Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
intel server platform services firmware vulnerabilities and exploits
(subscribe to this query)
6.7
CVSSv3
CVE-2018-12147
Insufficient input validation in HECI subsystem in Intel(R) CSME before version 11.21.55, Intel® Server Platform Services before version 4.0 and Intel® Trusted Execution Engine Firmware before version 3.1.55 may allow a privileged user to potentially enable escalation of ...
Intel Converged Security Management Engine Firmware
Intel Server Platform Services Firmware
Intel Trusted Execution Engine Firmware
6.7
CVSSv3
CVE-2018-12190
Insufficient input validation in Intel(r) CSME subsystem prior to 11.8.60, 11.11.60, 11.22.60 or 12.0.20 or Intel(r) TXE prior to 3.1.60 or 4.0.10 may allow a privileged user to potentially enable an escalation of privilege via local access.
Intel Trusted Execution Engine Firmware
Intel Converged Security Management Engine Firmware
6.7
CVSSv3
CVE-2018-12196
Insufficient input validation in Intel(R) AMT in Intel(R) CSME before version 11.8.60, 11.11.60, 11.22.60 or 12.0.20 may allow a privileged user to potentially execute arbitrary code via local access.
Intel Converged Security Management Engine Firmware
6.5
CVSSv3
CVE-2020-8746
Integer overflow in subsystem for Intel(R) AMT versions prior to 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable denial of service via adjacent access.
Intel Active Management Technology Firmware
Netapp Cloud Backup -
6.5
CVSSv3
CVE-2020-0531
Improper input validation in Intel(R) AMT versions prior to 11.8.77, 11.12.77, 11.22.77 and 12.0.64 may allow an authenticated user to potentially enable information disclosure via network access.
Intel Active Management Technology Firmware
6.4
CVSSv3
CVE-2020-8755
Race condition in subsystem for Intel(R) CSME versions prior to 12.0.70 and 14.0.45, Intel(R) SPS versions before E5_04.01.04.400 and E3_05.01.04.200 may allow an unauthenticated user to potentially enable escalation of privilege via physical access.
Intel Converged Security And Management Engine
Intel Server Platform Services
6.2
CVSSv3
CVE-2018-12199
Buffer overflow in an OS component in Intel CSME prior to 11.8.60, 11.11.60, 11.22.60 or 12.0.20 and Intel TXE version prior to 3.1.60 or 4.0.10 may allow a privileged user to potentially execute arbitrary code via physical access.
Intel Trusted Execution Engine Firmware
Intel Converged Security Management Engine Firmware
6
CVSSv3
CVE-2018-12198
Insufficient input validation in Intel(R) Server Platform Services HECI subsystem before version SPS_E5_04.00.04.393.0 may allow privileged user to potentially cause a denial of service via local access.
Intel Server Platform Services Firmware
5.9
CVSSv3
CVE-2019-11090
Cryptographic timing conditions in the subsystem for Intel(R) PTT prior to 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.0 and 14.0.10; Intel(R) TXE 3.1.70 and 4.0.20; Intel(R) SPS prior to SPS_E5_04.01.04.305.0, SPS_SoC-X_04.00.04.108.0, SPS_SoC-A_04.00.04.191.0, SPS_E3_04.01.04.08...
Intel Platform Trust Technology Firmware
Intel Server Platform Services Firmware
Intel Trusted Execution Engine Firmware
1 Github repository
1 Article
5.6
CVSSv3
CVE-2017-5715
Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
Intel Atom C C2308
Intel Atom C C2316
Intel Atom C C2338
Intel Atom C C2350
Intel Atom C C2358
Intel Atom C C2508
Intel Atom C C2516
Intel Atom C C2518
Intel Atom C C2530
Intel Atom C C2538
Intel Atom C C2550
Intel Atom C C2558
Intel Atom C C2718
Intel Atom C C2730
Intel Atom C C2738
Intel Atom C C2750
Intel Atom C C2758
Intel Atom C C3308
Intel Atom C C3338
Intel Atom C C3508
Intel Atom C C3538
Intel Atom C C3558
1 EDB exploit
49 Github repositories
9 Articles
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
denial of service
CVE-2024-27371
CVE-2024-20405
CVE-2024-31627
CVE-2024-31625
race condition
CVE-2024-4358
cross-site scripting
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »