Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
intel trusted execution technology vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv2
CVE-2020-12297
Improper access control in Installer for Intel(R) CSME Driver for Windows versions prior to 11.8.80, 11.12.80, 11.22.80, 12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25, Intel TXE 3.1.80, 4.0.30 may allow an authenticated user to potentially enable escalation of privileges via lo...
Intel Converged Security And Manageability Engine
Intel Trusted Execution Technology 3.1.80
Intel Trusted Execution Technology 4.0.30
4.6
CVSSv2
CVE-2020-12303
Use after free in DAL subsystem for Intel(R) CSME versions prior to 11.8.80, 11.12.80, 11.22.80, 12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25, Intel(R) TXE 3.1.80, 4.0.30 may allow an authenticated user to potentially enable escalation of privileges via local access.
Intel Converged Security And Manageability Engine
Intel Trusted Execution Technology 3.1.80
Intel Trusted Execution Technology 4.0.30
7.6
CVSSv2
CVE-2009-0066
Multiple unspecified vulnerabilities in Intel system software for Trusted Execution Technology (TXT) allow malicious users to bypass intended loader integrity protections, as demonstrated by exploitation of tboot. NOTE: as of 20090107, the only disclosure is a vague pre-advisory ...
Intel Trusted Execution Technology Nil
7.2
CVSSv2
CVE-2019-0091
Code injection vulnerability in installer for Intel(R) CSME prior to 11.8.65, 11.11.65, 11.22.65, 12.0.35 and Intel(R) TXE 3.1.65, 4.0.15 may allow an unprivileged user to potentially enable escalation of privilege via local access.
Intel Converged Security And Management Engine
Intel Trusted Execution Technology
2.1
CVSSv2
CVE-2020-8751
Insufficient control flow management in subsystem for Intel(R) CSME versions prior to 11.8.80, Intel(R) TXE versions prior to 3.1.80 may allow an unauthenticated user to potentially enable information disclosure via physical access.
Intel Converged Security And Manageability Engine
Intel Trusted Execution Technology
4.6
CVSSv2
CVE-2020-8705
Insecure default initialization of resource in Intel(R) Boot Guard in Intel(R) CSME versions prior to 11.8.80, 11.12.80, 11.22.80, 12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25, Intel(R) TXE versions prior to 3.1.80 and 4.0.30, Intel(R) SPS versions before E5_04.01.04.400, E3_0...
Intel Converged Security And Manageability Engine
Intel Trusted Execution Technology 3.1.80
Intel Trusted Execution Technology 4.0.30
Intel Server Platform Services Sps E3 04.01.04.200
Intel Server Platform Services Sps E5 04.01.04.400
Intel Server Platform Services Sps Soc-a 04.00.04.300
Intel Server Platform Services Sps Soc-x 04.00.04.200
4.3
CVSSv2
CVE-2019-11090
Cryptographic timing conditions in the subsystem for Intel(R) PTT prior to 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.0 and 14.0.10; Intel(R) TXE 3.1.70 and 4.0.20; Intel(R) SPS prior to SPS_E5_04.01.04.305.0, SPS_SoC-X_04.00.04.108.0, SPS_SoC-A_04.00.04.191.0, SPS_E3_04.01.04.08...
Intel Platform Trust Technology Firmware
Intel Server Platform Services Firmware
Intel Trusted Execution Engine Firmware
1 Github repository
1 Article
4.6
CVSSv2
CVE-2020-8750
Use after free in Kernel Mode Driver for Intel(R) TXE versions prior to 3.1.80 and 4.0.30 may allow an authenticated user to potentially enable escalation of privilege via local access.
Intel Trusted Execution Engine
2.1
CVSSv2
CVE-2018-12188
Insufficient input validation in Intel CSME prior to 11.8.60, 11.11.60, 11.22.60 or 12.0.20 or Intel TXE before version 3.1.60 or 4.0.10 may allow an unauthenticated user to potentially modify data via physical access.
Intel Converged Security Management Engine Firmware
Intel Trusted Execution Engine Firmware
2.1
CVSSv2
CVE-2018-12189
Unhandled exception in Content Protection subsystem in Intel CSME prior to 11.8.60, 11.11.60, 11.22.60 or 12.0.20 or Intel TXE prior to 3.1.60 or 4.0.10 may allow privileged user to potentially modify data via local access.
Intel Trusted Execution Engine Firmware
Intel Converged Security Management Engine Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »