CVE-2020-8711

Vulnerability

An improper access control vulnerability exists in the bootloader of Intel(R) Server Boards, Server Systems, and Compute Modules running firmware versions prior to 2.45. This flaw allows a privileged user to bypass intended security restrictions during the system boot process, potentially leading to privilege escalation. The affected products include various server platforms from Intel. [1]

Exploitation

To exploit this vulnerability, an attacker must already have privileged local access to the affected system, such as physical access or administrative credentials. The attacker can then leverage the improper access control in the bootloader to execute code or modify boot parameters that would normally be restricted. The exact sequence of steps has not been publicly detailed by Intel, but the attack vector is local and requires elevated privileges to initiate. [1]

Impact

Successful exploitation enables an attacker with existing privileges to escalate their privileges further, potentially gaining complete control over the system at a higher privilege level than originally held. This could lead to full compromise of the affected server, including access to sensitive data, modification of system firmware, or persistent unauthorized access. [1]

Mitigation

Intel released a firmware update to version 2.45 to address this vulnerability. Affected users should update their server firmware to version 2.45 or later. The fix is available through Intel's official update channels. No workarounds have been provided, and updating the firmware is the recommended mitigation. [1]