4 matches found
CVE-2021-0126
This CVE (CVE-2021-0126) affects Intel® Manageability Commander before version 2.2. The root cause is improper input validation, which could allow an authenticated user to escalate privileges via adjacent access. The issue is documented with CVSS:3.1 base score 8.0 (HIGH) in the connected sources...
CVE-2022-26341
CVE-2022-26341 involves insufficiently protected credentials in Intel(R) AMT SDK prior to 16.0.4.1, Intel(R) EMA prior to 1.7.1, and Intel(R) MC prior to 2.3.2, potentially enabling an authenticated user to escalate privileges via network access. Affected components and versions are explicitly li...
CVE-2022-29887
Intel® Manageability Commander software is affected by CVE-2022-29887: a Cross-site Scripting (XSS) vulnerability in versions prior to 2.3 that may allow an unauthenticated attacker to escalate privileges via network access. The issue impacts Intel MC software and is exploitable over the network ...
CVE-2022-41610
CVE-2022-41610 affects Intel EMA Configuration Tool (pre-1.0.4) and Intel MC (pre-2.4). The issue is improper authorization that could allow an authenticated local user to cause a denial of service. Exploitation details are not provided beyond this, and no remote/vector specifics are given in the...