CVE-2018-3627Corporation Intel Converged Security Management Engine vulnerability

3 documents3 sources
Severity
8.2HIGHNVD
EPSS
0.2%
top 56.93%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Intel Corporation Intel Converged Security Management EngineIntel Converged Security Management Engine Firmware
Timeline
PublishedJul 10
Latest updateMay 13

Description

Logic bug in Intel Converged Security Management Engine 11.x may allow an attacker to execute arbitrary code via local privileged access.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:HExploitability: 1.5 | Impact: 6.0

Affected Packages2 packages

🔴Vulnerability Details

2
GHSA
GHSA-g3mv-54v8-vv75: Logic bug in Intel Converged Security Management Engine 112022-05-13
CVEList
CVE-2018-3627: Logic bug in Intel Converged Security Management Engine 112018-07-10
CVE-2018-3627 — HIGH severity | cvebase