71 matches found
EUVD-2017-14782
Malware in sbrugna...
EUVD-2017-14785
Malware in sbrugna...
EUVD-2017-14788
Malware in sbrugna...
EUVD-2025-24439
Malicious code in bioql PyPI...
2025.3 IPU, Intel® Chipset Firmware Advisory
Summary: Potential security vulnerabilities in some Intel® Converged Security and Manageability Engine CSME, Intel® Server Platform Services Intel® SPS, Intel® Active Management Technology AMT, and Intel® Standard Manageability may allow information disclosure or escalation of privilege. Intel is...
The vulnerability of the software for remote management and monitoring of the Intel Converged Security and Manageability Engine (CSME) arises from improper initialization of resources, allowing attackers to disclose protected information.
The vulnerability of the software for remote management and monitoring of the Intel Converged Security and Manageability Engine CSME is related to improper initialization of resources. Exploiting this vulnerability can allow attackers to disclose protected information...
PT-2024-7105 · Intel · Intel Converged Security/Manageability Engine
Name of the Vulnerable Software and Affected Versions: Intel Converged Security and Manageability Engine CSME affected versions not specified Description: The issue is related to insufficient input validation in the Intel Converged Security and Manageability Engine CSME firmware, which may allow ...
PT-2024-7103 · Intel · Intel Csme
Name of the Vulnerable Software and Affected Versions: IntelR CSME affected versions not specified Description: The issue is related to an unchecked return value in the firmware of some Intel Converged Security and Manageability Engine CSME subsystems. This may allow an unauthenticated user with...
The vulnerability of software for remote management and monitoring of the Intel Converged Security and Manageability Engine (CSME) arises from insufficient validation of input data. This allows attackers to increase their privileges.
The vulnerability of the software for remote management and monitoring of the Intel Converged Security and Manageability Engine CSME is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of the software for remote management and monitoring of the Intel Converged Security and Manageability Engine (CSME) is related to incorrect default permissions, allowing attackers to increase their privileges.
The vulnerability of the software for remote management and monitoring of the Intel Converged Security and Manageability Engine CSME is related to incorrect default permissions. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of the Manageability Engine (ME) in Intel Server Platform Services (SPS) software for Lenovo ThinkSystem servers allows a malicious actor to alter the firmware configuration and trigger a service failure.
The vulnerability of the Manageability Engine ME in Intel Server Platform Services SPS of Lenovo ThinkSystem servers stems from the synchronization failure between BIOS/UEFI and ME states due to the use of non-replicable configurations. Exploiting this vulnerability can allow an attacker to alter...
K65043534: Multiple INTEL BIOS vulnerabilities
Security Advisory Description CVE-2017-5705 Multiple buffer overflows in kernel in Intel Manageability Engine Firmware 11.0/11.5/11.6/11.7/11.10/11.20 allow attacker with local access to the system to execute arbitrary code. CVE-2017-5706 Multiple buffer overflows in kernel in Intel Server Platfo...
2020.2 IPU – Intel® CSME, SPS, TXE, and AMT Advisory
Summary: Potential security vulnerabilities in Intel® Converged Security and Manageability Engine CSME, Server Platform Services SPS, Intel® Trusted Execution Engine TXE, Intel® Dynamic Application Loader DAL, Intel® Active Management Technology AMT, Intel® Standard Manageability ISM and Intel®...
CVE-2020-24516
Modification of assumed-immutable data in subsystem in IntelR CSME versions before 13.0.47, 13.30.17, 14.1.53, 14.5.32, 15.0.22 may allow an unauthenticated user to potentially enable escalation of privilege via physical access...
Intel CSME Elevation of Privilege Vulnerability
Intel Core Processors is an Intel Core family of central processing units CPUs from the American company Intel. A security vulnerability exists in Intel CSME that stems from improper input validation could allow a privileged user to potentially enable privilege escalation via local access. An...
The vulnerability of the Microprogramming Software Intel Converged Security and Manageability Engine (CSME) and Intel Trusted Execution Engine (TXE) arises from the implementation of incorrect control flow. This allows attackers to enhance their privileges.
The vulnerability of the Microprogramming Software Intel Converged Security and Manageability Engine CSME and Intel Trusted Execution Engine TXE is related to the implementation of incorrect control flow. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of Microprogramming Software: Intel Converged Security and Manageability Engine (CSME) and Intel Trusted Execution Engine (TXE) arises from deficiencies in access control, allowing attackers to enhance their privileges.
The vulnerabilities of Intel Converged Security and Manageability Engine CSME and Intel Trusted Execution Engine TXE are related to deficiencies in access control. Exploiting these vulnerabilities can allow attackers to enhance their privileges...
Vulnerability in the Microprogramming Software System of the Intel Converged Security and Manageability Engine (CSME) and the Microprogramming Software System of the Intel Trusted Execution Engine (TXE), allowing a perpetrator to gain unauthorized access to protected information
The vulnerability in the Microprogramming Software Intel Converged Security and Manageability Engine CSME and Intel Trusted Execution Engine TXE is related to insufficient flow control. Exploitation of this vulnerability may allow an attacker to gain unauthorized access to protected information...
A vulnerability exists in the microprogramming software subsystem of the Intel Converged Security and Manageability Engine (CSME), which allows attackers to enhance their privileges.
A vulnerability exists in the Microprogramming Software Subsystem of the Intel Converged Security and Manageability Engine CSME, due to insufficient validation of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of the DAL subsystem of the Intel Converged Security and Manageability Engine (CSME) and the Intel Trusted Execution Engine (TXE) software allows a perpetrator to enhance their privileges.
The vulnerability of the DAL subsystem of the Intel Converged Security and Manageability Engine CSME and the Intel Trusted Execution Engine TXE is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to enhance their privileges...