Insufficient input validation in Intel CSME before versions 11.8.60, 11.11.60, 11.22.60 or 12.0.20 or Intel TXE before version 3.1.60 or 4.0.10 may allow an unauthenticated user to potentially modify data via physical access.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2019-03-14 13:29
Updated : 2019-03-21 09:00
NVD link : CVE-2018-12188
Mitre link : CVE-2018-12188
JSON object : View
CWE
CWE-20
Improper Input Validation
Products Affected
intel
- converged_security_management_engine_firmware
- trusted_execution_engine_firmware