Trusted Execution Engine Firmware Security Vulnerabilities and Issues — Trusted Execution Engine Firmware CVE List

Lucene search

IntelTrusted Execution Engine Firmware

5 matches found

CVE•added 2019/12/18 10:15 p.m.•81 views

CVE-2019-11102

Insufficient input validation in Intel(R) DAL software for Intel(R) CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable information disclosure via local access.

4.4CVSS4.9AI score0.00141EPSS

CVE•added 2019/12/18 10:15 p.m.•80 views

CVE-2019-0168

Insufficient input validation in the subsystem for Intel(R) CSME before versions 11.8.70, 12.0.45 and 13.0.10; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable information disclosure via local access.

4.4CVSS4.9AI score0.00141EPSS

CVE•added 2019/12/18 10:15 p.m.•75 views

CVE-2019-11101

Insufficient input validation in the subsystem for Intel(R) CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable information disclosure via local access.

4.4CVSS4.9AI score0.00147EPSS

CVE•added 2019/03/14 8:29 p.m.•42 views

CVE-2018-12189

Unhandled exception in Content Protection subsystem in Intel CSME before versions 11.8.60, 11.11.60, 11.22.60 or 12.0.20 or Intel TXE before 3.1.60 or 4.0.10 may allow privileged user to potentially modify data via local access.

4.4CVSS5.2AI score0.0012EPSS

CVE•added 2019/03/14 8:29 p.m.•39 views

CVE-2018-12188

Insufficient input validation in Intel CSME before versions 11.8.60, 11.11.60, 11.22.60 or 12.0.20 or Intel TXE before version 3.1.60 or 4.0.10 may allow an unauthenticated user to potentially modify data via physical access.

4.6CVSS5.5AI score0.00114EPSS