NotCVE - vendor:"Intel" product:"Trusted Execution Engine Firmware" version:" >= 4.0

23 results (0.021 seconds)

CVSS: 5.5EPSS: 0%CPEs: 8EXPL: 0

CVE-2020-0539

https://notcve.org/view.php?id=CVE-2020-0539

15 Jun 2020 — Path traversal in subsystem for Intel(R) DAL software for Intel(R) CSME versions before 11.8.77, 11.12.77, 11.22.77, 12.0.64, 13.0.32, 14.0.33 and Intel(R) TXE versions before 3.1.75, 4.0.25 may allow an unprivileged user to potentially enable denial of service via local access. Un salto de ruta en el subsistema para el software Intel® DAL para Intel® CSME versiones anteriores a 11.8.77, 11.12.77, 11.22.77, 12.0.64, 13.0.32, 14.0.33 e Intel® TXE versiones anteriores 3.1.75, 4.0.25, puede permitir a un usuar... • https://security.netapp.com/advisory/ntap-20200611-0006 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •

CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0

CVE-2020-0536

https://notcve.org/view.php?id=CVE-2020-0536

15 Jun 2020 — Improper input validation in the DAL subsystem for Intel(R) CSME versions before 11.8.77, 11.12.77, 11.22.77, 12.0.64, 13.0.32,14.0.33 and Intel(R) TXE versions before 3.1.75 and 4.0.25 may allow an unauthenticated user to potentially enable information disclosure via network access. Una comprobación de entrada inapropiada en el subsistema DAL para Intel® CSME versiones anteriores a 11.8.77, 11.12.77, 11.22.77, 12.0.64, 13.0.32,14.0.33 e Intel® TXE versiones anteriores a 3.1.75 y 4.0.25, puede permitir a un... • https://security.netapp.com/advisory/ntap-20200611-0006 • CWE-20: Improper Input Validation •

CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 0

CVE-2020-0566

https://notcve.org/view.php?id=CVE-2020-0566

15 Jun 2020 — Improper Access Control in subsystem for Intel(R) TXE versions before 3.175 and 4.0.25 may allow an unauthenticated user to potentially enable escalation of privilege via physical access. Un Control de Acceso Inapropiado en el subsistema para Intel® TXE versiones anteriores a 3.175 y 4.0.25, puede permitir a un usuario no autenticado habilitar potencialmente una escalada de privilegios por medio de un acceso físico • https://security.netapp.com/advisory/ntap-20200611-0005 •

CVSS: 6.7EPSS: 0%CPEs: 8EXPL: 0

CVE-2019-11110

https://notcve.org/view.php?id=CVE-2019-11110

18 Dec 2019 — Authentication bypass in the subsystem for Intel(R) CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable escalation of privilege via local access. Una omisión de autenticación en el subsistema para Intel(R) CSME versiones anteriores a 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 y 14.0.10; Intel(R) TXE versiones anteriores a 3.1.70 y 4.0.20, puede permitir a un usuario privilegiado ha... • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00241.html •

CVSS: 6.7EPSS: 0%CPEs: 6EXPL: 0

CVE-2019-11106

https://notcve.org/view.php?id=CVE-2019-11106

18 Dec 2019 — Insufficient session validation in the subsystem for Intel(R) CSME before versions 11.8.70, 12.0.45, 13.0.10 and 14.0.10; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable escalation of privilege via local access. Una comprobación de sesión insuficiente en el subsistema para Intel® CSME versiones anteriores a 11.8.70, 12.0.45, 13.0.10 y 14.0.10; Intel® TXE versiones anteriores a 3.1.70 y 4.0.20, puede permitir a un usuario privilegiado habilitar una escalada de... • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00241.html • CWE-613: Insufficient Session Expiration •

CVSS: 4.4EPSS: 0%CPEs: 8EXPL: 0

CVE-2019-11102

https://notcve.org/view.php?id=CVE-2019-11102

18 Dec 2019 — Insufficient input validation in Intel(R) DAL software for Intel(R) CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable information disclosure via local access. Una comprobación de entrada insuficiente en el software Intel® DAL para Intel® CSME versiones anteriores a 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 y 14.0.10; Intel® TXE versiones anteriores a 3.1.70 y 4.0.20, puede permi... • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00241.html • CWE-20: Improper Input Validation •

CVSS: 4.4EPSS: 0%CPEs: 8EXPL: 0

CVE-2019-11101

https://notcve.org/view.php?id=CVE-2019-11101

18 Dec 2019 — Insufficient input validation in the subsystem for Intel(R) CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable information disclosure via local access. Una comprobación de entrada insuficiente en el subsistema para Intel® CSME versiones anteriores a 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 y 14.0.10; Intel® TXE versiones anteriores a 3.1.70 y 4.0.20, puede permitir a un usuario ... • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00241.html • CWE-20: Improper Input Validation •

CVSS: 6.7EPSS: 0%CPEs: 8EXPL: 0

CVE-2019-11087

https://notcve.org/view.php?id=CVE-2019-11087

18 Dec 2019 — Insufficient input validation in the subsystem for Intel(R) CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable escalation of privilege, information disclosure or denial of service via local access. Una comprobación de entrada insuficiente en el subsistema para Intel® CSME versiones anteriores a 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 y 14.0.10; Intel® TXE versiones anteriores a... • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00241.html • CWE-20: Improper Input Validation •

CVSS: 4.4EPSS: 0%CPEs: 5EXPL: 0

CVE-2019-0168

https://notcve.org/view.php?id=CVE-2019-0168

18 Dec 2019 — Insufficient input validation in the subsystem for Intel(R) CSME before versions 11.8.70, 12.0.45 and 13.0.10; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable information disclosure via local access. Una comprobación de entrada insuficiente en el subsistema para Intel® CSME versiones anteriores a 11.8.70, 12.0.45 y 13.0.10; Intel® TXE versiones anteriores a 3.1.70 y 4.0.20, puede permitir a un usuario privilegiado habilitar una divulgación de información por ... • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00241.html • CWE-20: Improper Input Validation •

CVSS: 5.9EPSS: 0%CPEs: 13EXPL: 0

CVE-2019-11090

https://notcve.org/view.php?id=CVE-2019-11090

18 Dec 2019 — Cryptographic timing conditions in the subsystem for Intel(R) PTT before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.0 and 14.0.10; Intel(R) TXE 3.1.70 and 4.0.20; Intel(R) SPS before versions SPS_E5_04.01.04.305.0, SPS_SoC-X_04.00.04.108.0, SPS_SoC-A_04.00.04.191.0, SPS_E3_04.01.04.086.0, SPS_E3_04.08.04.047.0 may allow an unauthenticated user to potentially enable information disclosure via network access. Condiciones de sincronización criptográfica en el subsistema para Intel® PTT versiones anter... • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00241.html • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •

1 2 3