CVE-2020-5955

Severity Score

9.8

*CVSS v3.1

Exploit Likelihood

< 1%

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

An issue was discovered in Int15MicrocodeSmm in Insyde InsydeH2O before 2021-10-14 on Intel client chipsets. A caller may be able to escalate privileges.

Se ha detectado un problema en Int15MicrocodeSmm en Insyde InsydeH2O versiones anteriores al 14-10-2021 en los chipsets de cliente de Intel. Un llamador puede ser capaz de escalar privilegios

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

Partial

Integrity

Partial

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2020-01-06 CVE Reserved
2021-11-03 CVE Published
2024-08-04 CVE Updated
2025-03-30 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (3)

URL	Tag	Source
https://security.netapp.com/advisory/ntap-...	Third Party Advisory

1 - 1 of 1

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://www.insyde.com/products	2022-07-12
https://www.insyde.com/security-pledge/SA-2021002	2022-07-12

1 - 2 of 2

Affected Vendors, Products, and Versions (28)

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Insyde Search vendor "Insyde"	Insydeh2o Uefi Bios Search vendor "Insyde" for product "Insydeh2o Uefi Bios"	< 05.32.30.0001 Search vendor "Insyde" for product "Insydeh2o Uefi Bios" and version " < 05.32.30.0001"	-	Affected	in	Intel Search vendor "Intel"	Ice Lake Search vendor "Intel" for product "Ice Lake"	-	-	Safe
Insyde Search vendor "Insyde"	Insydeh2o Uefi Bios Search vendor "Insyde" for product "Insydeh2o Uefi Bios"	< 05.41.35.0001 Search vendor "Insyde" for product "Insydeh2o Uefi Bios" and version " < 05.41.35.0001"	-	Affected	in	Intel Search vendor "Intel"	Tiger Lake Search vendor "Intel" for product "Tiger Lake"	-	-	Safe
Insyde Search vendor "Insyde"	Insydeh2o Uefi Bios Search vendor "Insyde" for product "Insydeh2o Uefi Bios"	< 05.42.11.0026 Search vendor "Insyde" for product "Insydeh2o Uefi Bios" and version " < 05.42.11.0026"	-	Affected	in	Intel Search vendor "Intel"	Whitley-sp Search vendor "Intel" for product "Whitley-sp"	-	-	Safe
Insyde Search vendor "Insyde"	Insydeh2o Uefi Bios Search vendor "Insyde" for product "Insydeh2o Uefi Bios"	< 05.04.21.0068 Search vendor "Insyde" for product "Insydeh2o Uefi Bios" and version " < 05.04.21.0068"	-	Affected	in	Intel Search vendor "Intel"	Grantley-ep Search vendor "Intel" for product "Grantley-ep"	-	-	Safe
Insyde Search vendor "Insyde"	Insydeh2o Uefi Bios Search vendor "Insyde" for product "Insydeh2o Uefi Bios"	< 05.42.09.0003 Search vendor "Insyde" for product "Insydeh2o Uefi Bios" and version " < 05.42.09.0003"	-	Affected	in	Intel Search vendor "Intel"	Elkhart Lake Search vendor "Intel" for product "Elkhart Lake"	-	-	Safe
Insyde Search vendor "Insyde"	Insydeh2o Uefi Bios Search vendor "Insyde" for product "Insydeh2o Uefi Bios"	< 05.21.51.0040 Search vendor "Insyde" for product "Insydeh2o Uefi Bios" and version " < 05.21.51.0040"	-	Affected	in	Intel Search vendor "Intel"	Purley-ep Refresh Neon City Search vendor "Intel" for product "Purley-ep Refresh Neon City"	-	-	Safe
Insyde Search vendor "Insyde"	Insydeh2o Uefi Bios Search vendor "Insyde" for product "Insydeh2o Uefi Bios"	< 05.34.09.0030 Search vendor "Insyde" for product "Insydeh2o Uefi Bios" and version " < 05.34.09.0030"	-	Affected	in	Intel Search vendor "Intel"	Comet Lake Rvp Search vendor "Intel" for product "Comet Lake Rvp"	-	embedded	Safe
Insyde Search vendor "Insyde"	Insydeh2o Uefi Bios Search vendor "Insyde" for product "Insydeh2o Uefi Bios"	< 05.34.09.0030 Search vendor "Insyde" for product "Insydeh2o Uefi Bios" and version " < 05.34.09.0030"	-	Affected	in	Intel Search vendor "Intel"	Comet Lake Rvp Search vendor "Intel" for product "Comet Lake Rvp"	-	server	Safe
Insyde Search vendor "Insyde"	Insydeh2o Uefi Bios Search vendor "Insyde" for product "Insydeh2o Uefi Bios"	< 05.32.47.0001 Search vendor "Insyde" for product "Insydeh2o Uefi Bios" and version " < 05.32.47.0001"	-	Affected	in	Intel Search vendor "Intel"	Comet Lake Search vendor "Intel" for product "Comet Lake"	-	client	Safe
Insyde Search vendor "Insyde"	Insydeh2o Uefi Bios Search vendor "Insyde" for product "Insydeh2o Uefi Bios"	< 05.23.45.0023 Search vendor "Insyde" for product "Insydeh2o Uefi Bios" and version " < 05.23.45.0023"	-	Affected	in	Intel Search vendor "Intel"	Whiskey Lake Rvp Search vendor "Intel" for product "Whiskey Lake Rvp"	-	embedded	Safe

1 - 10 of 28