Vulnerabilities > Intel > Active Management Technology Firmware > 12.0.5

DATE CVE VULNERABILITY TITLE RISK
2020-11-12 CVE-2020-8747 Out-of-bounds Read vulnerability in multiple products
Out-of-bounds read in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable information disclosure and/or denial of service via network access.
network
low complexity
intel netapp CWE-125
critical
 9.1
9.1
2020-11-12 CVE-2020-8746 Integer Overflow or Wraparound vulnerability in multiple products
Integer overflow in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable denial of service via adjacent access.
low complexity
intel netapp CWE-190
6.5
6.5
2020-11-12 CVE-2020-12356 Out-of-bounds Read vulnerability in multiple products
Out-of-bounds read in subsystem in Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow a privileged user to potentially enable information disclosure via local access.
local
low complexity
intel netapp CWE-125
4.4
4.4
2020-09-10 CVE-2020-8758 Improper buffer restrictions in network subsystem in provisioned Intel(R) AMT and Intel(R) ISM versions before 11.8.79, 11.12.79, 11.22.79, 12.0.68 and 14.0.39 may allow an unauthenticated user to potentially enable escalation of privilege via network access.
network
low complexity
intel netapp
critical
 9.8
9.8
2020-06-15 CVE-2020-0597 Out-of-bounds Read vulnerability in Intel products
Out-of-bounds read in IPv6 subsystem in Intel(R) AMT and Intel(R) ISM versions before 14.0.33 may allow an unauthenticated user to potentially enable denial of service via network access.
network
low complexity
intel CWE-125
7.5
7.5
2019-05-17 CVE-2019-0096 Out-of-bounds Write vulnerability in Intel Active Management Technology Firmware
Out of bound write vulnerability in subsystem for Intel(R) AMT before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 may allow an authenticated user to potentially enable escalation of privilege via adjacent network access.
low complexity
intel CWE-787
8.0
8.0
2019-05-17 CVE-2019-0094 Improper Input Validation vulnerability in Intel Active Management Technology Firmware
Insufficient input validation vulnerability in subsystem for Intel(R) AMT before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 may allow an unauthenticated user to potentially enable denial of service via adjacent network access.
low complexity
intel CWE-20
4.3
4.3
2019-05-17 CVE-2019-0092 Improper Input Validation vulnerability in Intel Active Management Technology Firmware
Insufficient input validation vulnerability in subsystem for Intel(R) AMT before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 may allow an unauthenticated user to potentially enable escalation of privilege via physical access.
low complexity
intel CWE-20
6.8
6.8