PT-2019-2110 · Intel · Intel Converged Security/Manageability Engine

Publicado

2019-05-14

Atualizado

2019-05-28

CVE-2019-0153

CVSS v3.1

9.8

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Intel Converged Security and Manageability Engine (CSME) versions 12.0.0 through 12.0.34

Description The issue is related to a buffer overflow in the Intel Converged Security and Manageability Engine (CSME) subsystem. This could allow a remote attacker to potentially escalate their privileges.

Recommendations For versions 12.0.0 through 12.0.34, update to a version that fixes the buffer overflow issue in the CSME subsystem to prevent potential privilege escalation.

Correção

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119

Identificadores relacionados

BDU:2019-01866

CVE-2019-0153

Produtos afetados

Intel Converged Security/Manageability Engine

PT-2019-2110 · Intel · Intel Converged Security/Manageability Engine

CVE-2019-0153

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5