CVE-2020-0536

Name of the Vulnerable Software and Affected Versions: Intel(R) CSME versions prior to 11.8.77 Intel(R) CSME versions prior to 11.12.77 Intel(R) CSME versions prior to 11.22.77 Intel(R) CSME versions prior to 12.0.64 Intel(R) CSME versions prior to 13.0.32 Intel(R) CSME versions prior to 14.0.33 Intel(R) TXE versions prior to 3.1.75 Intel(R) TXE versions prior to 4.0.25

Description: The issue is related to improper input validation in the DAL subsystem, which may allow an unauthenticated user to potentially enable information disclosure via network access. This could permit a remote attacker to gain unauthorized access to protected information.

Recommendations: For Intel(R) CSME versions prior to 11.8.77, update to version 11.8.77 or later. For Intel(R) CSME versions prior to 11.12.77, update to version 11.12.77 or later. For Intel(R) CSME versions prior to 11.22.77, update to version 11.22.77 or later. For Intel(R) CSME versions prior to 12.0.64, update to version 12.0.64 or later. For Intel(R) CSME versions prior to 13.0.32, update to version 13.0.32 or later. For Intel(R) CSME versions prior to 14.0.33, update to version 14.0.33 or later. For Intel(R) TXE versions prior to 3.1.75, update to version 3.1.75 or later. For Intel(R) TXE versions prior to 4.0.25, update to version 4.0.25 or later.