Vulnerabilities > Intel > Endpoint Management Assistant > 1.3.2

DATE CVE VULNERABILITY TITLE RISK
2023-05-10 CVE-2022-45128 Incorrect Authorization vulnerability in Intel Endpoint Management Assistant
Improper authorization in the Intel(R) EMA software before version 1.9.0.0 may allow an authenticated user to potentially enable denial of service via local access.
local
low complexity
intel CWE-863
5.5
5.5
2023-02-16 CVE-2022-38056 Unspecified vulnerability in Intel Endpoint Management Assistant
Improper neutralization in the Intel(R) EMA software before version 1.8.1.0 may allow a privileged user to potentially enable escalation of privilege via network access.
local
low complexity
intel
5.3
5.3
2022-11-11 CVE-2022-26341 Insufficiently Protected Credentials vulnerability in Intel products
Insufficiently protected credentials in software in Intel(R) AMT SDK before version 16.0.4.1, Intel(R) EMA before version 1.7.1 and Intel(R) MC before version 2.3.2 may allow an authenticated user to potentially enable escalation of privilege via network access.
network
low complexity
intel CWE-522
8.8
8.8
2022-11-11 CVE-2022-30297 Cross-site Scripting vulnerability in Intel Endpoint Management Assistant
Cross-site scripting in the Intel(R) EMA software before version 1.8.0 may allow a privileged user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-79
7.8
7.8
2021-11-17 CVE-2021-0013 Improper Input Validation vulnerability in Intel Endpoint Management Assistant
Improper input validation for Intel(R) EMA before version 1.5.0 may allow an unauthenticated user to potentially enable denial of service via network access.
network
low complexity
intel CWE-20
5.0
5.0
2020-11-12 CVE-2020-12316 Insufficiently Protected Credentials vulnerability in Intel Endpoint Management Assistant 1.3.1/1.3.2/1.3.2.1
Insufficiently protected credentials in the Intel(R) EMA before version 1.3.3 may allow an authorized user to potentially enable information disclosure via local access.
local
low complexity
intel CWE-522
2.1
2.1
2020-11-12 CVE-2020-12315 Path Traversal vulnerability in Intel Endpoint Management Assistant 1.3.1/1.3.2/1.3.2.1
Path traversal in the Intel(R) EMA before version 1.3.3 may allow an unauthenticated user to potentially enable escalation of privilege via network access.
network
low complexity
intel CWE-22
7.5
7.5