EUVD-2018-15481

Malware in sbrugna...

CVE-2020-0545

Integer overflow in subsystem for IntelR CSME versions before 11.8.77, 11.12.77, 11.22.77 and IntelR TXE versions before 3.1.75, 4.0.25 and IntelR Server Platform Services SPS versions before SPSE504.01.04.380.0, SPSSoC-X04.00.04.128.0, SPSSoC-A04.00.04.211.0, SPSE304.01.04.109.0,...

Intel Converged Security and Management Engine Input Validation Error Vulnerability

Intel Converged Security and Management Engine CSME is a security management engine from Intel Corporation USA. An input validation error vulnerability exists in Intel Converged Security and Management Engine versions prior to 2328.5.5.0, which stems from the presence of an input validation error...

Intel 2024.1 IPU - Chipset Software March 2024 Security Update

Intel has informed HP of potential security vulnerabilities in the Intel® Converged Security Management Engine CSME installer and Intel® Local Manageability Service software which may allow escalation of privilege or information disclosure. Intel is releasing updates to mitigate these potential...

2024.1 IPU - Intel® Chipset Software and SPS Advisory

Summary: Potential security vulnerabilities in the Intel® Converged Security Management Engine CSME installer, Intel® Local Manageability Service software and Intel® Server Platform Servcies SPS may allow information disclosure, escalation of privilege, or denial of service. Vulnerability Details...

Lenovo ThinkPad 输入验证错误漏洞

Lenovo ThinkPad is a portable computer from Lenovo, a Chinese company. An input validation error vulnerability exists in the SMI callback function used in the CSME configuration of the Lenovo ThinkPad, which can be exploited by an attacker to execute arbitrary code...

Intel Converged Security Management Engine (CSME) Active Management Technology (AMT) Multiple Vulnerabilities (INTEL-SA-00391)

Binary data wmiINTEL-SA-00391.nbin...

CVE-2020-8705

Insecure default initialization of resource in IntelR Boot Guard in IntelR CSME versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25, IntelR TXE versions before 3.1.80 and 4.0.30, IntelR SPS versions before E504.01.04.400, E304.01.04.200, SoC-X04.00.04.200...

Intel TXE and Intel Converged Security and Management Engine License Issue Vulnerability

Intel Converged Security and Management Engine CSME and Intel TXE are both products of Intel Corporation, U.S.A. Intel Converged Security and Management Engine is a security management engine. Intel TXE is a trust execution engine with hardware authentication capabilities for use in CPUs central...

Intel Converged Security and Management Engine and Intel TXE Buffer Overflow Vulnerability

Intel Converged Security and Management Engine CSME and Intel TXE are both products of Intel Corporation, U.S.A. Intel Converged Security and Management Engine is a security management engine. Intel TXE is a trust execution engine with hardware authentication capabilities for use in CPUs central...

Access Control Error Vulnerability in Multiple Intel Products

Intel Converged Security and Management Engine CSME, etc. are products of Intel Corporation, USA. Intel Converged Security and Management Engine is a security management engine. Intel Server Platform Services SPS is a server platform service program. Intel Converged Security and Management Engine...

CVE-2018-3627

CVE-2018-3627 is a logic bug in Intel’s Converged Security Management Engine (CSME) 11.x firmware that could allow an attacker with local privileged access to execute arbitrary code. The vulnerability affects Intel CSME 11.x on several generations of Intel CPUs and is described as a local-elevati...

Intel® Converged Security Management Engine (Intel® CSME) 11.x issue

Summary: In an effort to continuously improve the robustness of the Intel® Converged Security Management Engine Intel® CSME, Intel has performed a security review of its Intel® CSME with the objective of continuously enhancing firmware resilience. Description: In an effort to continuously improve...