Active Management Technology Firmware Security Vulnerabilities and Issues — Active Management Technology Firmware CVE List

Lucene search

IntelActive Management Technology Firmware

13 matches found

CVE•added 2019/05/17 4:29 p.m.•135 views

CVE-2019-0096

Out of bound write vulnerability in subsystem for Intel(R) AMT before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 may allow an authenticated user to potentially enable escalation of privilege via adjacent network access.

8CVSS7.8AI score0.00259EPSS

CVE•added 2019/05/17 4:29 p.m.•129 views

CVE-2019-0094

Insufficient input validation vulnerability in subsystem for Intel(R) AMT before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 may allow an unauthenticated user to potentially enable denial of service via adjacent network access.

4.3CVSS5.5AI score0.00186EPSS

CVE•added 2019/05/17 4:29 p.m.•124 views

CVE-2019-0092

6.8CVSS7.1AI score0.0014EPSS

CVE•added 2019/05/17 4:29 p.m.•120 views

CVE-2019-0097

Insufficient input validation vulnerability in subsystem for Intel(R) AMT before version 12.0.35 may allow a privileged user to potentially enable denial of service via network access.

4.9CVSS5.6AI score0.00359EPSS

CVE•added 2019/12/18 10:15 p.m.•89 views

CVE-2019-11088

Insufficient input validation in subsystem in Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

8.8CVSS9.2AI score0.00224EPSS

CVE•added 2019/12/18 10:15 p.m.•85 views

CVE-2019-11086

Insufficient input validation in subsystem for Intel(R) AMT before version 12.0.45 may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

6.8CVSS8AI score0.0014EPSS

CVE•added 2019/12/18 10:15 p.m.•84 views

CVE-2019-0131

Insufficient input validation in subsystem in Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow an unauthenticated user to potentially enable denial of service or information disclosure via adjacent access.

8.1CVSS8.3AI score0.0021EPSS

CVE•added 2019/12/18 10:15 p.m.•83 views

CVE-2019-11132

Cross site scripting in subsystem in Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow a privileged user to potentially enable escalation of privilege via network access.

8.4CVSS8.8AI score0.00491EPSS

CVE•added 2019/12/18 10:15 p.m.•78 views

CVE-2019-0166

Insufficient input validation in the subsystem for Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow an unauthenticated user to potentially enable information disclosure via network access.

7.5CVSS8AI score0.00928EPSS

CVE•added 2019/12/18 10:15 p.m.•76 views

CVE-2019-11131

Logic issue in subsystem in Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow an unauthenticated user to potentially enable escalation of privilege via network access.

9.8CVSS9.5AI score0.00587EPSS

CVE•added 2019/12/18 10:15 p.m.•68 views

CVE-2019-11107

Insufficient input validation in the subsystem for Intel(R) AMT before version 12.0.45 may allow an unauthenticated user to potentially enable escalation of privilege via network access.

9.8CVSS9.5AI score0.00456EPSS

CVE•added 2019/12/18 10:15 p.m.•65 views

CVE-2019-11100

4.6CVSS6.1AI score0.00277EPSS

CVE•added 2019/03/14 8:29 p.m.•45 views

CVE-2018-12187

Insufficient input validation in Intel(R) Active Management Technology (Intel(R) AMT) before version 11.8.60, 11.11.60, 11.22.60 or 12.0.20 may allow an unauthenticated user to potentially cause a denial of service via network access.

7.5CVSS7.2AI score0.00394EPSS