Published: 18/12/2019 Updated: 02/01/2020

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 409

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

Subscribe to Intel-sa-00125 Detection Tool

Insufficient access control in hardware abstraction driver for MEInfo software for Intel(R) CSME prior to 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.0, 14.0.10; TXEInfo software for Intel(R) TXE prior to 3.1.70 and 4.0.20; INTEL-SA-00086 Detection Tool version 1.2.7.0 or before; INTEL-SA-00125 Detection Tool version 1.0.45.0 or before may allow an authenticated user to potentially enable escalation of privilege via local access.

Vulnerable Product	Search on Vulmon	Subscribe to Product
intel intel-sa-00125 detection tool
intel sa-00086 detection tool
intel converged security management engine firmware
intel trusted execution engine firmware

Multiple security vulnerabilities have been identified by Intel Intel is releasing updates for Intel® CSME, Server Platform Services, TXE, Intel® AMT and Intel® DAL to mitigate these vulnerabilities ...

NVD-CWE-Other https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00241.html https://nvd.nist.gov https://support.hp.com//us-en/document/c06501966

CVE-2019-11147

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect