|
2017-06-14
|
CVE-2017-5697
|
Insufficient clickjacking protection in the Web User Interface of Intel AMT firmware versions before 9.1.40.1000, 9.5.60.1952, 10.0.50.1004, 11.0.0.1205, and 11.6.25.1129 potentially allowing a remote attacker to hijack users web clicks via attacker's crafted web page.
|
Active_management_technology_firmware
|
6.5
|
|
|
|
2018-09-12
|
CVE-2018-3658
|
Multiple memory leaks in Intel AMT in Intel CSME firmware versions before 12.0.5 may allow an unauthenticated user with Intel AMT provisioned to potentially cause a partial denial of service via network access.
|
Active_management_technology_firmware, Converged_security_management_engine_firmware, Manageability_engine_firmware, Simatic_field_pg_m5_firmware, Simatic_ipc427e_firmware, Simatic_ipc477e_firmware, Simatic_ipc547e_firmware, Simatic_ipc627d_firmware, Simatic_ipc647d_firmware, Simatic_ipc677d_firmware, Simatic_ipc827d_firmware, Simatic_ipc847d_firmware, Simatic_itp1000_firmware, Simatic_pc547g_firmware
|
5.3
|
|
|
|
2018-09-12
|
CVE-2018-3616
|
Bleichenbacher-style side channel vulnerability in TLS implementation in Intel Active Management Technology before 12.0.5 may allow an unauthenticated user to potentially obtain the TLS session key via the network.
|
Active_management_technology_firmware, Converged_security_management_engine_firmware, Manageability_engine_firmware, Simatic_field_pg_m5_firmware, Simatic_ipc427e_firmware, Simatic_ipc477e_firmware, Simatic_ipc547e_firmware, Simatic_ipc627d_firmware, Simatic_ipc647d_firmware, Simatic_ipc677d_firmware, Simatic_ipc827d_firmware, Simatic_ipc847d_firmware, Simatic_itp1000_firmware, Simatic_pc547g_firmware
|
5.9
|
|
|
|
2017-09-05
|
CVE-2017-5698
|
Intel Active Management Technology, Intel Standard Manageability, and Intel Small Business Technology firmware versions 11.0.25.3001 and 11.0.26.3000 anti-rollback will not prevent upgrading to firmware version 11.6.x.1xxx which is vulnerable to CVE-2017-5689 and can be performed by a local user with administrative privileges.
|
Active_management_technology_firmware, Manageability_engine_firmware, Small_business_technology_firmware
|
4.4
|
|
|
|
2018-09-12
|
CVE-2018-3657
|
Multiple buffer overflows in Intel AMT in Intel CSME firmware versions before version 12.0.5 may allow a privileged user to potentially execute arbitrary code with Intel AMT execution privilege via local access.
|
Active_management_technology_firmware, Converged_security_management_engine_firmware, Manageability_engine_firmware, Simatic_field_pg_m5_firmware, Simatic_ipc427e_firmware, Simatic_ipc477e_firmware, Simatic_ipc547e_firmware, Simatic_ipc627d_firmware, Simatic_ipc647d_firmware, Simatic_ipc677d_firmware, Simatic_ipc827d_firmware, Simatic_ipc847d_firmware, Simatic_itp1000_firmware, Simatic_pc547g_firmware
|
6.7
|
|
|
|
2020-06-15
|
CVE-2020-0597
|
Out-of-bounds read in IPv6 subsystem in Intel(R) AMT and Intel(R) ISM versions before 14.0.33 may allow an unauthenticated user to potentially enable denial of service via network access.
|
Active_management_technology_firmware, Software_manager
|
7.5
|
|
|
|
2017-11-21
|
CVE-2017-5711
|
Multiple buffer overflows in Active Management Technology (AMT) in Intel Manageability Engine Firmware 8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20 allow attacker with local access to the system to execute arbitrary code with AMT execution privilege.
|
B150\-A_firmware, B150\-Plus_firmware, B150\-Pro_d3_firmware, B150\-Pro_firmware, B150_pro_gaming\/aura_firmware, B150_pro_gaming_d3_firmware, B150_pro_gaming_firmware, B150i_pro_gaming\/aura_firmware, B150i_pro_gaming\/wifi\/aura_firmware, B150m\-A\/m\.2_firmware, B150m\-A_d3_firmware, B150m\-A_firmware, B150m\-C\/br_firmware, B150m\-C_d3_firmware, B150m\-C_firmware, B150m\-D_firmware, B150m\-F_plus_firmware, B150m\-K_d3_firmware, B150m\-K_firmware, B150m\-Plus_d3_firmware, B150m\-Plus_firmware, B150m\-V_plus_firmware, B150m_pro_gaming_firmware, B250\-Mr_firmware, B250\-S_firmware, B250_mining_expert_firmware, B250m\-C_pro_firmware, B250m\-F_plus_firmware, Ex\-B150\-V7_firmware, Ex\-B150m\-V3_firmware, Ex\-B150m\-V5_firmware, Ex\-B150m\-V_firmware, Ex\-B250\-V7_firmware, Ex\-B250m\-V3_firmware, Ex\-B250m\-V5_firmware, Ex\-B250m\-V_firmware, Ex\-H110m\-V3_firmware, Ex\-H110m\-V_firmware, H110\-Plus_firmware, H110i\-Plus_firmware, H110m\-A\/dp_firmware, H110m\-A\/m\.2_firmware, H110m\-A_d3_firmware, H110m\-A_firmware, H110m\-C2\/tf_firmware, H110m\-C2_firmware, H110m\-C\/br_firmware, H110m\-C\/hdmi_firmware, H110m\-C\/ps_firmware, H110m\-C_firmware, H110m\-Cs\/br_firmware, H110m\-Cs_firmware, H110m\-Cs_x_firmware, H110m\-D\/exper\/si_firmware, H110m\-D_firmware, H110m\-E\/m\.2_firmware, H110m\-E_firmware, H110m\-F_firmware, H110m\-K_d3_firmware, H110m\-K_firmware, H110m\-K_x_firmware, H110m\-Ks_firmware, H110m\-Ks_r1_firmware, H110m\-P\/dvi_firmware, H110m\-Plus_firmware, H110m\-R_firmware, H110m\-Ts_firmware, H110s1_firmware, H110s2_firmware, H110t\-A_firmware, H110t_firmware, H170\-Plus_d3_firmware, H170\-Pro\/usb_3\.1_firmware, H170\-Pro_firmware, H170_pro_gaming_firmware, H170i\-Pro_firmware, H170m\-E_d3_firmware, H170m\-Plus\/br_firmware, H170m\-Plus_firmware, Pio\-B150m_firmware, Pio\-B250i_firmware, Prime_b250\-A_firmware, Prime_b250\-Plus_firmware, Prime_b250\-Pro_firmware, Prime_b250m\-A_firmware, Prime_b250m\-C_firmware, Prime_b250m\-D_firmware, Prime_b250m\-J_firmware, Prime_b250m\-K_firmware, Prime_b250m\-Plus\/br_firmware, Prime_b250m\-Plus_firmware, Prime_h110m2\/fpt_firmware, Prime_h110m2_firmware, Prime_h110m\-P_firmware, Prime_h270\-Plus_firmware, Prime_h270\-Pro_firmware, Prime_h270m\-Plus_firmware, Prime_j3355i\-C_firmware, Prime_q270m\-C_firmware, Prime_z270\-A_firmware, Prime_z270\-Ar_firmware, Prime_z270\-K_firmware, Prime_z270\-P_firmware, Prime_z270m\-Plus\/br_firmware, Prime_z270m\-Plus_firmware, Prime_z370\-A_firmware, Prime_z370\-P_firmware, Q170m2\/cdm\/si_firmware, Q170m2_firmware, Q170m\-C_firmware, Q170m\-Cm\-B_firmware, Q170s1_firmware, Q170t_firmware, Q170t_v2_firmware, Q270\-S_firmware, Q270m\-Cm\-A_firmware, Rog_maximus_ix_apex_firmware, Rog_maximus_ix_code_firmware, Rog_maximus_ix_extreme_firmware, Rog_maximus_ix_formula_firmware, Rog_maximus_ix_hero_firmware, Rog_maximus_viii_extreme_firmware, Rog_maximus_viii_formula_firmware, Rog_maximus_viii_gene_firmware, Rog_maximus_viii_hero_alpha_firmware, Rog_maximus_viii_hero_firmware, Rog_maximus_viii_impact_firmware, Rog_maximus_viii_ranger_firmware, Rog_maximus_x_apex_firmware, Rog_maximus_x_code_firmware, Rog_maximus_x_formula_firmware, Rog_maximus_x_hero_firmware, Rog_strix_b250f_gaming_firmware, Rog_strix_b250g_gaming_firmware, Rog_strix_b250h_gaming_firmware, Rog_strix_b250i_gaming_firmware, Rog_strix_h270f_gaming_firmware, Rog_strix_h270i_gaming_firmware, Rog_strix_z270e_gaming_firmware, Rog_strix_z270f_gaming_firmware, Rog_strix_z270g_gaming_firmware, Rog_strix_z270h_gaming\/k1_firmware, Rog_strix_z270h_gaming_firmware, Rog_strix_z270i_gaming_firmware, Rog_strix_z370\-E_gaming_firmware, Rog_strix_z370\-F_gaming_firmware, Rog_strix_z370\-G_gaming_firmware, Rog_strix_z370\-H_gaming_firmware, Rog_strix_z370\-I_gaming_firmware, Sabertooth_z170_mark_1_firmware, Sabertooth_z170_s_firmware, Trooper_b150_d3_firmware, Trooper_h110_d3_firmware, Tuf_z270_mark_1_firmware, Tuf_z270_mark_2_firmware, Tuf_z370\-Plus_gaming_firmware, Tuf_z370\-Pro_gaming_firmware, Z170\-A_firmware, Z170\-Ar_firmware, Z170\-Deluxe_firmware, Z170\-E_firmware, Z170\-K_firmware, Z170\-P_d3_firmware, Z170\-P_firmware, Z170\-Premium_firmware, Z170\-Pro_firmware, Z170_pro_gaming\/aura_firmware, Z170_pro_gaming_firmware, Z170i_pro_gaming_firmware, Z170m\-E_d3_firmware, Z170m\-Plus\/br_firmware, Z170m\-Plus_firmware, Active_management_technology_firmware, Manageability_engine_firmware, Simatic_field_pg_m3_firmware, Simatic_field_pg_m4_firmware, Simatic_field_pg_m5_firmware, Simatic_ipc427d_firmware, Simatic_ipc427e_firmware, Simatic_ipc477d_firmware, Simatic_ipc477d_pro_firmware, Simatic_ipc477e_firmware, Simatic_ipc547d_firmware, Simatic_ipc547e_firmware, Simatic_ipc627c_firmware, Simatic_ipc627d_firmware, Simatic_ipc647c_firmware, Simatic_ipc647d_firmware, Simatic_ipc677c_firmware, Simatic_ipc677d_firmware, Simatic_ipc827c_firmware, Simatic_ipc827d_firmware, Simatic_ipc847c_firmware, Simatic_ipc847d_firmware, Simatic_itp1000_firmware, Simotion_p320\-4s_firmware, Sinumerik_pcu50\.5\-C_firmware, Sinumerik_pcu50\.5\-P_firmware
|
7.8
|
|
|
|
2017-11-21
|
CVE-2017-5712
|
Buffer overflow in Active Management Technology (AMT) in Intel Manageability Engine Firmware 8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20 allows attacker with remote Admin access to the system to execute arbitrary code with AMT execution privilege.
