Use after free in DAL subsystem for Intel(R) CSME versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25, Intel(R) TXE 3.1.80, 4.0.30 may allow an authenticated user to potentially enable escalation of privileges via local access.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HIntel Converged Security And Manageability Engine
APPIntel< 11.8.8011.12.0 – 11.12.80 (bez)11.22.0 – 11.22.80 (bez)12.0 – 12.0.70 (bez)14.0 – 14.0.45 (bez)14.5.0 – 14.5.25 (bez)Intel Trusted Execution Technology
APPIntel3.1.804.0.30
Related vulnerabilities
Improper access control in Installer for Intel(R) CSME Driver for Windows versions before 11.8.80, 11.12.80, 1...
Code injection vulnerability in installer for Intel(R) CSME before versions 11.8.65, 11.11.65, 11.22.65, 12.0....
Multiple unspecified vulnerabilities in Intel system software for Trusted Execution Technology (TXT) allow att...
Improper input validation for some Intel(R) PROSet/Wireless WiFi, Intel vPro(R) CSME WiFi and Killer(TM) WiFi ...
Improper initialization in a subsystem in the Intel(R) CSME versions before 11.8.86, 11.12.86, 11.22.86, 12.0....