EUVD-2018-15497

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Vulnerability in Power Management Controller firmware may allow code execution or secret disclosure.

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2018-3643	27 May 202201:28	–	circl
CNVD	Unspecified Vulnerability in Intel Power Management Controller	16 Sep 201800:00	–	cnvd
CVE	CVE-2018-3643	12 Sep 201819:00	–	cve
Cvelist	CVE-2018-3643	12 Sep 201819:00	–	cvelist
F5 Networks	K54380426: Intel CPU vulnerability CVE-2018-3643	21 Feb 202319:55	–	f5
Hewlett-Packard	HPSBHF03592 rev. 3 - Intel Converged Security and Management Engine (CSME) and Power Management Controller (PMC) Security Updates	11 Sep 201800:00	–	hp
Intel	Power Management Controller (PMC) Security Advisory	18 Dec 201800:00	–	intel
Lenovo	Power Management Controller (PMC) Security Vulnerability in Systems using specific Intel® CMSE or SPS firmware versions - US	20 Sep 201816:52	–	lenovo
NVD	CVE-2018-3643	12 Sep 201819:29	–	nvd
Prion	Code injection	12 Sep 201819:29	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "ad5d9bfa-b035-36c4-8684-81b9cf6e49c7",
        "vendor": {
          "name": "Intel Corporation"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "d1495292-181a-33df-b727-d0d34de4d6f6",
        "product": {
          "name": "Intel(R) Converged Security and Management Engine (CSME) and Intel(R) Server Platform Services firmware"
        },
        "product_version": "CSME versions before 12.0.6 or Server Platform Services firmware before version 4.x.04."
      }
    ]
  }
]

Source	Link
intel	www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00131.html
support	www.support.hpe.com/hpsc/doc/public/display
security	www.security.netapp.com/advisory/ntap-20180924-0002/
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

8.2High risk

Vulners AI Score8.2

CVSS 38.2

CVSS 24.6

EPSS0.00161