Intel CSME/TXE DAL Subsystem input validation

entryeditHistoryDiffjsonxmlCTI

A vulnerability has been found in Intel CSME and TXE and classified as problematic. This vulnerability affects an unknown part of the component DAL Subsystem. Upgrading eliminates this vulnerability.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

Field

Commit Conf

Approve Conf

IDCommitedUserFieldChangeRemarksModeratedReasonC
1055379710/24/2020VulD...confirm_urlhttps://security.netapp.com/advisory/ntap-20200611-0006/cve.mitre.org10/24/2020accepted70
1017100806/16/2020VulD...cve_nvd_summaryImproper input validation in the DAL subsystem for Intel(R) CSME versions before 11.8.77, 11.12.77, 11.22.77, 12.0.64, 13.0.32,14.0.33 and Intel(R) TXE versions before 3.1.75 and 4.0.25 may allow an unauthenticated user to potentially enable information disclosure via network access.mitre.org06/16/2020accepted100
1017100706/16/2020VulD...cve_assigned1572220800mitre.org06/16/2020accepted100
1017100106/16/2020VulD...cvss3_nvd_aNnist.gov06/16/2020accepted100
1017100006/16/2020VulD...cvss3_nvd_iNnist.gov06/16/2020accepted100
1017099906/16/2020VulD...cvss3_nvd_cHnist.gov06/16/2020accepted100
1017099806/16/2020VulD...cvss3_nvd_sUnist.gov06/16/2020accepted100
1017099706/16/2020VulD...cvss3_nvd_uiNnist.gov06/16/2020accepted100
1017099606/16/2020VulD...cvss3_nvd_prNnist.gov06/16/2020accepted100
1017099506/16/2020VulD...cvss3_nvd_acLnist.gov06/16/2020accepted100
1017099406/16/2020VulD...cvss3_nvd_avNnist.gov06/16/2020accepted100
1017098106/16/2020VulD...cvss2_nvd_aiNnist.gov06/16/2020accepted100
1017098006/16/2020VulD...cvss2_nvd_iiNnist.gov06/16/2020accepted100
1017097906/16/2020VulD...cvss2_nvd_ciPnist.gov06/16/2020accepted100
1017097806/16/2020VulD...cvss2_nvd_auNnist.gov06/16/2020accepted100
1017097706/16/2020VulD...cvss2_nvd_acLnist.gov06/16/2020accepted100
1017097606/16/2020VulD...cvss2_nvd_avNnist.gov06/16/2020accepted100
1017096606/16/2020VulD...cwe20 (privilege escalation)06/16/2020accepted100
1017101706/16/2020VulD...cvss3_nvd_basescore7.5nist.gov06/16/2020accepted90
1017101606/16/2020VulD...cvss3_vuldb_rcX06/16/2020accepted90

Do you know our Splunk app?

Download it now for free!