CVSS: 7.8EPSS: 0%CPEs: 13EXPL: 0CVE-2020-8744
https://notcve.org/view.php?id=CVE-2020-8744
12 Nov 2020 — Improper initialization in subsystem for Intel(R) CSME versions before12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25, Intel(R) TXE versions before 4.0.30 Intel(R) SPS versions before E3_05.01.04.200 may allow a privileged user to potentially enable escalation of privilege via local access. Una inicialización inapropiada en el subsistema para Intel® CSME versiones anteriores a 12.0.70, 13.0.40, 13.30.10, 14.0.45 y 14.5.25, Intel® TXE versiones anteriores a 4.0.30, Intel® SPS versiones anteriores a E3_05. 01... • https://cert-portal.siemens.com/productcert/pdf/ssa-501073.pdf • CWE-665: Improper Initialization •
CVSS: 6.8EPSS: 0%CPEs: 49EXPL: 0CVE-2020-8745
https://notcve.org/view.php?id=CVE-2020-8745
12 Nov 2020 — Insufficient control flow management in subsystem for Intel(R) CSME versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25 , Intel(R) TXE versions before 3.1.80 and 4.0.30 may allow an unauthenticated user to potentially enable escalation of privilege via physical access. Una administración de flujo de control insuficiente en el subsistema para Intel® CSME versiones anteriores a 11.8.80, 11.12.80, 11.22.80, 12.0.70, 13.0.40, 13.30.10, 14.0.45 y 14.5.25, Intel® TXE versi... • https://cert-portal.siemens.com/productcert/pdf/ssa-678983.pdf •
CVSS: 5.5EPSS: 0%CPEs: 8EXPL: 0CVE-2020-0539
https://notcve.org/view.php?id=CVE-2020-0539
15 Jun 2020 — Path traversal in subsystem for Intel(R) DAL software for Intel(R) CSME versions before 11.8.77, 11.12.77, 11.22.77, 12.0.64, 13.0.32, 14.0.33 and Intel(R) TXE versions before 3.1.75, 4.0.25 may allow an unprivileged user to potentially enable denial of service via local access. Un salto de ruta en el subsistema para el software Intel® DAL para Intel® CSME versiones anteriores a 11.8.77, 11.12.77, 11.22.77, 12.0.64, 13.0.32, 14.0.33 e Intel® TXE versiones anteriores 3.1.75, 4.0.25, puede permitir a un usuar... • https://security.netapp.com/advisory/ntap-20200611-0006 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 4.4EPSS: 0%CPEs: 10EXPL: 0CVE-2020-0545
https://notcve.org/view.php?id=CVE-2020-0545
15 Jun 2020 — Integer overflow in subsystem for Intel(R) CSME versions before 11.8.77, 11.12.77, 11.22.77 and Intel(R) TXE versions before 3.1.75, 4.0.25 and Intel(R) Server Platform Services (SPS) versions before SPS_E5_04.01.04.380.0, SPS_SoC-X_04.00.04.128.0, SPS_SoC-A_04.00.04.211.0, SPS_E3_04.01.04.109.0, SPS_E3_04.08.04.070.0 may allow a privileged user to potentially enable denial of service via local access. Un Desbordamiento de enteros en el subsistema para Intel® CSME versiones anteriores a 11.8.77, 11.12.77, 1... • https://cert-portal.siemens.com/productcert/pdf/ssa-631949.pdf • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2020-0536
https://notcve.org/view.php?id=CVE-2020-0536
15 Jun 2020 — Improper input validation in the DAL subsystem for Intel(R) CSME versions before 11.8.77, 11.12.77, 11.22.77, 12.0.64, 13.0.32,14.0.33 and Intel(R) TXE versions before 3.1.75 and 4.0.25 may allow an unauthenticated user to potentially enable information disclosure via network access. Una comprobación de entrada inapropiada en el subsistema DAL para Intel® CSME versiones anteriores a 11.8.77, 11.12.77, 11.22.77, 12.0.64, 13.0.32,14.0.33 e Intel® TXE versiones anteriores a 3.1.75 y 4.0.25, puede permitir a un... • https://security.netapp.com/advisory/ntap-20200611-0006 • CWE-20: Improper Input Validation •
CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 0CVE-2020-0566
https://notcve.org/view.php?id=CVE-2020-0566
15 Jun 2020 — Improper Access Control in subsystem for Intel(R) TXE versions before 3.175 and 4.0.25 may allow an unauthenticated user to potentially enable escalation of privilege via physical access. Un Control de Acceso Inapropiado en el subsistema para Intel® TXE versiones anteriores a 3.175 y 4.0.25, puede permitir a un usuario no autenticado habilitar potencialmente una escalada de privilegios por medio de un acceso físico • https://security.netapp.com/advisory/ntap-20200611-0005 •
CVSS: 6.7EPSS: 0%CPEs: 8EXPL: 0CVE-2019-11110
https://notcve.org/view.php?id=CVE-2019-11110
18 Dec 2019 — Authentication bypass in the subsystem for Intel(R) CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable escalation of privilege via local access. Una omisión de autenticación en el subsistema para Intel(R) CSME versiones anteriores a 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 y 14.0.10; Intel(R) TXE versiones anteriores a 3.1.70 y 4.0.20, puede permitir a un usuario privilegiado ha... • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00241.html •
CVSS: 6.7EPSS: 0%CPEs: 6EXPL: 0CVE-2019-11106
https://notcve.org/view.php?id=CVE-2019-11106
18 Dec 2019 — Insufficient session validation in the subsystem for Intel(R) CSME before versions 11.8.70, 12.0.45, 13.0.10 and 14.0.10; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable escalation of privilege via local access. Una comprobación de sesión insuficiente en el subsistema para Intel® CSME versiones anteriores a 11.8.70, 12.0.45, 13.0.10 y 14.0.10; Intel® TXE versiones anteriores a 3.1.70 y 4.0.20, puede permitir a un usuario privilegiado habilitar una escalada de... • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00241.html • CWE-613: Insufficient Session Expiration •
CVSS: 4.4EPSS: 0%CPEs: 8EXPL: 0CVE-2019-11102
https://notcve.org/view.php?id=CVE-2019-11102
18 Dec 2019 — Insufficient input validation in Intel(R) DAL software for Intel(R) CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable information disclosure via local access. Una comprobación de entrada insuficiente en el software Intel® DAL para Intel® CSME versiones anteriores a 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 y 14.0.10; Intel® TXE versiones anteriores a 3.1.70 y 4.0.20, puede permi... • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00241.html • CWE-20: Improper Input Validation •
CVSS: 4.4EPSS: 0%CPEs: 8EXPL: 0CVE-2019-11101
https://notcve.org/view.php?id=CVE-2019-11101
18 Dec 2019 — Insufficient input validation in the subsystem for Intel(R) CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable information disclosure via local access. Una comprobación de entrada insuficiente en el subsistema para Intel® CSME versiones anteriores a 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 y 14.0.10; Intel® TXE versiones anteriores a 3.1.70 y 4.0.20, puede permitir a un usuario ... • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00241.html • CWE-20: Improper Input Validation •