Improper initialization in subsystem for Intel(R) SPS versions before SPS_E3_04.01.04.109.0 and SPS_E3_04.08.04.070.0 may allow an authenticated user to potentially enable escalation of privilege and/or denial of service via local access.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HIntel Server Platform Services
APPIntelsps_e3_04.00.00.000.0 – sps_e3_04.01.04.109.0 (bez)sps_e3_04.08.00.000.0 – sps_e3_04.08.04.070.0 (bez)sps_e5_04.00.00.000.0 – sps_e5_04.01.04.380.0 (bez)sps_soc-a_04.00.00.000.0 – sps_soc-a_04.00.04.211.0 (bez)sps_soc-x_04.00.00.000.0 – sps_soc-x_04.00.04.128.0 (bez)
Related vulnerabilities
Active debug code in some Intel (R) SPS firmware before version SPS_E5_04.04.04.300.0 may allow an authenticat...
Improper initialization in subsystem for Intel(R) CSME versions before12.0.70, 13.0.40, 13.30.10, 14.0.45 and ...
Insufficient access control vulnerability in subsystem for Intel(R) CSME before versions 11.x, 12.0.35 Intel(R...
Uncontrolled resource consumption for some Intel(R) SPS firmware before version SPS_E5_06.01.04.002.0 may allo...
Improper condition check in some Intel(R) SPS firmware before version SPS_E3_06.00.03.300.0 may allow a privil...