Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Intel Subscribe
Filtered by product Active Management Technology Firmware
Total 26 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-11107 1 Intel 1 Active Management Technology Firmware 2020-01-02 7.5 HIGH 9.8 CRITICAL
Insufficient input validation in the subsystem for Intel(R) AMT before version 12.0.45 may allow an unauthenticated user to potentially enable escalation of privilege via network access.
CVE-2019-11088 1 Intel 1 Active Management Technology Firmware 2019-12-31 5.8 MEDIUM 8.8 HIGH
Insufficient input validation in subsystem in Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.
CVE-2019-11132 1 Intel 1 Active Management Technology Firmware 2019-12-31 6.8 MEDIUM 8.4 HIGH
Cross site scripting in subsystem in Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow a privileged user to potentially enable escalation of privilege via network access.
CVE-2019-0097 1 Intel 1 Active Management Technology Firmware 2019-06-20 4.0 MEDIUM 4.9 MEDIUM
Insufficient input validation vulnerability in subsystem for Intel(R) AMT before version 12.0.35 may allow a privileged user to potentially enable denial of service via network access.
CVE-2018-12187 1 Intel 1 Active Management Technology Firmware 2019-04-23 5.0 MEDIUM 7.5 HIGH
Insufficient input validation in Intel(R) Active Management Technology (Intel(R) AMT) before version 11.8.60, 11.11.60, 11.22.60 or 12.0.20 may allow an unauthenticated user to potentially cause a denial of service via network access.
CVE-2017-5697 1 Intel 1 Active Management Technology Firmware 2017-06-27 4.3 MEDIUM 6.5 MEDIUM
Insufficient clickjacking protection in the Web User Interface of Intel AMT firmware versions before 9.1.40.1000, 9.5.60.1952, 10.0.50.1004, 11.0.0.1205, and 11.6.25.1129 potentially allowing a remote attacker to hijack users web clicks via attacker's crafted web page.