Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2018-3659
HistorySep 12, 2018 - 7:29 p.m.

CVE-2018-3659

2018-09-1219:29:03
[email protected]
web.nvd.nist.gov
6

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

CVSS3

6.8

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

6.4

Confidence

High

EPSS

0.001

Percentile

33.3%

JSON

A vulnerability in Intel PTT module in Intel CSME firmware before version 12.0.5 and Intel TXE firmware before version 4.0 may allow an unauthenticated user to potentially disclose information via physical access.

Affected configurations

Nvd
Node
intelconverged_security_management_engine_firmwareRange<12.0.5
Node
inteltrusted_execution_engine_firmwareRange<4.0
VendorProductVersionCPE
intelconverged_security_management_engine_firmware*cpe:2.3:o:intel:converged_security_management_engine_firmware:*:*:*:*:*:*:*:*
inteltrusted_execution_engine_firmware*cpe:2.3:o:intel:trusted_execution_engine_firmware:*:*:*:*:*:*:*:*

Related

intel 1
cve 1
cvelist 1
prion 1
lenovo 2
hp 1
intel
intel
Intelยฎ Platform Trust Technology (PTT) Update Advisory
2018-09-11 00:00:00
cve
cve
CVE-2018-3659
2018-09-12 19:29:03
cvelist
cvelist
CVE-2018-3659
2018-09-12 19:00:00
prion
prion
Design/Logic Flaw
2018-09-12 19:29:00
lenovo
lenovo
Intel CSME / SPS and TXE Vulnerabilities - Lenovo Support NL
2018-10-01 19:13:00
Intel CSME / SPS and TXE Vulnerabilities - US
2018-09-20 16:57:00
hp
hp
HPSBHF03592 rev. 3 - Intel Converged Security and Management Engine (CSME) and Power Management Controller (PMC) Security Updates
2018-09-11 00:00:00

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

CVSS3

6.8

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

6.4

Confidence

High

EPSS

0.001

Percentile

33.3%

JSON
Related for NVD:CVE-2018-3659
intel1cve1cvelist1prion1lenovo2hp1