63 matches found
CVE-2019-11131
Logic issue in subsystem in IntelR AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow an unauthenticated user to potentially enable escalation of privilege via network access...
CVE-2019-11097
Improper directory permissions in the installer for IntelR Management Engine Consumer Driver for Windows before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45,13.0.10 and 14.0.10; IntelR TXE before versions 3.1.70 and 4.0.20 may allow an authenticated user to potentially enable escalation of...
EUVD-2016-9072
Malware in sbrugna...
EUVD-2019-2801
Malware in sbrugna...
Intel Management Engine 访问控制错误漏洞
Intel Management Engine Intel ME is an embedded microcontroller from Intel Corporation USA. An access control error vulnerability exists in Intel Management Engine versions prior to 2422.6.2.0 that stems from improper access control and could allow an authenticated user to elevate privileges via...
Intel One Boot Flash Utility Security Vulnerability
The Intel One Boot Flash Utility is an Intel Corporation program for updating a system's BIOS, BMC, Sensor Data Recording SDR, Field-Replaceable Unit FRU, and Intel® Management Engine Intel® ME. Programs for the Intel® Management Engine Intel® ME. A security vulnerability exists in the Intel One...
Intel One Boot Flash Utility Security Vulnerability
The Intel One Boot Flash Utility is an Intel Corporation program for updating a system's BIOS, BMC, Sensor Data Recording SDR, Field-Replaceable Unit FRU, and Intel® Management Engine Intel® ME. Programs for the Intel® Management Engine Intel® ME. A security vulnerability exists in the Intel One...
Intel One Boot Flash Utility 安全漏洞
The Intel One Boot Flash Utility is an Intel Corporation program for updating a system's BIOS, BMC, Sensor Data Recording SDR, Field-Replaceable Unit FRU, and Intel® Management Engine Intel® ME. Programs for the Intel® Management Engine Intel® ME. A security vulnerability exists in the Intel One...
SUSE CVE-2019-0165
Insufficient Input validation in the subsystem for IntelR CSME before versions 12.0.45,13.0.10 and 14.0.10 may allow a privileged user to potentially enable denial of service via local access...
SUSE CVE-2019-0168
Insufficient input validation in the subsystem for IntelR CSME before versions 11.8.70, 12.0.45 and 13.0.10; IntelR TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable information disclosure via local access...
SUSE CVE-2019-11105
Logic issue in subsystem for IntelR CSME before versions 12.0.45, 13.0.10 and 14.0.10 may allow a privileged user to potentially enable escalation of privilege and information disclosure via local access...
SUSE CVE-2019-11103
Insufficient input validation in firmware update software for IntelR CSME before versions 12.0.45,13.0.10 and 14.0.10 may allow an authenticated user to potentially enable escalation of privilege via local access...
Intel Active Management Technology (AMT) Multiple Vulnerabilities (INTEL-SA-00709) (remote check)
The Intel Management Engine on the remote host has Active Management Technology AMT enabled, and, according to its self-reported version, is a version containing multiple vulnerabilities, including the following: - Insufficiently protected credentials for IntelR AMT and IntelR Standard...
Intel Active Management Technology (AMT) Multiple Vulnerabilities (INTEL-SA-00709)
Binary data wmiINTEL-SA-00709.nbin...
Conti Leaks Reveal Ransomware Gang's Interest in Firmware-based Attacks
An analysis of leaked chats from the notorious Conti ransomware group earlier this year has revealed that the syndicate has been working on a set of firmware attack techniques that could offer a path to accessing privileged code on compromised devices. "Control over firmware gives attackers...
Intel(R) Management Engine Components 6.0.0.1189 - (LMS) Unquoted Service Path Vulnerability
Exploit Title: IntelR Management Engine Components 6.0.0.1189 - 'LMS' Unquoted Service Path Exploit Author : SamAlucard Vendor : Intel Version : IntelR Management Engine Components 6.0.0.1189 Vendor Homepage : https://www.intel.com Tested on OS: Windows 7 Pro Analyze PoC : ============== C:\sc qc...
CVE-2020-8703
Improper buffer restrictions in a subsystem in the IntelR CSME versions before 11.8.86, 11.12.86, 11.22.86, 12.0.81, 13.0.47, 13.30.17, 14.1.53, 14.5.32 and 15.0.22 may allow a privileged user to potentially enable escalation of privilege via local access...
CVE-2020-24507
Improper initialization in a subsystem in the IntelR CSME versions before 11.8.86, 11.12.86, 11.22.86, 12.0.81, 13.0.47, 13.30.17, 14.1.53, 14.5.32, 13.50.11 and 15.0.22 may allow a privileged user to potentially enable information disclosure via local access...
Intel CSME 安全漏洞
CSME is known as the Intel Management Engine BIOS Extension. A security vulnerability exists in Intel CSME that stems from a modification in the subsystem that assumes immutable data may allow an unauthenticated user to potentially enable privilege escalation through physical access. The followin...
CSME安全漏洞
CSME is known as the Intel Management Engine BIOS Extension. A security vulnerability exists in CSME that stems from insufficient control flow management in the subsystem, which could allow an attacker to escalate privileges via local access. The following products and versions are affected:...