CVE-2019-0091
Summary
| CVE | CVE-2019-0091 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2019-05-17 16:29:00 UTC |
| Updated | 2019-06-20 01:15:00 UTC |
| Description | Code injection vulnerability in installer for Intel(R) CSME before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 and Intel(R) TXE 3.1.65, 4.0.15 may allow an unprivileged user to potentially enable escalation of privilege via local access. |
Risk And Classification
Problem Types: CWE-94
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Intel | Converged Security And Management Engine | All | All | All | All |
| Application | Intel | Converged Security And Management Engine | All | All | All | All |
| Application | Intel | Trusted Execution Technology | All | All | All | All |
| Application | Intel | Trusted Execution Technology | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| support.f5.com/csp/article/K21423526 | CONFIRM | support.f5.com | |
| INTEL-SA-00213 | MISC | www.intel.com | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.