cbcvebase.
CVE-2019-11088
published 2019-12-18

CVE-2019-11088: Insufficient input validation in subsystem in Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow an unauthenticated user to…

high8.8CVSS 3.1
AVAACLPRNUINSUCHIHAH
Insufficient input validation in subsystem in Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

Affected

4 ranges
VendorProductVersion rangeFixed in
intelactive_management_technology_firmware>= 11.0 < 11.8.7011.8.70
intelactive_management_technology_firmware>= 11.10 < 11.11.7011.11.70
intelactive_management_technology_firmware>= 11.20 < 11.22.7011.22.70
intelactive_management_technology_firmware>= 12.0 < 12.0.4512.0.45