cbcvebase.
CVE-2019-0091
published 2019-05-17

CVE-2019-0091: Code injection vulnerability in installer for Intel(R) CSME before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 and Intel(R) TXE 3.1.65, 4.0.15 may allow an…

high7.8CVSS 3.0
AVLACLPRLUINSUCHIHAH
Code injection vulnerability in installer for Intel(R) CSME before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 and Intel(R) TXE 3.1.65, 4.0.15 may allow an unprivileged user to potentially enable escalation of privilege via local access.

Affected

6 ranges
VendorProductVersion rangeFixed in
intelconverged_security_and_management_engine>= 11.11.0 < 11.11.6511.11.65
intelconverged_security_and_management_engine>= 11.22.0 < 11.22.6511.22.65
intelconverged_security_and_management_engine>= 11.8.0 < 11.8.6511.8.65
intelconverged_security_and_management_engine>= 12.0 < 12.0.3512.0.35
inteltrusted_execution_technology>= 3.1.0 < 3.1.653.1.65
inteltrusted_execution_technology>= 4.0 < 4.0.154.0.15