84 matches found
EUVD-2017-14784
Malware in sbrugna...
EUVD-2017-14787
Malware in sbrugna...
EUVD-2018-4125
Malware in sbrugna...
K65043534: Multiple INTEL BIOS vulnerabilities
Security Advisory Description CVE-2017-5705 Multiple buffer overflows in kernel in Intel Manageability Engine Firmware 11.0/11.5/11.6/11.7/11.10/11.20 allow attacker with local access to the system to execute arbitrary code. CVE-2017-5706 Multiple buffer overflows in kernel in Intel Server Platfo...
K60381308: Intel CPU vulnerability CVE-2018-3655
Security Advisory Description A vulnerability in a subsystem in Intel CSME before version 11.21.55, Intel Server Platform Services before version 4.0 and Intel Trusted Execution Engine Firmware before version 3.1.55 may allow an unauthenticated user to potentially modify or disclose information v...
SUSE CVE-2019-11087
Insufficient input validation in the subsystem for IntelR CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; IntelR TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable escalation of privilege, information disclosure or denial of...
SUSE CVE-2019-11104
Insufficient input validation in MEInfo software for IntelR CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; IntelR TXE before versions 3.1.70 and 4.0.20 may allow an authenticated user to potentially enable escalation of privilege via local access...
SUSE CVE-2019-11102
Insufficient input validation in IntelR DAL software for IntelR CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; IntelR TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable information disclosure via local access...
SUSE CVE-2019-11110
Authentication bypass in the subsystem for IntelR CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; IntelR TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable escalation of privilege via local access...
2020.2 IPU – Intel® CSME, SPS, TXE, and AMT Advisory
Summary: Potential security vulnerabilities in Intel® Converged Security and Manageability Engine CSME, Server Platform Services SPS, Intel® Trusted Execution Engine TXE, Intel® Dynamic Application Loader DAL, Intel® Active Management Technology AMT, Intel® Standard Manageability ISM and Intel®...
The vulnerability of microprogramming software, including Intel Converged Security and Manageability Engine (CSME), Intel Trusted Execution Engine (TXE), and Intel Server Platform Services (SPS), arises from insecure resource initialization, allowing attackers to escalate their privileges.
The vulnerabilities of Microprogramming Software, including Intel Converged Security and Manageability Engine CSME, Intel Trusted Execution Engine TXE, and Intel Server Platform Services SPS, are related to insecure resource initialization. Exploiting these vulnerabilities can allow attackers to...
The vulnerability of microprogramming software, including the Intel Converged Security and Manageability Engine (CSME), Intel Trusted Execution Engine (TXE), and Intel Server Platform Services (SPS), is related to deficiencies in access control. This allows attackers to enhance their privileges.
The vulnerabilities of Intel Converged Security and Manageability Engine CSME, Intel Trusted Execution Engine TXE, and Intel Server Platform Services SPS are related to deficiencies in access control. Exploiting these vulnerabilities can allow attackers to enhance their privileges...
The vulnerability of Intel Trusted Execution Engine’s microprogramming software, related to the use of memory after it is freed, allows attackers to enhance their privileges.
The vulnerability of Intel Trusted Execution Engine TXE microprogramming software is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to enhance their privileges...
The vulnerability of the DAL subsystem of the Intel Converged Security and Manageability Engine (CSME) and the Intel Trusted Execution Engine (TXE) software allows a perpetrator to enhance their privileges.
The vulnerability of the DAL subsystem of the Intel Converged Security and Manageability Engine CSME and the Intel Trusted Execution Engine TXE is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to enhance their privileges...
Multiple vulnerabilities fixed in Intel systems
Intel has fixed several vulnerabilities in Converged Security and Manageability Engine CSME, Server Platform Services SPS, Trusted Execution Engine TXE, Dynamic Application Loader DAL, Active Management Technology AMT and Standard Manageability ISM. Malicious parties can exploit the vulnerabiliti...
The vulnerability of the Intel Dynamic Application Loader (DAL) subsystem of the Intel Converged Security and Manageability Engine (CSME) and Intel Trusted Execution Engine (TXE) allows a attacker to trigger a service failure.
The vulnerability of the Intel Dynamic Application Loader DAL subsystem within the Intel Converged Security and Manageability Engine CSME and Intel Trusted Execution Engine TXE is related to an incorrect restriction on the path name to the restricted directory. Exploiting this vulnerability could...
The vulnerability of the Intel Converged Security and Manageability Engine technology and the Intel Trusted Execution Engine software lies in insufficient input data validation, allowing attackers to gain unauthorized access to protected information.
The vulnerability of the Intel Converged Security and Manageability Engine technology and the Intel Trusted Execution Engine TXE software is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access...
The vulnerability relates to the implementation of the Intel Converged Security and Manageability Engine, the microsoftware of the Intel Server Platform Services, and the Intel Trusted Execution Engine. It stems from a numerical overflow in data structures, allowing an attacker to trigger a service failure.
The vulnerability of the Intel Converged Security and Manageability Engine, the microsoftware of the Intel Server Platform Services, and the Intel Trusted Execution Engine is related to a count-based overflow in data structures. Exploiting this vulnerability can allow an attacker to trigger a...
CVE-2020-0566
Improper Access Control in subsystem for IntelR TXE versions before 3.175 and 4.0.25 may allow an unauthenticated user to potentially enable escalation of privilege via physical access...
CVE-2020-0545
Integer overflow in subsystem for IntelR CSME versions before 11.8.77, 11.12.77, 11.22.77 and IntelR TXE versions before 3.1.75, 4.0.25 and IntelR Server Platform Services SPS versions before SPSE504.01.04.380.0, SPSSoC-X04.00.04.128.0, SPSSoC-A04.00.04.211.0, SPSE304.01.04.109.0,...