Intel CSME/TXE/Server Platform Services Subsystem integer overflow

entryeditHistoryDiffjsonxmlCTI

A vulnerability, which was classified as problematic, was found in Intel CSME, TXE and Server Platform Services (version unknown). Affected is an unknown code of the component Subsystem. Upgrading eliminates this vulnerability.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

Field

Commit Conf

Approve Conf

IDCommitedUserFieldChangeRemarksModeratedReasonC
1055380510/24/2020VulD...confirm_urlhttps://cert-portal.siemens.com/productcert/pdf/ssa-631949.pdfcve.mitre.org10/24/2020accepted70
1017145906/16/2020VulD...cve_nvd_summaryInteger overflow in subsystem for Intel(R) CSME versions before 11.8.77, 11.12.77, 11.22.77 and Intel(R) TXE versions before 3.1.75, 4.0.25 and Intel(R) Server Platform Services (SPS) versions before SPS_E5_04.01.04.380.0, SPS_SoC-X_04.00.04.128.0, SPS_SoC-A_04.00.04.211.0, SPS_E3_04.01.04.109.0, SPS_E3_04.08.04.070.0 may allow a privileged user to potentially enable denial of service via local access.mitre.org06/16/2020accepted100
1017145806/16/2020VulD...cve_assigned1572220800mitre.org06/16/2020accepted100
1017145206/16/2020VulD...cvss3_nvd_aHnist.gov06/16/2020accepted100
1017145106/16/2020VulD...cvss3_nvd_iNnist.gov06/16/2020accepted100
1017145006/16/2020VulD...cvss3_nvd_cNnist.gov06/16/2020accepted100
1017144906/16/2020VulD...cvss3_nvd_sUnist.gov06/16/2020accepted100
1017144806/16/2020VulD...cvss3_nvd_uiNnist.gov06/16/2020accepted100
1017144706/16/2020VulD...cvss3_nvd_prHnist.gov06/16/2020accepted100
1017144606/16/2020VulD...cvss3_nvd_acLnist.gov06/16/2020accepted100
1017144506/16/2020VulD...cvss3_nvd_avLnist.gov06/16/2020accepted100
1017143206/16/2020VulD...cvss2_nvd_aiPnist.gov06/16/2020accepted100
1017143106/16/2020VulD...cvss2_nvd_iiNnist.gov06/16/2020accepted100
1017143006/16/2020VulD...cvss2_nvd_ciNnist.gov06/16/2020accepted100
1017142906/16/2020VulD...cvss2_nvd_auNnist.gov06/16/2020accepted100
1017142806/16/2020VulD...cvss2_nvd_acLnist.gov06/16/2020accepted100
1017142706/16/2020VulD...cvss2_nvd_avLnist.gov06/16/2020accepted100
1017141706/16/2020VulD...cwe190 (memory corruption)06/16/2020accepted100
1017146806/16/2020VulD...cvss3_nvd_basescore4.4nist.gov06/16/2020accepted90
1017146706/16/2020VulD...cvss3_vuldb_rcX06/16/2020accepted90

Do you know our Splunk app?

Download it now for free!