Improper Authentication in subsystem in Intel(R) CSME versions 12.0 through 12.0.48 (IOT only: 12.0.56), versions 13.0 through 13.0.20, versions 14.0 through 14.0.10 may allow a privileged user to potentially enable escalation of privilege, denial of service or information disclosure via local access.
References
Link | Resource |
---|---|
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00307.html | Vendor Advisory |
https://security.netapp.com/advisory/ntap-20200221-0005/ | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Information
Published : 2020-02-13 11:15
Updated : 2022-01-01 11:52
NVD link : CVE-2019-14598
Mitre link : CVE-2019-14598
JSON object : View
CWE
CWE-287
Improper Authentication
Products Affected
intel
- converged_security_management_engine_firmware
netapp
- steelstore_cloud_integrated_storage