|
B150\-A_firmware, B150\-Plus_firmware, B150\-Pro_d3_firmware, B150\-Pro_firmware, B150_pro_gaming\/aura_firmware, B150_pro_gaming_d3_firmware, B150_pro_gaming_firmware, B150i_pro_gaming\/aura_firmware, B150i_pro_gaming\/wifi\/aura_firmware, B150m\-A\/m\.2_firmware, B150m\-A_d3_firmware, B150m\-A_firmware, B150m\-C\/br_firmware, B150m\-C_d3_firmware, B150m\-C_firmware, B150m\-D_firmware, B150m\-F_plus_firmware, B150m\-K_d3_firmware, B150m\-K_firmware, B150m\-Plus_d3_firmware, B150m\-Plus_firmware, B150m\-V_plus_firmware, B150m_pro_gaming_firmware, B250\-Mr_firmware, B250\-S_firmware, B250_mining_expert_firmware, B250m\-C_pro_firmware, B250m\-F_plus_firmware, Ex\-B150\-V7_firmware, Ex\-B150m\-V3_firmware, Ex\-B150m\-V5_firmware, Ex\-B150m\-V_firmware, Ex\-B250\-V7_firmware, Ex\-B250m\-V3_firmware, Ex\-B250m\-V5_firmware, Ex\-B250m\-V_firmware, Ex\-H110m\-V3_firmware, Ex\-H110m\-V_firmware, H110\-Plus_firmware, H110i\-Plus_firmware, H110m\-A\/dp_firmware, H110m\-A\/m\.2_firmware, H110m\-A_d3_firmware, H110m\-A_firmware, H110m\-C2\/tf_firmware, H110m\-C2_firmware, H110m\-C\/br_firmware, H110m\-C\/hdmi_firmware, H110m\-C\/ps_firmware, H110m\-C_firmware, H110m\-Cs\/br_firmware, H110m\-Cs_firmware, H110m\-Cs_x_firmware, H110m\-D\/exper\/si_firmware, H110m\-D_firmware, H110m\-E\/m\.2_firmware, H110m\-E_firmware, H110m\-F_firmware, H110m\-K_d3_firmware, H110m\-K_firmware, H110m\-K_x_firmware, H110m\-Ks_firmware, H110m\-Ks_r1_firmware, H110m\-P\/dvi_firmware, H110m\-Plus_firmware, H110m\-R_firmware, H110m\-Ts_firmware, H110s1_firmware, H110s2_firmware, H110t\-A_firmware, H110t_firmware, H170\-Plus_d3_firmware, H170\-Pro\/usb_3\.1_firmware, H170\-Pro_firmware, H170_pro_gaming_firmware, H170i\-Pro_firmware, H170m\-E_d3_firmware, H170m\-Plus\/br_firmware, H170m\-Plus_firmware, Pio\-B150m_firmware, Pio\-B250i_firmware, Prime_b250\-A_firmware, Prime_b250\-Plus_firmware, Prime_b250\-Pro_firmware, Prime_b250m\-A_firmware, Prime_b250m\-C_firmware, Prime_b250m\-D_firmware, Prime_b250m\-J_firmware, Prime_b250m\-K_firmware, Prime_b250m\-Plus\/br_firmware, Prime_b250m\-Plus_firmware, Prime_h110m2\/fpt_firmware, Prime_h110m2_firmware, Prime_h110m\-P_firmware, Prime_h270\-Plus_firmware, Prime_h270\-Pro_firmware, Prime_h270m\-Plus_firmware, Prime_j3355i\-C_firmware, Prime_q270m\-C_firmware, Prime_z270\-A_firmware, Prime_z270\-Ar_firmware, Prime_z270\-K_firmware, Prime_z270\-P_firmware, Prime_z270m\-Plus\/br_firmware, Prime_z270m\-Plus_firmware, Prime_z370\-A_firmware, Prime_z370\-P_firmware, Q170m2\/cdm\/si_firmware, Q170m2_firmware, Q170m\-C_firmware, Q170m\-Cm\-B_firmware, Q170s1_firmware, Q170t_firmware, Q170t_v2_firmware, Q270\-S_firmware, Q270m\-Cm\-A_firmware, Rog_maximus_ix_apex_firmware, Rog_maximus_ix_code_firmware, Rog_maximus_ix_extreme_firmware, Rog_maximus_ix_formula_firmware, Rog_maximus_ix_hero_firmware, Rog_maximus_viii_extreme_firmware, Rog_maximus_viii_formula_firmware, Rog_maximus_viii_gene_firmware, Rog_maximus_viii_hero_alpha_firmware, Rog_maximus_viii_hero_firmware, Rog_maximus