Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

2019.2 IPU – Intel® CSME, Intel® SPS, Intel® TXE, Intel® AMT, Intel® PTT and Intel® DAL Advisory

🗓️ 09 Jan 2019 00:00:00Reported by Intel Security CenterType 
intel
 intel🔗 www.intel.com👁 38 Views

Potential security vulnerabilities in Intel® Converged Security and Manageability Engine (CSME), Intel® Server Platform Services (SPS), Trusted Execution Engine (TXE), Active Management Technology (AMT), Platform Trust Technology (PTT), Dynamic Application Loader (DAL) may allow escalation of privilege, denial of service or information disclosure. Intel is releasing updates to mitigate these potential vulnerabilities

Related
ReporterTitlePublishedViews
Family
BDU FSTEC		The vulnerability of Intel Converged Security and Manageability Engine (CSME) software, which stems from insufficient validation of input data, allows attackers to trigger a service failure.
25 Nov 201900:00
bdu_fstec
BDU FSTEC		The vulnerabilities of Intel Converged Security and Manageability Engine (CSME) and Intel Trusted Execution Engine (TXE) involve buffer overflows in dynamic memory, which allow attackers to expose sensitive information, cause system failures, or gain elevated privileges.
13 Dec 201900:00
bdu_fstec
BDU FSTEC		The vulnerability of Intel Active Management Technology’s microprogramming software, related to insufficient validation of input data, allows attackers to execute cross-site scripting (XSS) attacks.
13 Dec 201900:00
bdu_fstec
BDU FSTEC		The vulnerability of the driver for the hardware abstraction layer of the MEinfo utility lies in the Microprogramming Software Intel Converged Security and Manageability Engine (CSME), the Microprogramming Software Intel Trusted Execution Engine (TXE), the Intel-SA-00086 Detection Tool, and the INTEL-SA-00125 Detection Tool. This vulnerability allows attackers to enhance their privileges.
13 Dec 201900:00
bdu_fstec
BDU FSTEC		The vulnerability of Intel Converged Security and Manageability Engine’s microprogramming software, related to a logical error, allows attackers to escalate their privileges and expose sensitive information.
13 Dec 201900:00
bdu_fstec
BDU FSTEC		The vulnerability of Intel Active Management Technology’s microprogramming software arises from insufficient testing of input data, allowing attackers to exploit this weakness to gain increased privileges.
13 Dec 201900:00
bdu_fstec
BDU FSTEC		The vulnerability of Intel Active Management Technology’s microprogramming software arises from insufficient testing of input data, allowing attackers to exploit this weakness to gain increased privileges.
13 Dec 201900:00
bdu_fstec
BDU FSTEC		The vulnerability of the MEinfo utility in Intel’s Converged Security and Manageability Engine (CSME) and Intel’s Trusted Execution Engine (TXE) allows a attacker to enhance their privileges.
13 Dec 201900:00
bdu_fstec
BDU FSTEC		The vulnerability of the embedded microcontroller’s consumer driver, Intel Management Engine, and the microprogramming software Intel Trusted Execution Engine (TXE), allows a perpetrator to enhance their privileges.
13 Dec 201900:00
bdu_fstec
BDU FSTEC		The vulnerability of Intel Converged Security and Manageability Engine’s microprogramming software arises from insufficient validation of input data. This allows attackers to escalate their privileges.
13 Dec 201900:00
bdu_fstec
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
12 Nov 2019 00:00Current
7.9High risk
Vulners AI Score7.9
CVSS 27.5
CVSS 3.19.8
EPSS0.02323
intelcsmespstxeamtpttdalescalation of privilegedenial of serviceinformation disclosure
38