threat
engine
.sh
Back
·
··:··
Home
/
Product
/
intel trusted execution engine firmware
Product
intel trusted execution engine firmware
27 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2020-0566
>= 3.0 and <= 3.1.70
Improper Access Control in subsystem for Intel(R) TXE versions before 3.175 and 4.0.25 may allow an unauthenticated user to potent
6.8
MEDIUM
CVE-2020-0539
>= 3.0 and < 3.1.75
Path traversal in subsystem for Intel(R) DAL software for Intel(R) CSME versions before 11.8.77, 11.12.77, 11.22.77, 12.0.64, 13.0
5.5
MEDIUM
CVE-2020-0536
>= 3.0 and < 3.1.75
Improper input validation in the DAL subsystem for Intel(R) CSME versions before 11.8.77, 11.12.77, 11.22.77, 12.0.64, 13.0.32,14.
7.5
HIGH
CVE-2019-11147
>= 3.0 and < 3.1.70
Insufficient access control in hardware abstraction driver for MEInfo software for Intel(R) CSME before versions 11.8.70, 11.11.70
7.8
HIGH
CVE-2019-11110
>= 3.0 and < 3.1.70
Authentication bypass in the subsystem for Intel(R) CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10
6.7
MEDIUM
CVE-2019-11106
>= 3.0 and < 3.1.70
Insufficient session validation in the subsystem for Intel(R) CSME before versions 11.8.70, 12.0.45, 13.0.10 and 14.0.10; Intel(R)
6.7
MEDIUM
CVE-2019-11104
>= 3.0 and < 3.1.70
Insufficient input validation in MEInfo software for Intel(R) CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 a
7.8
HIGH
CVE-2019-11102
>= 3.0 and < 3.1.70
Insufficient input validation in Intel(R) DAL software for Intel(R) CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.
4.4
MEDIUM
CVE-2019-11101
>= 3.0 and < 3.1.70
Insufficient input validation in the subsystem for Intel(R) CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and
4.4
MEDIUM
CVE-2019-11097
>= 3.0 and < 3.1.70
Improper directory permissions in the installer for Intel(R) Management Engine Consumer Driver for Windows before versions 11.8.70
7.8
HIGH
CVE-2019-11090
>= 3.0 and < 3.1.70
Cryptographic timing conditions in the subsystem for Intel(R) PTT before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.0 and
5.9
MEDIUM
CVE-2019-11087
>= 3.0 and < 3.1.70
Insufficient input validation in the subsystem for Intel(R) CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and
6.7
MEDIUM
CVE-2019-0169
>= 3.0 and < 3.1.70
Heap overflow in subsystem in Intel(R) CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45; Intel(R) TXE before versions 3.1
8.8
HIGH
CVE-2019-0168
>= 3.0 and < 3.1.70
Insufficient input validation in the subsystem for Intel(R) CSME before versions 11.8.70, 12.0.45 and 13.0.10; Intel(R) TXE before
4.4
MEDIUM
CVE-2018-12147
>= 3.0 and <= 3.1.50
Insufficient input validation in HECI subsystem in Intel(R) CSME before version 11.21.55, Intel® Server Platform Services before
6.7
MEDIUM
CVE-2019-0098
>= 3.0 and < 3.1.65
Logic bug vulnerability in subsystem for Intel(R) CSME before version 12.0.35, Intel(R) TXE before 3.1.65, 4.0.15 may allow an una
6.8
MEDIUM
CVE-2019-0086
>= 3.0 and < 3.1.65
Insufficient access control vulnerability in Dynamic Application Loader software for Intel(R) CSME before versions 11.8.65, 11.11.
7.8
HIGH
CVE-2018-12208
>= 3.0 and < 3.1.60
Buffer overflow in HECI subsystem in Intel(R) CSME before versions 11.8.60, 11.11.60, 11.22.60 or 12.0.20 and Intel(R) TXE version
7.6
HIGH
CVE-2018-12199
>= 3.0 and < 3.1.60
Buffer overflow in an OS component in Intel CSME before versions 11.8.60, 11.11.60, 11.22.60 or 12.0.20 and Intel TXE version befo
6.2
MEDIUM
CVE-2018-12191
>= 3.0 and < 3.1.60
Bounds check in Kernel subsystem in Intel CSME before version 11.8.60, 11.11.60, 11.22.60 or 12.0.20, or Intel(R) Server Platform
7.6
HIGH
CVE-2018-12190
>= 3.0 and < 3.1.60
Insufficient input validation in Intel(r) CSME subsystem before versions 11.8.60, 11.11.60, 11.22.60 or 12.0.20 or Intel(r) TXE be
6.7
MEDIUM
CVE-2018-12189
>= 3.0 and < 3.1.60
Unhandled exception in Content Protection subsystem in Intel CSME before versions 11.8.60, 11.11.60, 11.22.60 or 12.0.20 or Intel
4.4
MEDIUM
CVE-2018-12188
>= 3.0 and < 3.1.60
Insufficient input validation in Intel CSME before versions 11.8.60, 11.11.60, 11.22.60 or 12.0.20 or Intel TXE before version 3.1
4.6
MEDIUM
CVE-2018-3659
< 4.0
A vulnerability in Intel PTT module in Intel CSME firmware before version 12.0.5 and Intel TXE firmware before version 4.0 may all
6.8
MEDIUM
CVE-2018-3655
>= 3.0 and <= 3.1.50
A vulnerability in a subsystem in Intel CSME before version 11.21.55, Intel Server Platform Services before version 4.0 and Intel
7.3
HIGH
CVE-2017-5710
all versions
Multiple privilege escalations in kernel in Intel Trusted Execution Engine Firmware 3.0 allows unauthorized process to access priv
7.8
HIGH
CVE-2017-5707
all versions
Multiple buffer overflows in kernel in Intel Trusted Execution Engine Firmware 3.0 allow attacker with local access to the system
7.8
HIGH
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin