Vulnerabilities > Intel > Trusted Execution Engine > 4.0.25

DATE CVE VULNERABILITY TITLE RISK
2020-11-12 CVE-2020-8750 Use After Free vulnerability in Intel Trusted Execution Engine 3.0/3.1.75/4.0.25
Use after free in Kernel Mode Driver for Intel(R) TXE versions before 3.1.80 and 4.0.30 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-416
7.8
7.8
2020-11-12 CVE-2020-8744 Improper Initialization vulnerability in multiple products
Improper initialization in subsystem for Intel(R) CSME versions before12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25, Intel(R) TXE versions before 4.0.30 Intel(R) SPS versions before E3_05.01.04.200 may allow a privileged user to potentially enable escalation of privilege via local access.
local
low complexity
intel siemens CWE-665
7.8
7.8
2020-11-12 CVE-2020-12355 Authentication Bypass by Capture-replay vulnerability in Intel Trusted Execution Engine
Authentication bypass by capture-replay in RPMB protocol message authentication subsystem in Intel(R) TXE versions before 4.0.30 may allow an unauthenticated user to potentially enable escalation of privilege via physical access.
low complexity
intel CWE-294
6.8
6.8