CVE-2019-11132
published 2019-12-18CVE-2019-11132: Cross site scripting in subsystem in Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow a privileged user to potentially enable…
high8.4CVSS 3.1
AVNACLPRHUIRSCCHIHAH
Cross site scripting in subsystem in Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow a privileged user to potentially enable escalation of privilege via network access.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| intel | active_management_technology_firmware | >= 11.0 < 11.8.70 | 11.8.70 |
| intel | active_management_technology_firmware | >= 11.10 < 11.11.70 | 11.11.70 |
| intel | active_management_technology_firmware | >= 11.20 < 11.22.70 | 11.22.70 |
| intel | active_management_technology_firmware | >= 12.0 < 12.0.45 | 12.0.45 |