Intel Active_management_technology_firmware
54 CVEs affecting Intel Active_management_technology_firmware. Latest disclosed: 2022-11-11. Critical: 9, High: 23.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2022-30601 | Critical | 9.8 | 2022-08-18 | Insufficiently protected credentials for Intel(R) AMT and Intel(R) Standard Manageability may allow an unauthenticated user to potentially enable information d… |
CVE-2020-8752 | Critical | 9.8 | 2020-11-12 | Out-of-bounds write in IPv6 subsystem for Intel(R) AMT, Intel(R) ISM versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70, 14.0.45 may allow an unauthenticated… |
CVE-2020-8758 | Critical | 9.8 | 2020-09-10 | Improper buffer restrictions in network subsystem in provisioned Intel(R) AMT and Intel(R) ISM versions before 11.8.79, 11.12.79, 11.22.79, 12.0.68 and 14.0.39… |
CVE-2020-0595 | Critical | 9.8 | 2020-06-15 | Use after free in IPv6 subsystem in Intel(R) AMT and Intel(R) ISM versions before 11.8.77, 11.12.77, 11.22.77 and 12.0.64 may allow an unauthenticated user to… |
CVE-2020-0594 | Critical | 9.8 | 2020-06-15 | Out-of-bounds read in IPv6 subsystem in Intel(R) AMT and Intel(R) ISM versions before 11.8.77, 11.12.77, 11.22.77 and 12.0.64 may allow an unauthenticated user… |
CVE-2019-11131 | Critical | 9.8 | 2019-12-18 | Logic issue in subsystem in Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow an unauthenticated user to potentially enable escala… |
CVE-2019-11107 | Critical | 9.8 | 2019-12-18 | Insufficient input validation in the subsystem for Intel(R) AMT before version 12.0.45 may allow an unauthenticated user to potentially enable escalation of pr… |
CVE-2017-5689 | Critical | 9.8 | 2017-05-02 | An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs: Intel Active Management Technology (AMT) and Intel Stand… |
CVE-2020-8747 | Critical | 9.1 | 2020-11-12 | Out-of-bounds read in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentia… |
CVE-2020-8749 | High | 8.8 | 2020-11-12 | Out-of-bounds read in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentia… |
CVE-2019-11088 | High | 8.8 | 2019-12-18 | Insufficient input validation in subsystem in Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow an unauthenticated user to potenti… |
CVE-2018-3628 | High | 8.8 | 2018-07-10 | Buffer overflow in HTTP handler in Intel Active Management Technology in Intel Converged Security Manageability Engine Firmware 3.x, 4.x, 5.x, 6.x, 7.x, 8.x, 9… |
CVE-2022-26845 | High | 8.7 | 2022-11-11 | Improper authentication in firmware for Intel(R) AMT before versions 11.8.93, 11.22.93, 11.12.93, 12.0.92, 14.1.67, 15.0.42, 16.1.25 may allow an unauthenticat… |
CVE-2022-27497 | High | 8.6 | 2022-11-11 | Null pointer dereference in firmware for Intel(R) AMT before version 11.8.93, 11.22.93, 11.12.93, 12.0.92, 14.1.67, 15.0.42, 16.1.25 may allow an unauthenticat… |
CVE-2019-11132 | High | 8.4 | 2019-12-18 | Cross site scripting in subsystem in Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow a privileged user to potentially enable esc… |
CVE-2022-29893 | High | 8.1 | 2022-11-11 | Improper authentication in firmware for Intel(R) AMT before versions 11.8.93, 11.22.93, 11.12.93, 12.0.92, 14.1.67, 15.0.42, 16.1.25 may allow an authenticated… |
CVE-2019-0131 | High | 8.1 | 2019-12-18 | Insufficient input validation in subsystem in Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow an unauthenticated user to potenti… |
CVE-2019-0096 | High | 8.0 | 2019-05-17 | Out of bound write vulnerability in subsystem for Intel(R) AMT before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 may allow an authenticated user to potentia… |
CVE-2020-8760 | High | 7.8 | 2020-11-12 | Integer overflow in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70, 14.0.45 may allow a privileged user to potentially enable… |
CVE-2017-5711 | High | 7.8 | 2017-11-21 | Multiple buffer overflows in Active Management Technology (AMT) in Intel Manageability Engine Firmware 8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20 allow attac… |