intel converged-security-management-engine-firmware CVE-2018-12147 vulnerability in Intel Products
Published on June 13, 2019

Insufficient input validation in HECI subsystem in Intel(R) CSME before version 11.21.55, Intel® Server Platform Services before version 4.0 and Intel® Trusted Execution Engine Firmware before version 3.1.55 may allow a privileged user to potentially enable escalation of privileges via local access.

NVD


Products Associated with CVE-2018-12147

Want to know whenever a new CVE is published for Intel products? stack.watch will email you.

Intel Converged Security Management Engine Firmware
 
Intel Server Platform Services Firmware
 
Intel Trusted Execution Engine Firmware
 

Exploit Probability

EPSS
0.05%
Percentile
13.46%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.