Trusted Execution Engine Firmware Security Vulnerabilities and Issues — Trusted Execution Engine Firmware CVE List

Lucene search

IntelTrusted Execution Engine Firmware

5 matches found

CVE•added 2020/06/15 2:15 p.m.•56 views

CVE-2020-0536

Improper input validation in the DAL subsystem for Intel(R) CSME versions before 11.8.77, 11.12.77, 11.22.77, 12.0.64, 13.0.32,14.0.33 and Intel(R) TXE versions before 3.1.75 and 4.0.25 may allow an unauthenticated user to potentially enable information disclosure via network access.

7.5CVSS7.2AI score0.00897EPSS

CVE•added 2020/06/15 2:15 p.m.•56 views

CVE-2020-0566

Improper Access Control in subsystem for Intel(R) TXE versions before 3.175 and 4.0.25 may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

6.8CVSS7.2AI score0.00225EPSS

CVE•added 2020/06/15 2:15 p.m.•55 views

CVE-2020-0539

Path traversal in subsystem for Intel(R) DAL software for Intel(R) CSME versions before 11.8.77, 11.12.77, 11.22.77, 12.0.64, 13.0.32, 14.0.33 and Intel(R) TXE versions before 3.1.75, 4.0.25 may allow an unprivileged user to potentially enable denial of service via local access.

5.5CVSS6AI score0.00131EPSS

CVE•added 2020/11/12 6:15 p.m.•49 views

CVE-2020-12355

Authentication bypass by capture-replay in RPMB protocol message authentication subsystem in Intel(R) TXE versions before 4.0.30 may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

6.8CVSS7AI score0.00098EPSS

CVE•added 2020/11/12 6:15 p.m.•47 views

CVE-2020-8750

Use after free in Kernel Mode Driver for Intel(R) TXE versions before 3.1.80 and 4.0.30 may allow an authenticated user to potentially enable escalation of privilege via local access.

7.8CVSS8AI score0.00059EPSS