Converged Security Management Engine Firmware Security Vulnerabilities and Issues — Converged Security Management Engine Firmware CVE List

Lucene search

IntelConverged Security Management Engine Firmware

4 matches found

CVE•added 2018/09/12 7:29 p.m.•93 views

CVE-2018-3616

Bleichenbacher-style side channel vulnerability in TLS implementation in Intel Active Management Technology before 12.0.5 may allow an unauthenticated user to potentially obtain the TLS session key via the network.

5.9CVSS5.9AI score0.01611EPSS

CVE•added 2018/09/12 7:29 p.m.•75 views

CVE-2018-3658

Multiple memory leaks in Intel AMT in Intel CSME firmware versions before 12.0.5 may allow an unauthenticated user with Intel AMT provisioned to potentially cause a partial denial of service via network access.

5.3CVSS5.4AI score0.01172EPSS

CVE•added 2020/06/15 2:15 p.m.•55 views

CVE-2020-0539

Path traversal in subsystem for Intel(R) DAL software for Intel(R) CSME versions before 11.8.77, 11.12.77, 11.22.77, 12.0.64, 13.0.32, 14.0.33 and Intel(R) TXE versions before 3.1.75, 4.0.25 may allow an unprivileged user to potentially enable denial of service via local access.

5.5CVSS6AI score0.00131EPSS

CVE•added 2024/08/14 2:15 p.m.•35 views

CVE-2023-40067

Unchecked return value in firmware for some Intel(R) CSME may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

5.7CVSS7.4AI score0.00041EPSS