CVE-2018-12147 (converged_security_management_engine_firmware, server_platform_services_firmware, trusted_execution_engine_firmware)

Insufficient input validation in HECI subsystem in Intel(R) CSME before version 11.21.55, Intel? Server Platform Services before version 4.0 and Intel? Trusted Execution Engine Firmware before version 3.1.55 may allow a privileged user to potentially enable escalation of privileges via local access.

View Full Alert

Leave a Reply