CVE-2019-0169

Name of the Vulnerable Software and Affected Versions Intel(R) CSME versions prior to 11.8.70, 11.11.70, 11.22.70, 12.0.45 Intel(R) TXE versions prior to 3.1.70 and 4.0.20

Description The issue is related to a heap overflow in the subsystem, which may allow an unauthenticated user to potentially enable escalation of privileges, information disclosure, or denial of service via adjacent access. Exploitation of the vulnerability could allow a remote attacker to disclose protected information, cause a denial of service, or elevate their privileges.

Recommendations For Intel(R) CSME versions prior to 11.8.70, 11.11.70, 11.22.70, 12.0.45, update to version 11.8.70, 11.11.70, 11.22.70, or 12.0.45 or later. For Intel(R) TXE versions prior to 3.1.70 and 4.0.20, update to version 3.1.70 or 4.0.20 or later.