Active Management Technology Firmware@* Security Vulnerabilities and Issues — Active Management Technology Firmware@* CVE List

Lucene search

IntelActive Management Technology Firmware*

21 matches found

CVE•added 2020/09/10 3:16 p.m.•180 views

CVE-2020-8758

Improper buffer restrictions in network subsystem in provisioned Intel(R) AMT and Intel(R) ISM versions before 11.8.79, 11.12.79, 11.22.79, 12.0.68 and 14.0.39 may allow an unauthenticated user to potentially enable escalation of privilege via network access. On un-provisioned systems, an authentic...

9.8CVSS9.3AI score0.01309EPSS

CVE•added 2020/11/12 6:15 p.m.•113 views

CVE-2020-8747

Out-of-bounds read in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable information disclosure and/or denial of service via network access.

9.1CVSS8.7AI score0.00804EPSS

CVE•added 2020/11/12 6:15 p.m.•113 views

CVE-2020-8752

Out-of-bounds write in IPv6 subsystem for Intel(R) AMT, Intel(R) ISM versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70, 14.0.45 may allow an unauthenticated user to potentially enable escalation of privileges via network access.

9.8CVSS9.5AI score0.00733EPSS

CVE•added 2020/11/12 6:15 p.m.•105 views

CVE-2020-8749

Out-of-bounds read in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

8.8CVSS9.2AI score0.00536EPSS

CVE•added 2020/11/12 6:15 p.m.•95 views

CVE-2020-12356

Out-of-bounds read in subsystem in Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow a privileged user to potentially enable information disclosure via local access.

4.4CVSS5.1AI score0.00145EPSS

CVE•added 2020/11/12 6:15 p.m.•94 views

CVE-2020-8757

Out-of-bounds read in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow a privileged user to potentially enable escalation of privilege via local access.

6.7CVSS6.8AI score0.00136EPSS

CVE•added 2020/11/12 6:15 p.m.•92 views

CVE-2020-8754

Out-of-bounds read in subsystem for Intel(R) AMT, Intel(R) ISM versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable information disclosure via network access.

7.5CVSS7.1AI score0.00964EPSS

CVE•added 2020/11/12 6:15 p.m.•91 views

CVE-2020-8753

Out-of-bounds read in DHCP subsystem for Intel(R) AMT, Intel(R) ISM versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable information disclosure via network access.

7.5CVSS8AI score0.00964EPSS

CVE•added 2020/11/12 6:15 p.m.•89 views

CVE-2020-8746

Integer overflow in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

6.5CVSS7.8AI score0.00213EPSS

CVE•added 2020/11/12 6:15 p.m.•87 views

CVE-2020-8760

Integer overflow in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70, 14.0.45 may allow a privileged user to potentially enable escalation of privilege via local access.

7.8CVSS7.8AI score0.00124EPSS

CVE•added 2020/06/15 2:15 p.m.•77 views

CVE-2020-0596

Improper input validation in DHCPv6 subsystem in Intel(R) AMT and Intel(R) ISM versions before 11.8.77, 11.12.77, 11.22.77 and 12.0.64 may allow an unauthenticated user to potentially enable information disclosure via network access.

7.5CVSS8.1AI score0.00638EPSS

CVE•added 2020/06/15 2:15 p.m.•72 views

CVE-2020-0537

Improper input validation in subsystem for Intel(R) AMT versions before 11.8.77, 11.12.77, 11.22.77 and 12.0.64 may allow a privileged user to potentially enable denial of service via network access.

4.9CVSS6AI score0.00425EPSS

CVE•added 2020/06/15 2:15 p.m.•71 views

CVE-2020-0531

Improper input validation in Intel(R) AMT versions before 11.8.77, 11.12.77, 11.22.77 and 12.0.64 may allow an authenticated user to potentially enable information disclosure via network access.

6.5CVSS6.6AI score0.00449EPSS

CVE•added 2020/06/15 2:15 p.m.•69 views

CVE-2020-0594

Out-of-bounds read in IPv6 subsystem in Intel(R) AMT and Intel(R) ISM versions before 11.8.77, 11.12.77, 11.22.77 and 12.0.64 may allow an unauthenticated user to potentially enable escalation of privilege via network access.

9.8CVSS9.4AI score0.01696EPSS

CVE•added 2020/06/15 2:15 p.m.•69 views

CVE-2020-0597

Out-of-bounds read in IPv6 subsystem in Intel(R) AMT and Intel(R) ISM versions before 14.0.33 may allow an unauthenticated user to potentially enable denial of service via network access.

7.5CVSS8.2AI score0.02727EPSS

CVE•added 2020/06/15 2:15 p.m.•68 views

CVE-2020-0532

Improper input validation in subsystem for Intel(R) AMT versions before 11.8.77, 11.12.77, 11.22.77 and 12.0.64 may allow an unauthenticated user to potentially enable denial of service or information disclosure via adjacent access.

7.1CVSS7.1AI score0.00477EPSS

CVE•added 2020/06/15 2:15 p.m.•59 views

CVE-2020-0538

7.5CVSS7.7AI score0.01402EPSS

CVE•added 2020/06/15 2:15 p.m.•58 views

CVE-2020-0535

Improper input validation in Intel(R) AMT versions before 11.8.76, 11.12.77, 11.22.77 and 12.0.64 may allow an unauthenticated user to potentially enable information disclosure via network access.

5.3CVSS5.3AI score0.00859EPSS

CVE•added 2020/06/15 2:15 p.m.•58 views

CVE-2020-8674

Out-of-bounds read in DHCPv6 subsystem in Intel(R) AMT and Intel(R)ISM versions before 11.8.77, 11.12.77, 11.22.77, 12.0.64 and 14.0.33 may allow an unauthenticated user to potentially enable information disclosure via network access.

5.3CVSS6.6AI score0.01249EPSS

CVE•added 2020/06/15 2:15 p.m.•57 views

CVE-2020-0540

Insufficiently protected credentials in Intel(R) AMT versions before 11.8.77, 11.12.77, 11.22.77 and 12.0.64 may allow an unauthenticated user to potentially enable information disclosure via network access.

7.5CVSS7.5AI score0.01991EPSS

CVE•added 2020/06/15 2:15 p.m.•57 views

CVE-2020-0595

Use after free in IPv6 subsystem in Intel(R) AMT and Intel(R) ISM versions before 11.8.77, 11.12.77, 11.22.77 and 12.0.64 may allow an unauthenticated user to potentially enable escalation of privilege via network access.

9.8CVSS9.8AI score0.01696EPSS