Vulnerabilities > Intel > Active Management Technology Firmware > 12.0.0

DATE CVE VULNERABILITY TITLE RISK
2020-06-15 CVE-2020-0540 Insufficiently Protected Credentials vulnerability in Intel Active Management Technology Firmware
Insufficiently protected credentials in Intel(R) AMT versions before 11.8.77, 11.12.77, 11.22.77 and 12.0.64 may allow an unauthenticated user to potentially enable information disclosure via network access.
network
low complexity
intel CWE-522
7.5
7.5
2020-06-15 CVE-2020-0538 Improper Input Validation vulnerability in Intel Active Management Technology Firmware
Improper input validation in subsystem for Intel(R) AMT versions before 11.8.77, 11.12.77, 11.22.77 and 12.0.64 may allow an unauthenticated user to potentially enable denial of service via network access.
network
low complexity
intel CWE-20
7.5
7.5
2020-06-15 CVE-2020-0537 Improper Input Validation vulnerability in Intel Active Management Technology Firmware
Improper input validation in subsystem for Intel(R) AMT versions before 11.8.77, 11.12.77, 11.22.77 and 12.0.64 may allow a privileged user to potentially enable denial of service via network access.
network
low complexity
intel CWE-20
4.9
4.9
2020-06-15 CVE-2020-0535 Improper Input Validation vulnerability in Intel Active Management Technology Firmware
Improper input validation in Intel(R) AMT versions before 11.8.76, 11.12.77, 11.22.77 and 12.0.64 may allow an unauthenticated user to potentially enable information disclosure via network access.
network
low complexity
intel CWE-20
5.3
5.3
2020-06-15 CVE-2020-0532 Improper Input Validation vulnerability in Intel Active Management Technology Firmware
Improper input validation in subsystem for Intel(R) AMT versions before 11.8.77, 11.12.77, 11.22.77 and 12.0.64 may allow an unauthenticated user to potentially enable denial of service or information disclosure via adjacent access.
low complexity
intel CWE-20
7.1
7.1
2020-06-15 CVE-2020-0531 Improper Input Validation vulnerability in Intel Active Management Technology Firmware
Improper input validation in Intel(R) AMT versions before 11.8.77, 11.12.77, 11.22.77 and 12.0.64 may allow an authenticated user to potentially enable information disclosure via network access.
network
low complexity
intel CWE-20
6.5
6.5
2019-12-18 CVE-2019-11132 Cross-site Scripting vulnerability in Intel Active Management Technology Firmware
Cross site scripting in subsystem in Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow a privileged user to potentially enable escalation of privilege via network access.
network
low complexity
intel CWE-79
8.4
8.4
2019-12-18 CVE-2019-11131 Unspecified vulnerability in Intel Active Management Technology Firmware
Logic issue in subsystem in Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow an unauthenticated user to potentially enable escalation of privilege via network access.
network
low complexity
intel
critical
 9.8
9.8
2019-12-18 CVE-2019-11107 Improper Input Validation vulnerability in Intel Active Management Technology Firmware
Insufficient input validation in the subsystem for Intel(R) AMT before version 12.0.45 may allow an unauthenticated user to potentially enable escalation of privilege via network access.
network
low complexity
intel CWE-20
critical
 9.8
9.8
2019-12-18 CVE-2019-11100 Improper Input Validation vulnerability in Intel Active Management Technology Firmware
Insufficient input validation in the subsystem for Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow an unauthenticated user to potentially enable information disclosure via physical access.
low complexity
intel CWE-20
4.6
4.6