CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-11097

Improper directory permissions in the installer for Intel(R) Management Engine Consumer Driver for Windows before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45,13.0.10 and 14.0.10; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow an authenticated user to potentially enable escalation of privilege via local access.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 26.4%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 4.6

References

Products affected by CVE-2019-11097

Intel » Trusted Execution Engine Firmware » Version: 3.0

cpe:2.3:o:intel:trusted_execution_engine_firmware:3.0
Intel » Trusted Execution Engine Firmware » Version: 3.1.50

cpe:2.3:o:intel:trusted_execution_engine_firmware:3.1.50
Intel » Trusted Execution Engine Firmware » Version: 3.1.60

cpe:2.3:o:intel:trusted_execution_engine_firmware:3.1.60
Intel » Trusted Execution Engine Firmware » Version: 3.1.65

cpe:2.3:o:intel:trusted_execution_engine_firmware:3.1.65
Intel » Trusted Execution Engine Firmware » Version: 4.0

cpe:2.3:o:intel:trusted_execution_engine_firmware:4.0
Intel » Trusted Execution Engine Firmware » Version: 4.0.10

cpe:2.3:o:intel:trusted_execution_engine_firmware:4.0.10
Intel » Trusted Execution Engine Firmware » Version: 4.0.15

cpe:2.3:o:intel:trusted_execution_engine_firmware:4.0.15
Intel » Trusted Execution Engine Firmware » Version: 4.0.5

cpe:2.3:o:intel:trusted_execution_engine_firmware:4.0.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-11097

Products

Pricing

Contact Us