Heap overflow in subsystem in Intel(R) CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow an unauthenticated user to potentially enable escalation of privileges, information disclosure or denial of service via adjacent access.
2019-12-18T22:15:11.940
2024-11-21T04:16:23.887
Modified
CVSSv3.1: 8.8 (HIGH)
AV:A/AC:L/Au:N/C:P/I:P/A:P
6.5
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | intel | converged_security_management_engine_firmware | < 11.8.70 | Yes |
| Operating System | intel | converged_security_management_engine_firmware | < 11.11.70 | Yes |
| Operating System | intel | converged_security_management_engine_firmware | < 11.22.70 | Yes |
| Operating System | intel | converged_security_management_engine_firmware | < 12.0.45 | Yes |
| Operating System | intel | trusted_execution_engine_firmware | < 3.1.70 | Yes |
| Operating System | intel | trusted_execution_engine_firmware | < 4.0.20 | Yes |