Intel

Converged Security And Manageability Engine

13 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.7

CVE-2023-28389

  • EPSS 0.03%
  • Published 14.03.2024 17:15:50
  • Last modified 21.11.2024 07:54:58

Incorrect default permissions in some Intel(R) CSME installer software before version 2328.5.5.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

6.5

CVE-2022-26047

  • EPSS 0.05%
  • Published 11.11.2022 16:15:12
  • Last modified 29.01.2025 21:15:13

Improper input validation for some Intel(R) PROSet/Wireless WiFi, Intel vPro(R) CSME WiFi and Killer(TM) WiFi products may allow unauthenticated user to potentially enable denial of service via local access.

6.8

CVE-2020-24516

  • EPSS 0.08%
  • Published 09.06.2021 19:15:09
  • Last modified 21.11.2024 05:14:57

Modification of assumed-immutable data in subsystem in Intel(R) CSME versions before 13.0.47, 13.30.17, 14.1.53, 14.5.32, 15.0.22 may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

6.7

CVE-2020-8703

  • EPSS 0.24%
  • Published 09.06.2021 19:15:09
  • Last modified 21.11.2024 05:39:17

Improper buffer restrictions in a subsystem in the Intel(R) CSME versions before 11.8.86, 11.12.86, 11.22.86, 12.0.81, 13.0.47, 13.30.17, 14.1.53, 14.5.32 and 15.0.22 may allow a privileged user to potentially enable escalation of privilege via local...

4.4

CVE-2020-24506

  • EPSS 0.15%
  • Published 09.06.2021 19:15:08
  • Last modified 21.11.2024 05:14:56

Out of bound read in a subsystem in the Intel(R) CSME versions before 12.0.81, 13.0.47, 13.30.17, 14.1.53 and 14.5.32 may allow a privileged user to potentially enable information disclosure via local access.

4.4

CVE-2020-24507

  • EPSS 0.12%
  • Published 09.06.2021 19:15:08
  • Last modified 21.11.2024 05:14:56

Improper initialization in a subsystem in the Intel(R) CSME versions before 11.8.86, 11.12.86, 11.22.86, 12.0.81, 13.0.47, 13.30.17, 14.1.53, 14.5.32, 13.50.11 and 15.0.22 may allow a privileged user to potentially enable information disclosure via l...

6.7

CVE-2020-8756

  • EPSS 0.06%
  • Published 12.11.2020 18:15:18
  • Last modified 21.11.2024 05:39:23

Improper input validation in subsystem for Intel(R) CSME versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow a privileged user to potentially enable escalation of privilege via local access.

4.6

CVE-2020-8761

  • EPSS 0.1%
  • Published 12.11.2020 18:15:18
  • Last modified 21.11.2024 05:39:23

Inadequate encryption strength in subsystem for Intel(R) CSME versions before 13.0.40 and 13.30.10 may allow an unauthenticated user to potentially enable information disclosure via physical access.

6.8

CVE-2020-8745

  • EPSS 0.36%
  • Published 12.11.2020 18:15:17
  • Last modified 28.03.2025 15:19:45

Insufficient control flow management in subsystem for Intel(R) CSME versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25 , Intel(R) TXE versions before 3.1.80 and 4.0.30 may allow an unauthenticated user to pot...

4.6

CVE-2020-8751

  • EPSS 0.08%
  • Published 12.11.2020 18:15:17
  • Last modified 21.11.2024 05:39:22

Insufficient control flow management in subsystem for Intel(R) CSME versions before 11.8.80, Intel(R) TXE versions before 3.1.80 may allow an unauthenticated user to potentially enable information disclosure via physical access.