CVE-2019-0091

Summary

Code injection vulnerability in installer for Intel(R) CSME before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 and Intel(R) TXE 3.1.65, 4.0.15 may allow an unprivileged user to potentially enable escalation of privilege via local access.

Affected Software

VendorProductVersion RangeStatus
n/aIntel(R) Converged Security & Management Engine (CSME), Intel (R) Trusted Execution Engine Interface (TXE)Versions before CSME 11.8.65, 11.11.65, 11.22.65, 12.0.35 and Intel(R) TXE 3.1.65, 4.0.15.affected

Weaknesses

  • Escalation of Privilege

ADP Enrichment

CVE Program Container

Additional References

References