Vulnerabilities > Intel > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-01-17 | CVE-2019-14613 | Unspecified vulnerability in Intel Vtune Profiler 2017/2018/2019 Improper access control in driver for Intel(R) VTune(TM) Amplifier for Windows* before update 8 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2020-01-17 | CVE-2019-14601 | Incorrect Default Permissions vulnerability in Intel Raid web Console 3 4.186/7.009.011.000 Improper permissions in the installer for Intel(R) RWC 3 for Windows before version 7.010.009.000 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2019-12-18 | CVE-2019-11147 | Unspecified vulnerability in Intel products Insufficient access control in hardware abstraction driver for MEInfo software for Intel(R) CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.0, 14.0.10; TXEInfo software for Intel(R) TXE before versions 3.1.70 and 4.0.20; INTEL-SA-00086 Detection Tool version 1.2.7.0 or before; INTEL-SA-00125 Detection Tool version 1.0.45.0 or before may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2019-12-18 | CVE-2019-11132 | Cross-site Scripting vulnerability in Intel Active Management Technology Firmware Cross site scripting in subsystem in Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow a privileged user to potentially enable escalation of privilege via network access. | 8.4 |
| 2019-12-18 | CVE-2019-11104 | Improper Input Validation vulnerability in Intel products Insufficient input validation in MEInfo software for Intel(R) CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2019-12-18 | CVE-2019-11103 | Improper Input Validation vulnerability in Intel Converged Security Management Engine Firmware Insufficient input validation in firmware update software for Intel(R) CSME before versions 12.0.45,13.0.10 and 14.0.10 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2019-12-18 | CVE-2019-11097 | Incorrect Default Permissions vulnerability in Intel Trusted Execution Engine Firmware Improper directory permissions in the installer for Intel(R) Management Engine Consumer Driver for Windows before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45,13.0.10 and 14.0.10; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2019-12-18 | CVE-2019-11088 | Improper Input Validation vulnerability in Intel Active Management Technology Firmware Insufficient input validation in subsystem in Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access. | 8.8 |
| 2019-12-18 | CVE-2019-0169 | Out-of-bounds Write vulnerability in Intel products Heap overflow in subsystem in Intel(R) CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow an unauthenticated user to potentially enable escalation of privileges, information disclosure or denial of service via adjacent access. | 8.8 |
| 2019-12-18 | CVE-2019-0166 | Improper Input Validation vulnerability in Intel Active Management Technology Firmware Insufficient input validation in the subsystem for Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow an unauthenticated user to potentially enable information disclosure via network access. | 7.5 |