← Back to CVEs
CVE-2018-3643
N/ADescription
A vulnerability in Power Management Controller firmware in systems using specific Intel(R) Converged Security and Management Engine (CSME) before version 11.8.55, 11.11.55, 11.21.55, 12.0.6 or Intel(R) Server Platform Services firmware before version 4.x.04 may allow an attacker with administrative privileges to uncover certain platform secrets via local access or to potentially execute arbitrary code.
CVE Details
CVSS v3.1 ScoreN/A
Published9/12/2018
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
intel:converged_security_management_engine_firmwareintel:server_platform_services_firmware
References
https://security.netapp.com/advisory/ntap-20180924-0002/(secure@intel.com)
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03873en_us(secure@intel.com)
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00131.html(secure@intel.com)
https://security.netapp.com/advisory/ntap-20180924-0002/(af854a3a-2127-422b-91ae-364da2661108)
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03873en_us(af854a3a-2127-422b-91ae-364da2661108)
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00131.html(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.