CVE-2019-11100

MEDIUM

Intel AMT Firmware 11.0-11.8.70 - Unauthenticated Information Disclosure via Physical Access

Title source: llm
STIX 2.1

Description

Insufficient input validation in the subsystem for Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow an unauthenticated user to potentially enable information disclosure via physical access.

References (1)

Core 1

Scores

CVSS v3 4.6
EPSS 0.0036
EPSS Percentile 28.0%
Attack Vector PHYSICAL
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-20
Status published
Products (1)
intel/active_management_technology_firmware 11.0 - 11.8.70
Published Dec 18, 2019
Tracked Since Feb 18, 2026