CVE-2018-12147

Summary

Insufficient input validation in HECI subsystem in Intel(R) CSME before version 11.21.55, Intel® Server Platform Services before version 4.0 and Intel® Trusted Execution Engine Firmware before version 3.1.55 may allow a privileged user to potentially enable escalation of privileges via local access.

Affected Software

VendorProductVersion RangeStatus
n/aIntel(R) CSME Assets Advisorybefore 11.21.55affected

Weaknesses

  • Escalation of Privilege

ADP Enrichment

CVE Program Container

Additional References

References