Server Platform Services@* Security Vulnerabilities and Issues — Server Platform Services@* CVE List

Lucene search

IntelServer Platform Services*

12 matches found

CVE•added 2019/05/17 4:29 p.m.•160 views

CVE-2019-0090

Insufficient access control vulnerability in subsystem for Intel(R) CSME before versions 11.x, 12.0.35 Intel(R) TXE 3.x, 4.x, Intel(R) Server Platform Services 3.x, 4.x, Intel(R) SPS before version SPS_E3_05.00.04.027.0 may allow an unauthenticated user to potentially enable escalation of privilege...

7.1CVSS7.3AI score0.0053EPSS

CVE•added 2019/05/17 4:29 p.m.•106 views

CVE-2019-0089

Improper data sanitization vulnerability in subsystem in Intel(R) SPS before versions SPS_E5_04.00.04.381.0, SPS_E3_04.01.04.054.0, SPS_SoC-A_04.00.04.181.0, and SPS_SoC-X_04.00.04.086.0 may allow a privileged user to potentially enable escalation of privilege via local access.

6.7CVSS6.9AI score0.00133EPSS

CVE•added 2020/11/12 6:15 p.m.•79 views

CVE-2020-8744

Improper initialization in subsystem for Intel(R) CSME versions before12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25, Intel(R) TXE versions before 4.0.30 Intel(R) SPS versions before E3_05.01.04.200 may allow a privileged user to potentially enable escalation of privilege via local access.

7.8CVSS7.5AI score0.00172EPSS

CVE•added 2020/11/12 6:15 p.m.•70 views

CVE-2020-8755

Race condition in subsystem for Intel(R) CSME versions before 12.0.70 and 14.0.45, Intel(R) SPS versions before E5_04.01.04.400 and E3_05.01.04.200 may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

6.4CVSS6.6AI score0.00067EPSS

CVE•added 2020/06/15 2:15 p.m.•59 views

CVE-2020-0545

Integer overflow in subsystem for Intel(R) CSME versions before 11.8.77, 11.12.77, 11.22.77 and Intel(R) TXE versions before 3.1.75, 4.0.25 and Intel(R) Server Platform Services (SPS) versions before SPS_E5_04.01.04.380.0, SPS_SoC-X_04.00.04.128.0, SPS_SoC-A_04.00.04.211.0, SPS_E3_04.01.04.109.0, S...

4.4CVSS5.6AI score0.00111EPSS

CVE•added 2021/06/09 8:15 p.m.•49 views

CVE-2021-0051

Improper input validation in the Intel(R) SPS versions before SPS_E5_04.04.04.023.0, SPS_E5_04.04.03.228.0 or SPS_SoC-A_05.00.03.098.0 may allow a privileged user to potentially enable denial of service via local access.

4.4CVSS4.4AI score0.00049EPSS

CVE•added 2017/11/21 2:29 p.m.•48 views

CVE-2017-5706

Multiple buffer overflows in kernel in Intel Server Platform Services Firmware 4.0 allow attacker with local access to the system to execute arbitrary code.

7.8CVSS7.3AI score0.00132EPSS

CVE•added 2020/06/15 2:15 p.m.•48 views

CVE-2020-0586

Improper initialization in subsystem for Intel(R) SPS versions before SPS_E3_04.01.04.109.0 and SPS_E3_04.08.04.070.0 may allow an authenticated user to potentially enable escalation of privilege and/or denial of service via local access.

7.8CVSS7.6AI score0.00072EPSS

CVE•added 2017/11/21 2:29 p.m.•46 views

CVE-2017-5709

Multiple privilege escalations in kernel in Intel Server Platform Services Firmware 4.0 allows unauthorized process to access privileged content via unspecified vector.

7.8CVSS6.9AI score0.00096EPSS

CVE•added 2021/06/09 7:15 p.m.•46 views

CVE-2020-24509

Insufficient control flow management in subsystem in Intel(R) SPS versions before SPS_E3_05.01.04.300.0, SPS_SoC-A_05.00.03.091.0, SPS_E5_04.04.04.023.0, or SPS_E5_04.04.03.263.0 may allow a privileged user to potentially enable escalation of privilege via local access.

6.7CVSS6.5AI score0.00157EPSS

CVE•added 2023/02/16 8:15 p.m.•44 views

CVE-2022-36794

Improper condition check in some Intel(R) SPS firmware before version SPS_E3_06.00.03.300.0 may allow a privileged user to potentially enable denial of service via local access.

6CVSS4.5AI score0.00047EPSS

CVE•added 2023/02/16 8:15 p.m.•41 views

CVE-2022-36348

Active debug code in some Intel (R) SPS firmware before version SPS_E5_04.04.04.300.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

8.8CVSS7.7AI score0.00105EPSS