Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1110 CNY

100%
Buy Us a Coffee

CVE-2018-12191

EPSS 0.23% · P46
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2018-12191

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Bounds check in Kernel subsystem in Intel CSME before version 11.8.60, 11.11.60, 11.22.60 or 12.0.20, or Intel(R) Server Platform Services before versions 4.00.04.383 or SPS 4.01.02.174, or Intel(R) TXE before versions 3.1.60 or 4.0.10 may allow an unauthenticated user to potentially execute arbitrary code via physical access.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
多款Intel产品缓冲区错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Intel Converged Security and Management Engine(CSME)等都是美国英特尔(Intel)公司的产品。Intel Converged Security and Management Engine是一款安全管理引擎。Intel Server Platform Services是一款服务器平台服务程序。Intel TXE是一款使用在CPU(中央处理器)中具有硬件验证功能的信任执行引擎。Kernel subsystem是其中的一个内核子系统。 Intel CSME、I
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
Intel CorporationIntel(R) CSME, Server Platform Services, Trusted Execution Engine and Intel(R) Active Management Technology Multiple versions. -

II. Public POCs for CVE-2018-12191

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2018-12191

登录查看更多情报信息。

Vendor Advisories for CVE-2018-12191 (1)

Other References for CVE-2018-12191 (2)

Same Patch Batch · Intel Corporation · 2019-03-14 · 39 CVEs total

CVE-2018-12222Intel Graphics Driver for Windows 输入验证错误漏洞
CVE-2018-12213Intel Graphics Driver for Windows 缓冲区错误漏洞
CVE-2018-12214Intel Graphics Driver for Windows 缓冲区错误漏洞
CVE-2018-12215Intel Graphics Driver for Windows 输入验证错误漏洞
CVE-2018-12216Intel Graphics Driver for Windows 输入验证错误漏洞
CVE-2018-12217Intel Graphics Driver for Windows 权限许可和访问控制问题漏洞
CVE-2018-12218Intel Graphics Driver for Windows 缓冲区错误漏洞
CVE-2018-12219Intel Graphics Driver for Windows 输入验证错误漏洞
CVE-2018-12220Intel Graphics Driver for Windows 权限许可和访问控制问题漏洞
CVE-2018-12221Intel Graphics Driver for Windows 输入验证错误漏洞
CVE-2018-12212Intel Graphics Driver for Windows 缓冲区错误漏洞
CVE-2018-12223Intel Graphics Driver for Windows 访问控制错误漏洞
CVE-2018-12224Intel Graphics Driver for Windows 信息泄露漏洞
CVE-2018-18089Intel Graphics Driver for Windows 缓冲区错误漏洞
CVE-2018-18090Intel Graphics Driver for Windows 缓冲区错误漏洞
CVE-2018-18091Intel Graphics Driver for Windows 资源管理错误漏洞
CVE-2019-0121Intel Matrix Storage Manager 权限许可和访问控制问题漏洞
CVE-2019-0122Intel SGX SDK 安全漏洞
CVE-2019-0129Intel USB 3.0 Creator Utility 权限许可和访问控制漏洞
CVE-2018-12201多款Intel产品缓冲区错误漏洞

Showing top 20 of 39 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: Intel(R) CSME, Server Platform Services, Trusted Execution Engine and Intel(R) Active Management Technology
Same vendor: Intel Corporation

V. Comments for CVE-2018-12191

No comments yet

Leave a comment