84 matches found
Lenovo Patches Intel Firmware Flaws in Multiple Product Lines
Lenovo has patched several several high-severity vulnerabilities tied to Intel flaws that could enable escalation of privilege, information disclosure, or even denial of service. Overall the device maker patched flaws tied to 16 high-severity CVEs on Thursday. Those include five related to Intel...
Intel CSME, Server Platform Services, Trusted Execution Engine and Intel Active Management Technology Vulnerabilities - Lenovo Support US
No description provided...
HPSBHF03607 rev. 3 - Intel CSME, Trusted Execution Engine (TXE), Active Management Technology (AMT) Security Updates
Potential Security Impact Escalation of Privilege, Denial of Service, Information Disclosure Source: HP, HP Product Security Response Team PSRT Reported By: Intel VULNERABILITY SUMMARY Potential security vulnerabilities have been identified with Intel® CSME, Server Platform Services, Trusted...
The vulnerability of Microprogramming Software, including Intel Converged Security and Manageability Engine (CSME), Intel Server Platform Services (SPS), and Intel Trusted Execution Engine (TXE), arises due to privilege management errors, allowing attackers to disclose or modify protected information.
The vulnerabilities of Intel CSME, Intel SPS, and Intel TXE are caused by privilege management errors. Exploiting these vulnerabilities can allow attackers to disclose or modify protected information...
CVE-2018-3659
A vulnerability in Intel PTT module in Intel CSME firmware before version 12.0.5 and Intel TXE firmware before version 4.0 may allow an unauthenticated user to potentially disclose information via physical access...
CVE-2018-3655
A vulnerability in a subsystem in Intel CSME before version 11.21.55, Intel Server Platform Services before version 4.0 and Intel Trusted Execution Engine Firmware before version 3.1.55 may allow an unauthenticated user to potentially modify or disclose information via physical access...
CVE-2018-3655
A vulnerability in a subsystem in Intel CSME before version 11.21.55, Intel Server Platform Services before version 4.0 and Intel Trusted Execution Engine Firmware before version 3.1.55 may allow an unauthenticated user to potentially modify or disclose information via physical access...
Design/Logic Flaw
A vulnerability in a subsystem in Intel CSME before version 11.21.55, Intel Server Platform Services before version 4.0 and Intel Trusted Execution Engine Firmware before version 3.1.55 may allow an unauthenticated user to potentially modify or disclose information via physical access...
CVE-2018-3655
The CVE-2018-3655 issue affects Intel CSME firmware before 11.21.55, Intel SPS before 4.0, and Intel TXE firmware before 3.1.55. The vulnerability allows an unauthenticated user with physical access to potentially modify or disclose information stored in the CSME/SPS/TXE subsystems. Exploitation ...
Intel ME 6.x/7.x/8.x/9.x/10.x./11.x, SPS 4.0, and TXE 3.0 Cumulative Security Update - US
Lenovo Security Advisory: LEN-17297 Potential Impact: An attacker could load and execute arbitrary code outside the visibility of the user, operating system, and hypervisor/virtualization platform; resulting in exfiltration of secrets, subtle manipulation of system operation, or denial of service...
Intel Q3’17 ME 6.x/7.x/8.x/9.x/10.x/11.x, SPS 4.0, and TXE 3.0 Security Review Cumulative Update
Summary: In response to issues identified by external researchers, Intel has performed an in-depth comprehensive security review of our Intel® Management Engine ME, Intel® Server Platform Services SPS, and Intel® Trusted Execution Engine TXE with the objective of enhancing firmware resilience. As...
Multiple vulnerabilities in the Intel Trusted Execution Engine (TXE) subsystem of the Platform Controller Hub family of microcontrollers, which allow attackers to enhance their privileges
The multiple vulnerabilities of the Intel Trusted Execution Engine TXE subsystem in microprogramming software of the Platform Controller Hub PCH family, which serve as south bridges, are caused by buffer overflows. These vulnerabilities are related to deficiencies in access control. Exploitation ...
Multiple vulnerabilities in the Intel Trusted Execution Engine (TXE) subsystem of the Platform Controller Hub family of microprogramming devices, which allow unauthorized code to be executed
The multiple vulnerabilities of the Intel Trusted Execution Engine TXE subsystem in microprogramming software of the Platform Controller Hub PCH family, which serve as south bridges, are caused by buffer overflows. Exploitation of these vulnerabilities could allow an attacker to execute unsigned...
Multiple Local Elevation of Privilege Vulnerabilities in Intel Trusted Execution Engine
Intel Trusted Execution Engine Firmware is a trusted execution engine firmware product. Intel Trusted Execution Engine has multiple local elevation of privilege vulnerabilities. An attacker could exploit this vulnerability to access privileged content...
Multiple Local Buffer Overflow Vulnerabilities in Intel Trusted Execution Engine
Intel Trusted Execution Engine Firmware is a trusted execution engine firmware product. Intel Trusted Execution Engine has multiple local buffer overflow vulnerabilities. The vulnerabilities could be exploited by an attacker with local access rights to execute arbitrary code...
Intel Patches CPU Bugs Impacting Millions of Devices
Intel released patches on Monday to protect millions of PCs and servers from vulnerabilities found in its Management Engine, Trusted Execution Engine and Server Platform Services that could allow local attackers elevate privileges, run arbitrary code, crash systems and eavesdrop on communications...
Buffer overflow
Multiple buffer overflows in kernel in Intel Trusted Execution Engine Firmware 3.0 allow attacker with local access to the system to execute arbitrary code...
CVE-2017-5710
Multiple privilege escalations in kernel in Intel Trusted Execution Engine Firmware 3.0 allows unauthorized process to access privileged content via unspecified vector...
CVE-2017-5707
Multiple buffer overflows in kernel in Intel Trusted Execution Engine Firmware 3.0 allow attacker with local access to the system to execute arbitrary code...
CVE-2017-5710
Multiple privilege escalations in kernel in Intel Trusted Execution Engine Firmware 3.0 allows unauthorized process to access privileged content via unspecified vector...