- Home
- CVEs with nessus.description==The Intel Management Engine on the remote host has Active Management
Technology (AMT) enabled, and according to its self-reported version
in the banner, it is running Intel manageability firmware version 6.x
prior to 6.2.61.3535, 7.x prior to 7.1.91.3272, 8.x prior to
8.1.71.3608, 9.0.x or 9.1.x prior to 9.1.41.3024, 9.5.x prior to
9.5.61.3012, 10.0.x prior to 10.0.55.3000, 11.0.18.x prior to
11.0.18.3003, 11.0.22.x prior to 11.0.22.3001, 11.0.x prior to
11.0.25.3001, 11.6.12.x prior to 11.6.12.3202, or else 11.5.x or
11.6.x prior to 11.6.27.3264. It is, therefore, affected by a remote
code execution vulnerability due to insecure read and write
operations. An unauthenticated, remote attacker can exploit this to
execute arbitrary code.
Note that the vulnerability is only exploitable remotely if either
Active Management Technology (AMT), Intel Standard Manageability
(ISM), or Small Business Technology (SBT) is enabled. However, a local
attacker can still exploit the vulnerability even if these components
are disabled by simply re-enabling the components.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top