_viii_impact_firmware, Rog_maximus_viii_ranger_firmware, Rog_maximus_x_apex_firmware, Rog_maximus_x_code_firmware, Rog_maximus_x_formula_firmware, Rog_maximus_x_hero_firmware, Rog_strix_b250f_gaming_firmware, Rog_strix_b250g_gaming_firmware, Rog_strix_b250h_gaming_firmware, Rog_strix_b250i_gaming_firmware, Rog_strix_h270f_gaming_firmware, Rog_strix_h270i_gaming_firmware, Rog_strix_z270e_gaming_firmware, Rog_strix_z270f_gaming_firmware, Rog_strix_z270g_gaming_firmware, Rog_strix_z270h_gaming\/k1_firmware, Rog_strix_z270h_gaming_firmware, Rog_strix_z270i_gaming_firmware, Rog_strix_z370\-E_gaming_firmware, Rog_strix_z370\-F_gaming_firmware, Rog_strix_z370\-G_gaming_firmware, Rog_strix_z370\-H_gaming_firmware, Rog_strix_z370\-I_gaming_firmware, Sabertooth_z170_mark_1_firmware, Sabertooth_z170_s_firmware, Trooper_b150_d3_firmware, Trooper_h110_d3_firmware, Tuf_z270_mark_1_firmware, Tuf_z270_mark_2_firmware, Tuf_z370\-Plus_gaming_firmware, Tuf_z370\-Pro_gaming_firmware, Z170\-A_firmware, Z170\-Ar_firmware, Z170\-Deluxe_firmware, Z170\-E_firmware, Z170\-K_firmware, Z170\-P_d3_firmware, Z170\-P_firmware, Z170\-Premium_firmware, Z170\-Pro_firmware, Z170_pro_gaming\/aura_firmware, Z170_pro_gaming_firmware, Z170i_pro_gaming_firmware, Z170m\-E_d3_firmware, Z170m\-Plus\/br_firmware, Z170m\-Plus_firmware, Active_management_technology_firmware, Manageability_engine_firmware, Simatic_field_pg_m3_firmware, Simatic_field_pg_m4_firmware, Simatic_field_pg_m5_firmware, Simatic_ipc427d_firmware, Simatic_ipc427e_firmware, Simatic_ipc477d_firmware, Simatic_ipc477d_pro_firmware, Simatic_ipc477e_firmware, Simatic_ipc547d_firmware, Simatic_ipc547e_firmware, Simatic_ipc627c_firmware, Simatic_ipc627d_firmware, Simatic_ipc647c_firmware, Simatic_ipc647d_firmware, Simatic_ipc677c_firmware, Simatic_ipc677d_firmware, Simatic_ipc827c_firmware, Simatic_ipc827d_firmware, Simatic_ipc847c_firmware, Simatic_ipc847d_firmware, Simatic_itp1000_firmware, Simotion_p320\-4s_firmware, Sinumerik_pcu50\.5\-C_firmware, Sinumerik_pcu50\.5\-P_firmware
|
7.2
|
|
|
|
2017-11-21
|
CVE-2017-5729
|
Frame replay vulnerability in Wi-Fi subsystem in Intel Dual-Band and Tri-Band Wireless-AC Products allows remote attacker to replay frames via channel-based man-in-the-middle.
|
Active_management_technology_firmware, Dual_band_wireless\-Ac_3160, Dual_band_wireless\-Ac_3165, Dual_band_wireless\-Ac_3168, Dual_band_wireless\-Ac_7260, Dual_band_wireless\-Ac_7265, Dual_band_wireless\-Ac_8260, Dual_band_wireless\-Ac_8265, Dual_band_wireless\-N_7260, Dual_band_wireless\-N_7265, Tri\-Band_wireless\-Ac_17265, Tri\-Band_wireless\-Ac_18260, Tri\-Band_wireless\-Ac_18265, Wireless\-Ac_9260, Wireless\-N_7260, Wireless\-N_7265
|
7.4
|
|
|
|
2019-05-17
|
CVE-2019-0092
|
Insufficient input validation vulnerability in subsystem for Intel(R) AMT before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 may allow an unauthenticated user to potentially enable escalation of privilege via physical access.
|
Active_management_technology_firmware
|
6.8
|
|
|