CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-0093

Insufficient data sanitization vulnerability in HECI subsystem for Intel(R) CSME before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 and Intel(R) SPS before version SPS_E3_05.00.04.027.0 may allow a privileged user to potentially enable information disclosure via local access.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 33.5%

CVSS Severity

CVSS v3 Score 4.4

CVSS v2 Score 2.1

References

Products affected by CVE-2019-0093

Intel » Converged Security And Management Engine » Version: 11.11.0

cpe:2.3:a:intel:converged_security_and_management_engine:11.11.0
Intel » Converged Security And Management Engine » Version: 11.22.0

cpe:2.3:a:intel:converged_security_and_management_engine:11.22.0
Intel » Converged Security And Management Engine » Version: 11.8.0

cpe:2.3:a:intel:converged_security_and_management_engine:11.8.0
Intel » Converged Security And Management Engine » Version: 12.0

cpe:2.3:a:intel:converged_security_and_management_engine:12.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-0093

Products

Pricing

Contact Us