CVE-2018-3655
published 2018-09-12CVE-2018-3655: A vulnerability in a subsystem in Intel CSME before version 11.21.55, Intel Server Platform Services before version 4.0 and Intel Trusted Execution Engine…
high7.3CVSS 3.0
AVPACLPRNUINSCCHIHAN
A vulnerability in a subsystem in Intel CSME before version 11.21.55, Intel Server Platform Services before version 4.0 and Intel Trusted Execution Engine Firmware before version 3.1.55 may allow an unauthenticated user to potentially modify or disclose information via physical access.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| intel | converged_security_management_engine_firmware | 11.0 – 11.8.50 | — |
| intel | converged_security_management_engine_firmware | 11.10 – 11.11.50 | — |
| intel | converged_security_management_engine_firmware | 11.20 – 11.21.51 | — |
| intel | server_platform_services_firmware | < 4.0 | 4.0 |
| intel | trusted_execution_engine_firmware | 3.0 – 3.1.50 | — |