217 matches found
CVE-2019-0169
Heap overflow in subsystem in IntelR CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45; IntelR TXE before versions 3.1.70 and 4.0.20 may allow an unauthenticated user to potentially enable escalation of privileges, information disclosure or denial of service via adjacent access...
CVE-2019-0153
Buffer overflow in subsystem in IntelR CSME 12.0.0 through 12.0.34 may allow an unauthenticated user to potentially enable escalation of privilege via network access...
CVE-2019-0091
Code injection vulnerability in installer for IntelR CSME before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 and IntelR TXE 3.1.65, 4.0.15 may allow an unprivileged user to potentially enable escalation of privilege via local access...
CVE-2019-11101
Insufficient input validation in the subsystem for IntelR CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; IntelR TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable information disclosure via local access...
CVE-2019-0168
Insufficient input validation in the subsystem for IntelR CSME before versions 11.8.70, 12.0.45 and 13.0.10; IntelR TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable information disclosure via local access...
CVE-2019-0093
Insufficient data sanitization vulnerability in HECI subsystem for IntelR CSME before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 and IntelR SPS before version SPSE305.00.04.027.0 may allow a privileged user to potentially enable information disclosure via local access...
The vulnerability in the Microprogramming Software Subsystem of the Intel Converged Security and Manageability Engine (CSME) allows a perpetrator to trigger a service failure or increase their privileges.
The vulnerability in the Intel Converged Security and Manageability Engine CSME microprogramming subsystem is related to incorrect checking of the return value of a method or function. Exploiting this vulnerability can allow an attacker to cause a service failure or increase their privileges...
CVE-2023-48361
Improper initialization in firmware for some IntelR CSME may allow a privileged user to potentially enable information disclosure via local access...
CVE-2023-40067
Unchecked return value in firmware for some IntelR CSME may allow an unauthenticated user to potentially enable escalation of privilege via physical access...
CVE-2023-34424
Improper input validation in firmware for some IntelR CSME may allow a privileged user to potentially enable denial of service via local access...
CVE-2023-34424
Improper input validation in firmware for some IntelR CSME may allow a privileged user to potentially enable denial of service via local access...
CVE-2024-21844
Integer overflow in firmware for some IntelR CSME may allow an unauthenticated user to potentially enable denial of service via adjacent access...
CVE-2023-48361
Improper initialization in firmware for some IntelR CSME may allow a privileged user to potentially enable information disclosure via local access...
CVE-2023-48361
Improper initialization in firmware for some IntelR CSME may allow a privileged user to potentially enable information disclosure via local access...
CVE-2023-40067
Unchecked return value in firmware for some IntelR CSME may allow an unauthenticated user to potentially enable escalation of privilege via physical access...
CVE-2023-28389
Incorrect default permissions in some IntelR CSME installer software before version 2328.5.5.0 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2023-32633
Improper input validation in the IntelR CSME installer software before version 2328.5.5.0 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2023-32633
Improper input validation in the IntelR CSME installer software before version 2328.5.5.0 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2023-32633
Improper input validation in the IntelR CSME installer software before version 2328.5.5.0 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2023-28389
Incorrect default permissions in some IntelR CSME installer software before version 2328.5.5.0 may allow an authenticated user to potentially enable escalation of privilege via local access...