Vulnerabilities > Intel > Active Management Technology Firmware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-06-15 | CVE-2020-0532 | Improper Input Validation vulnerability in Intel Active Management Technology Firmware Improper input validation in subsystem for Intel(R) AMT versions before 11.8.77, 11.12.77, 11.22.77 and 12.0.64 may allow an unauthenticated user to potentially enable denial of service or information disclosure via adjacent access. | 7.1 |
| 2019-12-18 | CVE-2019-11132 | Cross-site Scripting vulnerability in Intel Active Management Technology Firmware Cross site scripting in subsystem in Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow a privileged user to potentially enable escalation of privilege via network access. | 8.4 |
| 2019-12-18 | CVE-2019-11088 | Improper Input Validation vulnerability in Intel Active Management Technology Firmware Insufficient input validation in subsystem in Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access. | 8.8 |
| 2019-12-18 | CVE-2019-0166 | Improper Input Validation vulnerability in Intel Active Management Technology Firmware Insufficient input validation in the subsystem for Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow an unauthenticated user to potentially enable information disclosure via network access. | 7.5 |
| 2019-12-18 | CVE-2019-0131 | Improper Input Validation vulnerability in Intel Active Management Technology Firmware Insufficient input validation in subsystem in Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow an unauthenticated user to potentially enable denial of service or information disclosure via adjacent access. | 8.1 |
| 2019-05-17 | CVE-2019-0096 | Out-of-bounds Write vulnerability in Intel Active Management Technology Firmware Out of bound write vulnerability in subsystem for Intel(R) AMT before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 may allow an authenticated user to potentially enable escalation of privilege via adjacent network access. | 8.0 |
| 2019-03-14 | CVE-2018-12187 | Improper Input Validation vulnerability in Intel Active Management Technology Firmware Insufficient input validation in Intel(R) Active Management Technology (Intel(R) AMT) before version 11.8.60, 11.11.60, 11.22.60 or 12.0.20 may allow an unauthenticated user to potentially cause a denial of service via network access. | 7.5 |
| 2018-07-10 | CVE-2018-3628 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Intel Active Management Technology Firmware Buffer overflow in HTTP handler in Intel Active Management Technology in Intel Converged Security Manageability Engine Firmware 3.x, 4.x, 5.x, 6.x, 7.x, 8.x, 9.x, 10.x, and 11.x may allow an attacker to execute arbitrary code via the same subnet. | 8.8 |
| 2017-11-21 | CVE-2017-5729 | Unspecified vulnerability in Intel products Frame replay vulnerability in Wi-Fi subsystem in Intel Dual-Band and Tri-Band Wireless-AC Products allows remote attacker to replay frames via channel-based man-in-the-middle. | 7.4 |
| 2017-11-21 | CVE-2017-5712 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Buffer overflow in Active Management Technology (AMT) in Intel Manageability Engine Firmware 8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20 allows attacker with remote Admin access to the system to execute arbitrary code with AMT execution privilege. | 7.2 |