Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
converged security management engine firmware vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv2
CVE-2020-8750
Use after free in Kernel Mode Driver for Intel(R) TXE versions prior to 3.1.80 and 4.0.30 may allow an authenticated user to potentially enable escalation of privilege via local access.
Intel Trusted Execution Engine
4.6
CVSSv2
CVE-2020-12354
Incorrect default permissions in Windows(R) installer in Intel(R) AMT SDK versions prior to 14.0.0.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
Intel Active Management Technology Software Development Kit
7.2
CVSSv2
CVE-2018-3632
Memory corruption in Intel Active Management Technology in Intel Converged Security Manageability Engine Firmware 6.x / 7.x / 8.x / 9.x / 10.x / 11.0 / 11.5 / 11.6 / 11.7 / 11.10 / 11.20 could be triggered by an attacker with local administrator permission on the system.
Intel Active Management Technology Firmware
8.3
CVSSv2
CVE-2018-3628
Buffer overflow in HTTP handler in Intel Active Management Technology in Intel Converged Security Manageability Engine Firmware 3.x, 4.x, 5.x, 6.x, 7.x, 8.x, 9.x, 10.x, and 11.x may allow an malicious user to execute arbitrary code via the same subnet.
Intel Active Management Technology Firmware
3.3
CVSSv2
CVE-2018-3629
Buffer overflow in event handler in Intel Active Management Technology in Intel Converged Security Manageability Engine Firmware 3.x, 4.x, 5.x, 6.x, 7.x, 8.x, 9.x, 10.x, and 11.x may allow an malicious user to cause a denial of service via the same subnet.
Intel Active Management Technology Firmware
NA
CVE-2022-38102
Improper Input validation in firmware for some Intel(R) Converged Security and Management Engine prior to 15.0.45, and 16.1.27 may allow a privileged user to potentially enable denial of service via local access.
Intel Converged Security Management Engine Firmware
4.6
CVSSv2
CVE-2020-12304
Improper access control in Installer for Intel(R) DAL SDK before version 2.1 for Windows may allow an authenticated user to potentially enable escalation of privileges via local access.
Intel Dynamic Application Loader Software Developement Kit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8