Lucene search
K

683 matches found

CNVD
CNVD
added 2020/06/11 12:0 a.m.2 views

Intel SPS Security Vulnerability

Intel Server Platform Services SPS is a server platform services program from Intel USA. A security vulnerability exists in Intel SPS versions prior to SPSE304.01.04.109.0 and SPSE304.08.04.070.0, which stems from the program not being properly initialized. A local attacker could exploit the...

7.8CVSS6.5AI score0.00355EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/04/15 4:58 p.m.26 views

CVE-2020-0578

Improper conditions check for IntelR Modular Server MFS2600KISPP Compute Module may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access...

9.2AI score0.00633EPSS
Exploits0References1
CNVD
CNVD
added 2019/12/06 12:0 a.m.5 views

Unspecified Vulnerability in Intel Server Platform Service

Intel Server Platform Services SPS is a server platform services program from Intel USA. An unspecified vulnerability exists in Intel Server Platform Service. An attacker could exploit this vulnerability to cause a denial of service...

4.6CVSS6.7AI score0.00332EPSS
Exploits0References1
CNVD
CNVD
added 2019/12/05 12:0 a.m.4 views

Competitive conditions issue vulnerability for multiple Intel products

Intel Server Platform Services SPS, etc. are products of Intel Corporation. Intel Server Platform Services is a server platform service program. Intel TXE is a trust execution engine used in CPUs central processing units with hardware authentication capabilities. Intel Platform Trust Technology P...

5.9CVSS7AI score0.02342EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2019/11/25 12:0 a.m.8 views

The vulnerability of Intel Server Platform Services’ microprogramming software, related to a logical error, allows attackers to trigger a service failure.

The vulnerability of Intel Server Platform Services’ microprogramming software is related to a logical error. Exploiting this vulnerability could allow an attacker to cause a service failure...

4.6CVSS6.4AI score0.00332EPSS
Exploits0References2
Intel
Intel
added 2019/07/12 12:0 a.m.22 views

Intel® Server Boards Firmware Advisory

Summary: A potential security vulnerability in Intel® Server Board firmware may allow escalation of privilege, denial of service and/or information disclosure. Intel is releasing firmware updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2018-12173 Description:...

7.6CVSS8AI score0.00407EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2019/05/31 12:0 a.m.8 views

Vulnerability in the subsystems of Microprogramming Software: Intel Converged Security and Manageability Engine, Intel Server Platform Services, and Intel Trusted Execution Engine (TXE). This vulnerability is related to lack of access control, allowing attackers to enhance their privileges.

The vulnerability in the microprogramming system components of the Intel Converged Security and Manageability Engine, Intel Server Platform Services, and Intel Trusted Execution Engine TXE is related to access control deficiencies. Exploiting this vulnerability can allow attackers to enhance thei...

7.1CVSS7.8AI score0.00362EPSS
Exploits0References4Affected Software2
ThreatPost
ThreatPost
added 2019/03/29 9:5 p.m.111 views

Intel VISA Tech Can Be Abused, Researchers Allege

UPDATE Researchers allege that a technology in Intel microchips could potentially be activated and abused by bad actors – giving them complete access to all data across an affected device. The Intel technology is called Visualization of Internal Signals Architecture VISA, and is used for...

7.2CVSS0.3AI score0.00686EPSS
Exploits0References7
BDU FSTEC
BDU FSTEC
added 2019/03/29 12:0 a.m.6 views

The vulnerability of the Platform Sample/Silicon Reference component in server hardware from Intel(R) Server Board, Intel(R) Server System, and Intel(R) Compute Module stems from deficiencies in access control. This allows attackers to execute arbitrary code.

The vulnerability of the Platform Sample/Silicon Reference component in server hardware from IntelR Server Board, IntelR Server System, and IntelR Compute Module is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

7.5CVSS7AI score0.00395EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2019/03/27 12:0 a.m.4 views

The vulnerability of the HECI subsystem of the microprogramming software for Intel Server Platform Services allows a perpetrator to cause a service failure.

