Lucene search
+L

Intel Warns of Critical Info-Disclosure Bug in Security Engine

🗓️ 12 Nov 2019 19:07:34Reported by Tara SealsType 
threatpost
 threatpost
🔗 threatpost.com👁 115 Views

Intel Warns of Critical Info-Disclosure Bug in CSM

Related
Refs
ReporterTitlePublishedViews
Family
0day.today
Magento 2.4.0 / 2.3.5p1 (and earlier) Arbitrary Code Execution 0day Exploit
24 Mar 202100:00
zdt
ATTACKERKB
CVE-2020-24407
15 Oct 202023:00
attackerkb
BDU FSTEC
The vulnerabilities of Intel Converged Security and Manageability Engine (CSME) and Intel Trusted Execution Engine (TXE) involve buffer overflows in dynamic memory, which allow attackers to expose sensitive information, cause system failures, or gain elevated privileges.
13 Dec 201900:00
bdu_fstec
BDU FSTEC
The vulnerability of Intel Active Management Technology’s microprogramming software, related to insufficient validation of input data, allows attackers to execute cross-site scripting (XSS) attacks.
13 Dec 201900:00
bdu_fstec
BDU FSTEC
The vulnerability of the driver for the hardware abstraction layer of the MEinfo utility lies in the Microprogramming Software Intel Converged Security and Manageability Engine (CSME), the Microprogramming Software Intel Trusted Execution Engine (TXE), the Intel-SA-00086 Detection Tool, and the INTEL-SA-00125 Detection Tool. This vulnerability allows attackers to enhance their privileges.
13 Dec 201900:00
bdu_fstec
BDU FSTEC
The vulnerability of Intel Converged Security and Manageability Engine’s microprogramming software, related to a logical error, allows attackers to escalate their privileges and expose sensitive information.
13 Dec 201900:00
bdu_fstec
BDU FSTEC
The vulnerability of Intel Active Management Technology’s microprogramming software arises from insufficient testing of input data, allowing attackers to exploit this weakness to gain increased privileges.
13 Dec 201900:00
bdu_fstec
BDU FSTEC
The vulnerability of Intel Active Management Technology’s microprogramming software arises from insufficient testing of input data, allowing attackers to exploit this weakness to gain increased privileges.
13 Dec 201900:00
bdu_fstec
BDU FSTEC
The vulnerability of the MEinfo utility in Intel’s Converged Security and Manageability Engine (CSME) and Intel’s Trusted Execution Engine (TXE) allows a attacker to enhance their privileges.
13 Dec 201900:00
bdu_fstec
BDU FSTEC
The vulnerability of the embedded microcontroller’s consumer driver, Intel Management Engine, and the microprogramming software Intel Trusted Execution Engine (TXE), allows a perpetrator to enhance their privileges.
13 Dec 201900:00
bdu_fstec
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation