Skip to main content

Manageability Engine Firmware

8 CVEs product

Monthly

CVE-2018-3658 MEDIUM PATCH This Month

Multiple memory leaks in Intel AMT in Intel CSME firmware versions before 12.0.5 may allow an unauthenticated user with Intel AMT provisioned to potentially cause a partial denial of service via. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Intel Denial Of Service Simatic Field Pg M5 Firmware Simatic Ipc427E Firmware Simatic Ipc477E Firmware +11
NVD
CVSS 3.1
5.3
EPSS
3.3%
CVE-2018-3657 MEDIUM PATCH This Month

Multiple buffer overflows in Intel AMT in Intel CSME firmware versions before version 12.0.5 may allow a privileged user to potentially execute arbitrary code with Intel AMT execution privilege via. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity.

Intel RCE Buffer Overflow Simatic Field Pg M5 Firmware Simatic Ipc427E Firmware +12
NVD
CVSS 3.1
6.7
EPSS
0.6%
CVE-2018-3616 MEDIUM PATCH This Month

Bleichenbacher-style side channel vulnerability in TLS implementation in Intel Active Management Technology before 12.0.5 may allow an unauthenticated user to potentially obtain the TLS session key. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required.

Intel Information Disclosure Converged Security Management Engine Firmware Active Management Technology Firmware Manageability Engine Firmware +11
NVD
CVSS 3.1
5.9
EPSS
2.4%
CVE-2017-5712 HIGH This Week

Buffer overflow in Active Management Technology (AMT) in Intel Manageability Engine Firmware 8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20 allows attacker with remote Admin access to the system to. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Buffer Overflow RCE Intel Manageability Engine Firmware Active Management Technology Firmware +196
NVD
CVSS 3.1
7.2
EPSS
2.5%
CVE-2017-5711 HIGH This Week

Multiple buffer overflows in Active Management Technology (AMT) in Intel Manageability Engine Firmware 8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20 allow attacker with local access to the system to. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Intel Manageability Engine Firmware Active Management Technology Firmware +196
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2017-5708 HIGH This Week

Multiple privilege escalations in kernel in Intel Manageability Engine Firmware 11.0/11.5/11.6/11.7/11.10/11.20 allow unauthorized process to access privileged content via unspecified vector. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Intel Authentication Bypass Manageability Engine Firmware
NVD
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-5705 HIGH This Week

Multiple buffer overflows in kernel in Intel Manageability Engine Firmware 11.0/11.5/11.6/11.7/11.10/11.20 allow attacker with local access to the system to execute arbitrary code. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Intel Manageability Engine Firmware
NVD
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-5698 MEDIUM This Month

Intel Active Management Technology, Intel Standard Manageability, and Intel Small Business Technology firmware versions 11.0.25.3001 and 11.0.26.3000 anti-rollback will not prevent upgrading to. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. No vendor patch available.

Intel Information Disclosure Active Management Technology Firmware Manageability Engine Firmware Small Business Technology Firmware
NVD
CVSS 3.1
4.4
EPSS
0.1%
EPSS 3% CVSS 5.3
MEDIUM PATCH This Month

Multiple memory leaks in Intel AMT in Intel CSME firmware versions before 12.0.5 may allow an unauthenticated user with Intel AMT provisioned to potentially cause a partial denial of service via. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Intel Denial Of Service Simatic Field Pg M5 Firmware +13
NVD
EPSS 1% CVSS 6.7
MEDIUM PATCH This Month

Multiple buffer overflows in Intel AMT in Intel CSME firmware versions before version 12.0.5 may allow a privileged user to potentially execute arbitrary code with Intel AMT execution privilege via. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity.

Intel RCE Buffer Overflow +14
NVD
EPSS 2% CVSS 5.9
MEDIUM PATCH This Month

Bleichenbacher-style side channel vulnerability in TLS implementation in Intel Active Management Technology before 12.0.5 may allow an unauthenticated user to potentially obtain the TLS session key. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required.

Intel Information Disclosure Converged Security Management Engine Firmware +13
NVD
EPSS 2% CVSS 7.2
HIGH This Week

Buffer overflow in Active Management Technology (AMT) in Intel Manageability Engine Firmware 8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20 allows attacker with remote Admin access to the system to. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Buffer Overflow RCE Intel +198
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Multiple buffer overflows in Active Management Technology (AMT) in Intel Manageability Engine Firmware 8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20 allow attacker with local access to the system to. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Intel +198
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Multiple privilege escalations in kernel in Intel Manageability Engine Firmware 11.0/11.5/11.6/11.7/11.10/11.20 allow unauthorized process to access privileged content via unspecified vector. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Intel Authentication Bypass Manageability Engine Firmware
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Multiple buffer overflows in kernel in Intel Manageability Engine Firmware 11.0/11.5/11.6/11.7/11.10/11.20 allow attacker with local access to the system to execute arbitrary code. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Intel +1
NVD
EPSS 0% CVSS 4.4
MEDIUM This Month

Intel Active Management Technology, Intel Standard Manageability, and Intel Small Business Technology firmware versions 11.0.25.3001 and 11.0.26.3000 anti-rollback will not prevent upgrading to. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. No vendor patch available.

Intel Information Disclosure Active Management Technology Firmware +2
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy