Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
intel trusted execution engine firmware vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2020-0597
Out-of-bounds read in IPv6 subsystem in Intel(R) AMT and Intel(R) ISM versions prior to 14.0.33 may allow an unauthenticated user to potentially enable denial of service via network access.
Intel Software Manager
Intel Active Management Technology Firmware
6.7
CVSSv3
CVE-2019-11087
Insufficient input validation in the subsystem for Intel(R) CSME prior to 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; Intel(R) TXE prior to 3.1.70 and 4.0.20 may allow a privileged user to potentially enable escalation of privilege, information disclosure or denial...
Intel Trusted Execution Engine Firmware
Intel Converged Security Management Engine Firmware
7.8
CVSSv3
CVE-2019-11097
Improper directory permissions in the installer for Intel(R) Management Engine Consumer Driver for Windows prior to 11.8.70, 11.11.70, 11.22.70, 12.0.45,13.0.10 and 14.0.10; Intel(R) TXE prior to 3.1.70 and 4.0.20 may allow an authenticated user to potentially enable escalation o...
Intel Trusted Execution Engine Firmware
4.4
CVSSv3
CVE-2019-11101
Insufficient input validation in the subsystem for Intel(R) CSME prior to 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; Intel(R) TXE prior to 3.1.70 and 4.0.20 may allow a privileged user to potentially enable information disclosure via local access.
Intel Trusted Execution Engine Firmware
Intel Converged Security Management Engine Firmware
6.7
CVSSv3
CVE-2019-11110
Authentication bypass in the subsystem for Intel(R) CSME prior to 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; Intel(R) TXE prior to 3.1.70 and 4.0.20 may allow a privileged user to potentially enable escalation of privilege via local access.
Intel Trusted Execution Engine Firmware
Intel Converged Security Management Engine Firmware
4.4
CVSSv3
CVE-2019-0168
Insufficient input validation in the subsystem for Intel(R) CSME prior to 11.8.70, 12.0.45 and 13.0.10; Intel(R) TXE prior to 3.1.70 and 4.0.20 may allow a privileged user to potentially enable information disclosure via local access.
Intel Trusted Execution Engine Firmware
Intel Converged Security Management Engine Firmware
8.8
CVSSv3
CVE-2019-0169
Heap overflow in subsystem in Intel(R) CSME prior to 11.8.70, 11.11.70, 11.22.70, 12.0.45; Intel(R) TXE prior to 3.1.70 and 4.0.20 may allow an unauthenticated user to potentially enable escalation of privileges, information disclosure or denial of service via adjacent access.
Intel Trusted Execution Engine Firmware
Intel Converged Security Management Engine Firmware
5.9
CVSSv3
CVE-2019-11090
Cryptographic timing conditions in the subsystem for Intel(R) PTT prior to 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.0 and 14.0.10; Intel(R) TXE 3.1.70 and 4.0.20; Intel(R) SPS prior to SPS_E5_04.01.04.305.0, SPS_SoC-X_04.00.04.108.0, SPS_SoC-A_04.00.04.191.0, SPS_E3_04.01.04.08...
Intel Server Platform Services Firmware
Intel Trusted Execution Engine Firmware
Intel Platform Trust Technology Firmware
1 Github repository
1 Article
7.8
CVSSv3
CVE-2019-11104
Insufficient input validation in MEInfo software for Intel(R) CSME prior to 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; Intel(R) TXE prior to 3.1.70 and 4.0.20 may allow an authenticated user to potentially enable escalation of privilege via local access.
Intel Trusted Execution Engine Firmware
Intel Converged Security Management Engine Firmware
6.7
CVSSv3
CVE-2019-11106
Insufficient session validation in the subsystem for Intel(R) CSME prior to 11.8.70, 12.0.45, 13.0.10 and 14.0.10; Intel(R) TXE prior to 3.1.70 and 4.0.20 may allow a privileged user to potentially enable escalation of privilege via local access.
Intel Trusted Execution Engine Firmware
Intel Converged Security Management Engine Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »