cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2019-0097,https://securityvulnerability.io/vulnerability/CVE-2019-0097,Insufficient Input Validation in Intel AMT Subsystem,An insufficient input validation vulnerability exists in the Intel AMT subsystem which may allow a privileged user to exploit the flaw and potentially enable a denial of service through network access. This could impact system availability for users leveraging Intel's Active Management Technology. Users are advised to upgrade their software to the latest version to mitigate this risk.,Intel,Intel(r) Active Management Technology (amt),4.9,MEDIUM,0.0009699999936856329,false,,false,false,false,,,false,false,,2019-05-17T15:41:38.000Z,0
CVE-2019-0092,https://securityvulnerability.io/vulnerability/CVE-2019-0092,Insufficient Input Validation in Intel AMT Subsystem,"The vulnerability in Intel Active Management Technology (AMT) arises due to insufficient input validation within the subsystem, which can be exploited by an unauthenticated user with physical access. This flaw may allow an attacker to escalate their privileges, potentially leading to unauthorized access and control over the affected system. Systems running versions prior to 11.8.65, along with specific versions up to 12.0.35, are susceptible to this risk. Users are encouraged to apply the available patches to mitigate any potential security threats. For more details, refer to the official Intel security advisory.",Intel,Intel(r) Active Management Technology (amt),6.8,MEDIUM,0.0007699999841861427,false,,false,false,false,,,false,false,,2019-05-17T15:41:38.000Z,0
CVE-2019-0094,https://securityvulnerability.io/vulnerability/CVE-2019-0094,Insufficient Input Validation in Intel AMT Affects Network Security,"An insufficient input validation vulnerability exists within the subsystem for Intel Active Management Technology (AMT), which can allow an unauthenticated user to potentially leverage this flaw to enable a denial of service. This risk is present primarily when the attacker has access to the local network, emphasizing the need for robust security measures to mitigate this threat. Users and organizations should ensure their Intel AMT systems are updated to the latest versions to safeguard against potential exploitation.",Intel,Intel(r) Active Management Technology (amt),4.3,MEDIUM,0.000699999975040555,false,,false,false,false,,,false,false,,2019-05-17T15:41:38.000Z,0
CVE-2019-0096,https://securityvulnerability.io/vulnerability/CVE-2019-0096,Out of Bound Write Vulnerability in Intel AMT Products,"An out of bounds write vulnerability exists within the Intel AMT subsystem, affecting multiple versions prior to 11.8.65, 11.11.65, 11.22.65, and 12.0.35. This flaw may allow an authenticated user to exploit adjacent network access, potentially leading to unauthorized escalation of privileges. Users of these affected versions are encouraged to apply the necessary updates to mitigate this risk. For detailed information, visit Intel's official security advisory and additional resources.",Intel,Intel(r) Active Management Technology (amt),8,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2019-05-17T15:41:38.000Z,0
CVE-2018-12185,https://securityvulnerability.io/vulnerability/CVE-2018-12185,,"Insufficient input validation in Intel(R) AMT in Intel(R) CSME before version 11.8.60, 11.11.60, 11.22.60 or 12.0.20 may allow an unauthenticated user to potentially execute arbitrary code via physical access.",Intel,"Intel(r) Csme, Server Platform Services, Trusted Execution Engine And Intel(r) Active Management Technology",6.8,MEDIUM,0.0009899999713525176,false,,false,false,false,,,false,false,,2019-03-14T20:29:00.000Z,0
CVE-2018-12190,https://securityvulnerability.io/vulnerability/CVE-2018-12190,,"Insufficient input validation in Intel(r) CSME subsystem before versions 11.8.60, 11.11.60, 11.22.60 or 12.0.20 or Intel(r) TXE before 3.1.60 or 4.0.10 may allow a privileged user to potentially enable an escalation of privilege via local access.",Intel,"Intel(r) Csme, Server Platform Services, Trusted Execution Engine And Intel(r) Active Management Technology",6.7,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2019-03-14T20:29:00.000Z,0
CVE-2018-12200,https://securityvulnerability.io/vulnerability/CVE-2018-12200,,Insufficient access control in Intel(R) Capability Licensing Service before version 1.50.638.1 may allow an unprivileged user to potentially escalate privileges via local access.,Intel,"Intel(r) Csme, Server Platform Services, Trusted Execution Engine And Intel(r) Active Management Technology",6.7,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2019-03-14T20:29:00.000Z,0
CVE-2018-12208,https://securityvulnerability.io/vulnerability/CVE-2018-12208,,"Buffer overflow in HECI subsystem in Intel(R) CSME before versions 11.8.60, 11.11.60, 11.22.60 or 12.0.20 and Intel(R) TXE version before 3.1.60 or 4.0.10, or Intel(R) Server Platform Services before version 5.00.04.012 may allow an unauthenticated user to potentially execute arbitrary code via physical access.",Intel,"Intel(r) Csme, Server Platform Services, Trusted Execution Engine And Intel(r) Active Management Technology",7.6,HIGH,0.003539999946951866,false,,false,false,false,,,false,false,,2019-03-14T20:29:00.000Z,0
CVE-2018-12191,https://securityvulnerability.io/vulnerability/CVE-2018-12191,,"Bounds check in Kernel subsystem in Intel CSME before version 11.8.60, 11.11.60, 11.22.60 or 12.0.20, or Intel(R) Server Platform Services before versions 4.00.04.383 or SPS 4.01.02.174, or Intel(R) TXE before versions 3.1.60 or 4.0.10 may allow an unauthenticated user to potentially execute arbitrary code via physical access.",Intel,"Intel(r) Csme, Server Platform Services, Trusted Execution Engine And Intel(r) Active Management Technology",7.6,HIGH,0.003539999946951866,false,,false,false,false,,,false,false,,2019-03-14T20:29:00.000Z,0
CVE-2018-12198,https://securityvulnerability.io/vulnerability/CVE-2018-12198,,Insufficient input validation in Intel(R) Server Platform Services HECI subsystem before version SPS_E5_04.00.04.393.0 may allow privileged user to potentially cause a denial of service via local access.,Intel,"Intel(r) Csme, Server Platform Services, Trusted Execution Engine And Intel(r) Active Management Technology",6,MEDIUM,0.0005200000014156103,false,,false,false,false,,,false,false,,2019-03-14T20:29:00.000Z,0
CVE-2018-12199,https://securityvulnerability.io/vulnerability/CVE-2018-12199,,"Buffer overflow in an OS component in Intel CSME before versions 11.8.60, 11.11.60, 11.22.60 or 12.0.20 and Intel TXE version before 3.1.60 or 4.0.10 may allow a privileged user to potentially execute arbitrary code via physical access.",Intel,"Intel(r) Csme, Server Platform Services, Trusted Execution Engine And Intel(r) Active Management Technology",6.2,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2019-03-14T20:29:00.000Z,0
CVE-2018-12187,https://securityvulnerability.io/vulnerability/CVE-2018-12187,,"Insufficient input validation in Intel(R) Active Management Technology (Intel(R) AMT) before version 11.8.60, 11.11.60, 11.22.60 or 12.0.20 may allow an unauthenticated user to potentially cause a denial of service via network access.",Intel,"Intel(r) Csme, Server Platform Services, Trusted Execution Engine And Intel(r) Active Management Technology",7.5,HIGH,0.0010999999940395355,false,,false,false,false,,,false,false,,2019-03-14T20:29:00.000Z,0
CVE-2018-12188,https://securityvulnerability.io/vulnerability/CVE-2018-12188,,"Insufficient input validation in Intel CSME before versions 11.8.60, 11.11.60, 11.22.60 or 12.0.20 or Intel TXE before version 3.1.60 or 4.0.10 may allow an unauthenticated user to potentially modify data via physical access.",Intel,"Intel(r) Csme, Server Platform Services, Trusted Execution Engine And Intel(r) Active Management Technology",4.6,MEDIUM,0.0006900000153109431,false,,false,false,false,,,false,false,,2019-03-14T20:29:00.000Z,0
CVE-2018-12189,https://securityvulnerability.io/vulnerability/CVE-2018-12189,,"Unhandled exception in Content Protection subsystem in Intel CSME before versions 11.8.60, 11.11.60, 11.22.60 or 12.0.20 or Intel TXE before 3.1.60 or 4.0.10 may allow privileged user to potentially modify data via local access.",Intel,"Intel(r) Csme, Server Platform Services, Trusted Execution Engine And Intel(r) Active Management Technology",4.4,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2019-03-14T20:29:00.000Z,0
CVE-2018-12192,https://securityvulnerability.io/vulnerability/CVE-2018-12192,,"Logic bug in Kernel subsystem in Intel CSME before version 11.8.60, 11.11.60, 11.22.60 or 12.0.20, or Intel(R) Server Platform Services before version SPS_E5_04.00.04.393.0 may allow an unauthenticated user to potentially bypass MEBx authentication via physical access.",Intel,"Intel(r) Csme, Server Platform Services, Trusted Execution Engine And Intel(r) Active Management Technology",6.8,MEDIUM,0.0012600000482052565,false,,false,false,false,,,false,false,,2019-03-14T20:29:00.000Z,0
CVE-2018-12196,https://securityvulnerability.io/vulnerability/CVE-2018-12196,,"Insufficient input validation in Intel(R) AMT in Intel(R) CSME before version 11.8.60, 11.11.60, 11.22.60 or 12.0.20 may allow a privileged user to potentially execute arbitrary code via local access.",Intel,"Intel(r) Csme, Server Platform Services, Trusted Execution Engine And Intel(r) Active Management Technology",6.7,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2019-03-14T20:29:00.000Z,0
CVE-2018-3657,https://securityvulnerability.io/vulnerability/CVE-2018-3657,,Multiple buffer overflows in Intel AMT in Intel CSME firmware versions before version 12.0.5 may allow a privileged user to potentially execute arbitrary code with Intel AMT execution privilege via local access.,Intel,Intel(r) Active Management Technology,6.7,MEDIUM,0.001069999998435378,false,,false,false,false,,,false,false,,2018-09-12T19:29:00.000Z,0
CVE-2018-3616,https://securityvulnerability.io/vulnerability/CVE-2018-3616,,Bleichenbacher-style side channel vulnerability in TLS implementation in Intel Active Management Technology before 12.0.5 may allow an unauthenticated user to potentially obtain the TLS session key via the network.,Intel,Intel(r) Active Management Technology,5.9,MEDIUM,0.004920000210404396,false,,false,false,false,,,false,false,,2018-09-12T19:29:00.000Z,0
CVE-2018-3658,https://securityvulnerability.io/vulnerability/CVE-2018-3658,,Multiple memory leaks in Intel AMT in Intel CSME firmware versions before 12.0.5 may allow an unauthenticated user with Intel AMT provisioned to potentially cause a partial denial of service via network access.,Intel,Intel(r) Active Management Technology,5.3,MEDIUM,0.011210000142455101,false,,false,false,false,,,false,false,,2018-09-12T19:29:00.000Z,0
CVE-2018-3632,https://securityvulnerability.io/vulnerability/CVE-2018-3632,,Memory corruption in Intel Active Management Technology in Intel Converged Security Manageability Engine Firmware 6.x / 7.x / 8.x / 9.x / 10.x / 11.0 / 11.5 / 11.6 / 11.7 / 11.10 / 11.20 could be triggered by an attacker with local administrator permission on the system.,Intel,Intel Active Management Technology,6.7,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2018-07-10T21:00:00.000Z,0
CVE-2018-3628,https://securityvulnerability.io/vulnerability/CVE-2018-3628,,"Buffer overflow in HTTP handler in Intel Active Management Technology in Intel Converged Security Manageability Engine Firmware 3.x, 4.x, 5.x, 6.x, 7.x, 8.x, 9.x, 10.x, and 11.x may allow an attacker to execute arbitrary code via the same subnet.",Intel,Intel Active Management Technology,8.8,HIGH,0.0018500000005587935,false,,false,false,false,,,false,false,,2018-07-10T21:00:00.000Z,0
CVE-2018-3629,https://securityvulnerability.io/vulnerability/CVE-2018-3629,,"Buffer overflow in event handler in Intel Active Management Technology in Intel Converged Security Manageability Engine Firmware 3.x, 4.x, 5.x, 6.x, 7.x, 8.x, 9.x, 10.x, and 11.x may allow an attacker to cause a denial of service via the same subnet.",Intel,Intel Active Management Technology,6.5,MEDIUM,0.001339999958872795,false,,false,false,false,,,false,false,,2018-07-10T21:00:00.000Z,0
CVE-2017-5712,https://securityvulnerability.io/vulnerability/CVE-2017-5712,,Buffer overflow in Active Management Technology (AMT) in Intel Manageability Engine Firmware 8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20 allows attacker with remote Admin access to the system to execute arbitrary code with AMT execution privilege.,Intel,Active Management Technology,7.2,HIGH,0.007309999782592058,false,,false,false,false,,,false,false,,2017-11-21T14:29:00.000Z,0
CVE-2017-5711,https://securityvulnerability.io/vulnerability/CVE-2017-5711,,Multiple buffer overflows in Active Management Technology (AMT) in Intel Manageability Engine Firmware 8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20 allow attacker with local access to the system to execute arbitrary code with AMT execution privilege.,Intel,Active Management Technology,7.8,HIGH,0.0004199999966658652,false,,false,false,false,,,false,false,,2017-11-21T14:29:00.000Z,0
CVE-2017-5698,https://securityvulnerability.io/vulnerability/CVE-2017-5698,,"Intel Active Management Technology, Intel Standard Manageability, and Intel Small Business Technology firmware versions 11.0.25.3001 and 11.0.26.3000 anti-rollback will not prevent upgrading to firmware version 11.6.x.1xxx which is vulnerable to CVE-2017-5689 and can be performed by a local user with administrative privileges.",Intel,"Intel Active Management Technology, Intel Standard Manageability, And Intel Small Business Technology",4.4,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2017-09-05T19:29:00.000Z,0