Converged Security And Management Engine@* Security Vulnerabilities and Issues — Converged Security And Management Engine@* CVE List

Lucene search

IntelConverged Security And Management Engine*

5 matches found

CVE•added 2019/05/17 4:29 p.m.•160 views

CVE-2019-0090

Insufficient access control vulnerability in subsystem for Intel(R) CSME before versions 11.x, 12.0.35 Intel(R) TXE 3.x, 4.x, Intel(R) Server Platform Services 3.x, 4.x, Intel(R) SPS before version SPS_E3_05.00.04.027.0 may allow an unauthenticated user to potentially enable escalation of privilege...

7.1CVSS7.3AI score0.0053EPSS

CVE•added 2019/05/17 4:29 p.m.•126 views

CVE-2019-0091

Code injection vulnerability in installer for Intel(R) CSME before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 and Intel(R) TXE 3.1.65, 4.0.15 may allow an unprivileged user to potentially enable escalation of privilege via local access.

7.8CVSS7.9AI score0.00126EPSS

CVE•added 2019/05/17 4:29 p.m.•106 views

CVE-2019-0093

Insufficient data sanitization vulnerability in HECI subsystem for Intel(R) CSME before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 and Intel(R) SPS before version SPS_E3_05.00.04.027.0 may allow a privileged user to potentially enable information disclosure via local access.

4.4CVSS5.1AI score0.0013EPSS

CVE•added 2020/11/12 6:15 p.m.•79 views

CVE-2020-8744

Improper initialization in subsystem for Intel(R) CSME versions before12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25, Intel(R) TXE versions before 4.0.30 Intel(R) SPS versions before E3_05.01.04.200 may allow a privileged user to potentially enable escalation of privilege via local access.

7.8CVSS7.5AI score0.00172EPSS

CVE•added 2020/11/12 6:15 p.m.•70 views

CVE-2020-8755

Race condition in subsystem for Intel(R) CSME versions before 12.0.70 and 14.0.45, Intel(R) SPS versions before E5_04.01.04.400 and E3_05.01.04.200 may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

6.4CVSS6.6AI score0.00067EPSS