The vulnerability of the HECI subsystem of the microprogramming software for Intel Server Platform Services SPS is related to insufficient verification of input data. Exploiting this vulnerability can allow attackers to cause service failures...

6CVSS6.5AI score0.0034EPSS
Exploits0References3
CNVD
CNVD
added 2019/03/18 12:0 a.m.5 views

Intel Server Platform Services Input Validation Error Vulnerability

Intel Server Platform Services SPS is a server platform services program from Intel Corporation in the U.S. The HECI subsystem is one of the host embedded controller interface subsystems. An input validation error vulnerability exists in Intel Server Platform Services that stems from the program...

6CVSS6.7AI score0.0034EPSS
Exploits0References1
Prion
Prion
added 2019/03/14 8:29 p.m.25 views

Input validation

Insufficient input validation in IntelR Server Platform Services HECI subsystem before version SPSE504.00.04.393.0 may allow privileged user to potentially cause a denial of service via local access...

2.1CVSS5.5AI score0.0034EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2019/03/14 8:29 p.m.4 views

CVE-2018-12198

Insufficient input validation in IntelR Server Platform Services HECI subsystem before version SPSE504.00.04.393.0 may allow privileged user to potentially cause a denial of service via local access...

6CVSS5.8AI score
Exploits0References3
NVD
NVD
added 2019/03/14 8:29 p.m.24 views

CVE-2018-12198

Insufficient input validation in IntelR Server Platform Services HECI subsystem before version SPSE504.00.04.393.0 may allow privileged user to potentially cause a denial of service via local access...

6CVSS5.6AI score0.0034EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2019/03/14 8:29 p.m.27 views

CVE-2018-12204

Improper memory initialization in Platform Sample/Silicon Reference firmware IntelR Server Board, IntelR Server System and IntelR Compute Module may allow privileged user to potentially enable an escalation of privilege via local access...

7.2CVSS6.7AI score0.00395EPSS
Exploits0References2
Prion
Prion
added 2019/03/14 8:29 p.m.29 views

Buffer overflow

Buffer overflow in HECI subsystem in IntelR CSME before versions 11.8.60, 11.11.60, 11.22.60 or 12.0.20 and IntelR TXE version before 3.1.60 or 4.0.10, or IntelR Server Platform Services before version 5.00.04.012 may allow an unauthenticated user to potentially execute arbitrary code via physica...

4.6CVSS7.7AI score0.00511EPSS
Exploits0References3Affected Software3
Cvelist
Cvelist
added 2019/03/14 8:0 p.m.26 views

CVE-2018-12198

Insufficient input validation in IntelR Server Platform Services HECI subsystem before version SPSE504.00.04.393.0 may allow privileged user to potentially cause a denial of service via local access...

5.6AI score0.0034EPSS
Exploits0References3
Cvelist
Cvelist
added 2019/03/14 8:0 p.m.30 views

CVE-2018-12204

Improper memory initialization in Platform Sample/Silicon Reference firmware IntelR Server Board, IntelR Server System and IntelR Compute Module may allow privileged user to potentially enable an escalation of privilege via local access...

6.7AI score0.00395EPSS
Exploits0References5
CVE
CVE
added 2019/03/14 8:0 p.m.50 views

CVE-2018-12208

Intel CVE-2018-12208 is a buffer overflow in the HECI subsystem affecting Intel CSME, TXE, and SPS prior to specified fixed versions. The Intel advisory INTEL-SA-00185 documents the issue, listing affected products and firmware families (CSME before 11.8.60/11.11.60/11.22.60 or 12.0.20; TXE befor...

7.6CVSS7.7AI score0.00511EPSS
Exploits0References3Affected Software3
OSV
OSV
added 2018/11/16 2:29 p.m.4 views

CVE-2018-9085

A write protection lock bit was left unset after boot on an older generation of Lenovo and IBM System x servers, potentially allowing an attacker with administrator access to modify the subset of flash memory containing Intel Server Platform Services SPS and the system Flash Descriptors...

4.9CVSS5.8AI score
Exploits0References1
Rows per page
Query Builder