Design/Logic Flaw

Bounds check in Kernel subsystem in Intel CSME before version 11.8.60, 11.11.60, 11.22.60 or 12.0.20, or Intel® Server Platform Services before versions 4.00.04.383 or SPS 4.01.02.174, or Intel® TXE before versions 3.1.60 or 4.0.10 may allow an unauthenticated user to potentially execute arbitrary code via physical access.