683 matches found
Intel SPS Security Vulnerability
Intel Server Platform Services SPS is a server platform services program from Intel USA. A security vulnerability exists in Intel SPS versions prior to SPSE304.01.04.109.0 and SPSE304.08.04.070.0, which stems from the program not being properly initialized. A local attacker could exploit the...
CVE-2020-0578
Improper conditions check for IntelR Modular Server MFS2600KISPP Compute Module may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access...
Unspecified Vulnerability in Intel Server Platform Service
Intel Server Platform Services SPS is a server platform services program from Intel USA. An unspecified vulnerability exists in Intel Server Platform Service. An attacker could exploit this vulnerability to cause a denial of service...
Competitive conditions issue vulnerability for multiple Intel products
Intel Server Platform Services SPS, etc. are products of Intel Corporation. Intel Server Platform Services is a server platform service program. Intel TXE is a trust execution engine used in CPUs central processing units with hardware authentication capabilities. Intel Platform Trust Technology P...
The vulnerability of Intel Server Platform Services’ microprogramming software, related to a logical error, allows attackers to trigger a service failure.
The vulnerability of Intel Server Platform Services’ microprogramming software is related to a logical error. Exploiting this vulnerability could allow an attacker to cause a service failure...
Intel® Server Boards Firmware Advisory
Summary: A potential security vulnerability in Intel® Server Board firmware may allow escalation of privilege, denial of service and/or information disclosure. Intel is releasing firmware updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2018-12173 Description:...
Vulnerability in the subsystems of Microprogramming Software: Intel Converged Security and Manageability Engine, Intel Server Platform Services, and Intel Trusted Execution Engine (TXE). This vulnerability is related to lack of access control, allowing attackers to enhance their privileges.
The vulnerability in the microprogramming system components of the Intel Converged Security and Manageability Engine, Intel Server Platform Services, and Intel Trusted Execution Engine TXE is related to access control deficiencies. Exploiting this vulnerability can allow attackers to enhance thei...
Intel VISA Tech Can Be Abused, Researchers Allege
UPDATE Researchers allege that a technology in Intel microchips could potentially be activated and abused by bad actors – giving them complete access to all data across an affected device. The Intel technology is called Visualization of Internal Signals Architecture VISA, and is used for...
The vulnerability of the Platform Sample/Silicon Reference component in server hardware from Intel(R) Server Board, Intel(R) Server System, and Intel(R) Compute Module stems from deficiencies in access control. This allows attackers to execute arbitrary code.
The vulnerability of the Platform Sample/Silicon Reference component in server hardware from IntelR Server Board, IntelR Server System, and IntelR Compute Module is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to execute arbitrary code...
The vulnerability of the HECI subsystem of the microprogramming software for Intel Server Platform Services allows a perpetrator to cause a service failure.
The vulnerability of the HECI subsystem of the microprogramming software for Intel Server Platform Services SPS is related to insufficient verification of input data. Exploiting this vulnerability can allow attackers to cause service failures...
Intel Server Platform Services Input Validation Error Vulnerability
Intel Server Platform Services SPS is a server platform services program from Intel Corporation in the U.S. The HECI subsystem is one of the host embedded controller interface subsystems. An input validation error vulnerability exists in Intel Server Platform Services that stems from the program...
Input validation
Insufficient input validation in IntelR Server Platform Services HECI subsystem before version SPSE504.00.04.393.0 may allow privileged user to potentially cause a denial of service via local access...
CVE-2018-12198
Insufficient input validation in IntelR Server Platform Services HECI subsystem before version SPSE504.00.04.393.0 may allow privileged user to potentially cause a denial of service via local access...
CVE-2018-12198
Insufficient input validation in IntelR Server Platform Services HECI subsystem before version SPSE504.00.04.393.0 may allow privileged user to potentially cause a denial of service via local access...
CVE-2018-12204
Improper memory initialization in Platform Sample/Silicon Reference firmware IntelR Server Board, IntelR Server System and IntelR Compute Module may allow privileged user to potentially enable an escalation of privilege via local access...
Buffer overflow
Buffer overflow in HECI subsystem in IntelR CSME before versions 11.8.60, 11.11.60, 11.22.60 or 12.0.20 and IntelR TXE version before 3.1.60 or 4.0.10, or IntelR Server Platform Services before version 5.00.04.012 may allow an unauthenticated user to potentially execute arbitrary code via physica...
CVE-2018-12198
Insufficient input validation in IntelR Server Platform Services HECI subsystem before version SPSE504.00.04.393.0 may allow privileged user to potentially cause a denial of service via local access...
CVE-2018-12204
Improper memory initialization in Platform Sample/Silicon Reference firmware IntelR Server Board, IntelR Server System and IntelR Compute Module may allow privileged user to potentially enable an escalation of privilege via local access...
CVE-2018-12208
Intel CVE-2018-12208 is a buffer overflow in the HECI subsystem affecting Intel CSME, TXE, and SPS prior to specified fixed versions. The Intel advisory INTEL-SA-00185 documents the issue, listing affected products and firmware families (CSME before 11.8.60/11.11.60/11.22.60 or 12.0.20; TXE befor...
CVE-2018-9085
A write protection lock bit was left unset after boot on an older generation of Lenovo and IBM System x servers, potentially allowing an attacker with administrator access to modify the subset of flash memory containing Intel Server Platform Services SPS and the system Flash Descriptors...