CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-14598

Improper Authentication in subsystem in Intel(R) CSME versions 12.0 through 12.0.48 (IOT only: 12.0.56), versions 13.0 through 13.0.20, versions 14.0 through 14.0.10 may allow a privileged user to potentially enable escalation of privilege, denial of service or information disclosure via local access.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 50.0%

CVSS Severity

CVSS v3 Score 6.7

CVSS v2 Score 4.6

References

Products affected by CVE-2019-14598

Netapp » Steelstore Cloud Integrated Storage » Version: N/A

cpe:2.3:a:netapp:steelstore_cloud_integrated_storage:-
Intel » Converged Security Management Engine Firmware » Version: Any

cpe:2.3:o:intel:converged_security_management_engine_firmware:*
Intel » Converged Security Management Engine Firmware » Version: 12.0

cpe:2.3:o:intel:converged_security_management_engine_firmware:12.0
Intel » Converged Security Management Engine Firmware » Version: 14.0

cpe:2.3:o:intel:converged_security_management_engine_firmware:14.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-14598

Products

Pricing

Contact Us