Active Management Technology Firmware Security Vulnerabilities and Issues — Active Management Technology Firmware CVE List

Lucene search

IntelActive Management Technology Firmware

10 matches found

CVE•added 2020/09/10 3:16 p.m.•180 views

CVE-2020-8758

Improper buffer restrictions in network subsystem in provisioned Intel(R) AMT and Intel(R) ISM versions before 11.8.79, 11.12.79, 11.22.79, 12.0.68 and 14.0.39 may allow an unauthenticated user to potentially enable escalation of privilege via network access. On un-provisioned systems, an authentic...

9.8CVSS9.3AI score0.01309EPSS

CVE•added 2017/11/21 2:29 p.m.•169 views

CVE-2017-5712

Buffer overflow in Active Management Technology (AMT) in Intel Manageability Engine Firmware 8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20 allows attacker with remote Admin access to the system to execute arbitrary code with AMT execution privilege.

9CVSS7.5AI score0.01885EPSS

CVE•added 2022/11/11 4:15 p.m.•132 views

CVE-2022-26845

Improper authentication in firmware for Intel(R) AMT before versions 11.8.93, 11.22.93, 11.12.93, 12.0.92, 14.1.67, 15.0.42, 16.1.25 may allow an unauthenticated user to potentially enable escalation of privilege via network access.

9.8CVSS9.7AI score0.00211EPSS

CVE•added 2020/11/12 6:15 p.m.•113 views

CVE-2020-8747

Out-of-bounds read in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable information disclosure and/or denial of service via network access.

9.1CVSS8.7AI score0.00804EPSS

CVE•added 2020/11/12 6:15 p.m.•113 views

CVE-2020-8752

Out-of-bounds write in IPv6 subsystem for Intel(R) AMT, Intel(R) ISM versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70, 14.0.45 may allow an unauthenticated user to potentially enable escalation of privileges via network access.

9.8CVSS9.5AI score0.00733EPSS

CVE•added 2022/08/18 9:15 p.m.•108 views

CVE-2022-30601

Insufficiently protected credentials for Intel(R) AMT and Intel(R) Standard Manageability may allow an unauthenticated user to potentially enable information disclosure and escalation of privilege via network access.

9.8CVSS9.3AI score0.00627EPSS

CVE•added 2019/12/18 10:15 p.m.•76 views

CVE-2019-11131

Logic issue in subsystem in Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow an unauthenticated user to potentially enable escalation of privilege via network access.

9.8CVSS9.5AI score0.00587EPSS

CVE•added 2020/06/15 2:15 p.m.•69 views

CVE-2020-0594

Out-of-bounds read in IPv6 subsystem in Intel(R) AMT and Intel(R) ISM versions before 11.8.77, 11.12.77, 11.22.77 and 12.0.64 may allow an unauthenticated user to potentially enable escalation of privilege via network access.

9.8CVSS9.4AI score0.02777EPSS

CVE•added 2019/12/18 10:15 p.m.•68 views

CVE-2019-11107

Insufficient input validation in the subsystem for Intel(R) AMT before version 12.0.45 may allow an unauthenticated user to potentially enable escalation of privilege via network access.

9.8CVSS9.5AI score0.00456EPSS

CVE•added 2020/06/15 2:15 p.m.•57 views

CVE-2020-0595

Use after free in IPv6 subsystem in Intel(R) AMT and Intel(R) ISM versions before 11.8.77, 11.12.77, 11.22.77 and 12.0.64 may allow an unauthenticated user to potentially enable escalation of privilege via network access.

9.8CVSS9.8AI score0.02777EPSS