2020.2 IPU – Intel® CSME, SPS, TXE, and AMT Advisory

Summary: Potential security vulnerabilities in Intel® Converged Security and Manageability Engine CSME, Server Platform Services SPS, Intel® Trusted Execution Engine TXE, Intel® Dynamic Application Loader DAL, Intel® Active Management Technology AMT, Intel® Standard Manageability ISM and Intel®...

Vulnerability in the Microprogramming Software System of the Intel Converged Security and Manageability Engine (CSME) and the Microprogramming Software System of the Intel Trusted Execution Engine (TXE), allowing a perpetrator to gain unauthorized access to protected information

The vulnerability in the Microprogramming Software Intel Converged Security and Manageability Engine CSME and Intel Trusted Execution Engine TXE is related to insufficient flow control. Exploitation of this vulnerability may allow an attacker to gain unauthorized access to protected information...

The vulnerability of the DAL subsystem of the Intel Converged Security and Manageability Engine (CSME) and the Intel Trusted Execution Engine (TXE) software allows a perpetrator to enhance their privileges.

The vulnerability of the DAL subsystem of the Intel Converged Security and Manageability Engine CSME and the Intel Trusted Execution Engine TXE is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to enhance their privileges...

The vulnerability of Microprogramming Software, Intel Converged Security and Manageability Engine (CSME), and Intel Trusted Execution Engine (TXE) arises from insufficient validation of input data, allowing attackers to disclose protected information.

The vulnerability of Microprogramming Software Intel Converged Security and Manageability Engine CSME and Intel Trusted Execution Engine TXE is related to insufficient verification of input data. Exploiting this vulnerability can allow attackers to disclose protected information...

Vulnerability in the Intel Converged Security and Manageability Engine microprogramming subsystem, related to buffer overflow attacks, allows attackers to escalate their privileges.

The vulnerability in the Intel Converged Security and Manageability Engine CSME microprogramming subsystem is related to buffer overflow attacks. Exploiting this vulnerability can allow an attacker, operating remotely, to increase their privileges...