8 matches found
CVE-2022-38056
CVE-2022-38056 affects Intel® EMA software prior to version 1.8.1.0. The Red Hat and Intel sources confirm a vulnerability due to improper neutralization that could enable privilege escalation by a privileged user over the network. Affected product: Intel® EMA (Endpoint Management Assistant). Roo...
CVE-2020-12315
The CVE-2020-12315 issue affects Intel EMA (Endpoint Management Assistant) prior to version 1.3.3. It is a path traversal vulnerability that could allow an unauthenticated user to escalate privileges via network access. Intel’s advisory confirms CVE-2020-12315 and notes mitigation by upgrading EM...
CVE-2022-26341
CVE-2022-26341 involves insufficiently protected credentials in Intel(R) AMT SDK prior to 16.0.4.1, Intel(R) EMA prior to 1.7.1, and Intel(R) MC prior to 2.3.2, potentially enabling an authenticated user to escalate privileges via network access. Affected components and versions are explicitly li...
CVE-2020-12316
Intel EMA before version 1.3.3 is affected by CVE-2020-12316, where insufficiently protected credentials may allow an authorized user to disclose information via local access. The issue is documented across multiple sources (NVD, Red Hat, CVE list, and Intel advisory). Affected product: Intel(R) ...
CVE-2022-30297
Intel EMA software (Intel® Endpoint Management Assistant) before version 1.8.0 has a cross-site scripting vulnerability that could allow a privileged user to escalate privileges via local access. Affected product: Intel EMA software prior to 1.8.0. Root cause: XSS in the web-facing component of E...
CVE-2022-45128
Intel EMA (Endpoint Management Assistant) software prior to version 1.9.0.0 is affected by CVE-2022-45128 due to improper authorization. An authenticated local attacker could potentially cause a denial-of-service condition, as indicated by availability impact: HIGH, with CVSS v3.1 metrics showing...
CVE-2024-32483
CVE-2024-32483 affects Intel® EMA software before version 1.13.1.0. The issue is improper access control, potentially enabling privilege escalation for an authenticated user via local access. CVSS v3.1 base score 8.2 (LOCAL, LOW complexity, PR:L, UI:R) and CVSS v4.0 base score 7.0 reflect confide...
CVE-2021-0013
CVE-2021-0013 : Affected product is Intel® Endpoint Management Assistant (EMA) prior to version 1.5.0. The root cause is improper input validation in EMA, which may allow an unauthenticated user to trigger a denial-of-service condition over network access. Documented impact is a Partial/High avai...