < 01.01.0029
intel	s2600wtt_firmware	𝑥 < 01.01.0029
intel	s2600wttr_firmware	𝑥 < 01.01.0029
intel	s2600wt2r_firmware	𝑥 < 01.01.0029
intel	s2600wtts1r_firmware	𝑥 < 01.01.0029

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-824 - Access of Uninitialized Pointer
The program accesses or uses a pointer that has not been initialized.

References

https://security.netapp.com/advisory/ntap-20200814-0001/

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00367.html

https://security.netapp.com/advisory/ntap-20200814-0001/

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00367.html