CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2025-20097: Uncaught exception in OpenBMC Firmware for the Intel(R) Server M50FCP Family and Intel(R) Server D50DNP Family before version R01.02.0002 may allow...

5.3 CVSS

Description

Uncaught exception in OpenBMC Firmware for the Intel(R) Server M50FCP Family and Intel(R) Server D50DNP Family before version R01.02.0002 may allow an authenticated user to potentially enable denial of service via network access.

Classification

CVE ID: CVE-2025-20097

CVSS Base Severity: MEDIUM

CVSS Base Score: 5.3

CVSS Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

Affected Products

Vendor: n/a

Product: Intel(R) Server M50FCP Family and Intel(R) Server D50DNP Family

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 11.94% (scored less or equal to compared to others)

EPSS Date: 2025-03-13 (when was this score calculated)

References

https://intel.com/content/www/us/en/security-center/advisory/intel-sa-00990.html

Timeline

2025-02-13 00:33:15 UTC
CVE

Uncaught exception in OpenBMC Firmware for the Intel(R) Server M50FCP Family and Intel(R) Server D50DNP Family before version R01.02.0002 may allow...