7 matches found
CVE-2019-0091
CVE-2019-0091 is a code-injection vulnerability in the installer component of Intel CSME (CSME) and TXE, allowing a locally logged-in unprivileged user to escalate privileges. Affected: Intel CSME before 11.8.65, 11.11.65, 11.22.65, 12.0.35 and Intel TXE 3.1.65, 4.0.15. Exploitation context is lo...
CVE-2020-12297
CVE-2020-12297 is an Intel CSME/AMT/TXE-related vulnerability described as improper access control in the Installer for Windows drivers, which may allow an authenticated local user to escalate privileges. Affected components include Intel CSME/AMT, TXE, SPS and related DLLs, with affected Windows...
CVE-2020-12303
The CVE-2020-12303 entry concerns a use-after-free in the Intel CSME/DAL subsystem. Affected components include Intel CSME, TXE and DAL (and related SPS/ISM) with versions before 11.8.80/11.12.80/11.22.80/12.0.70/13.0.40/13.30.10/14.0.45/14.5.25 (CSME), and TXE before 3.1.80 or 4.0.30. The issue ...
CVE-2020-8745
CVE-2020-8745 is a vulnerability in Intel CSME/TXE subsystems with insufficient control flow management in the subsystem, affecting Intel CSME/AMT/SPS firmware before specific versions (e.g., 11.8.x/11.12.x/11.22.x/12.0.x/13.0.x/14.x branches and TXE before 3.1.80 and 4.0.30). The issue could all...
CVE-2020-8705
CVE-2020-8705 concerns insecure default initialization of a resource in Intel CSME, affecting Intel CSME/AMT/TXE/SPS components. The vulnerability may allow an unauthenticated user to escalate privileges via physical access. Affected versions include Intel CSME before 11.8.82/11.12.82/11.22.82, S...
CVE-2020-8751
CVE-2020-8751 is an Intel CSME/TXE/AMT family issue due to insufficient control flow management in subsystems, potentially enabling information disclosure or privilege escalation with physical/local access. Affected are Intel CSME/AMT/SPS/ISM/DAL components prior to updated firmware versions (e.g...
CVE-2009-0066
Technical details for CVE-2009-0066 are not publicly available in the provided documents; no concrete information on affected products, components, root cause, impact, or remediation is present. Monitor for updates.