Vulnerability Database

296,138

Total vulnerabilities in the database

CVE-2018-3658

Multiple memory leaks in Intel AMT in Intel CSME firmware versions before 12.0.5 may allow an unauthenticated user with Intel AMT provisioned to potentially cause a partial denial of service via network access.

Published: Sep 12, 2018
Updated: Apr 13, 2023
CVE: CVE-2018-3658
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.3
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:N/A:P

CWEs:

CWE-772

Affected Software
References

Software	From	Fixed in
siemens / simatic_field_pg_m5_firmware	-	22.01.06
siemens / simatic_ipc427e_firmware	-	21.01.09
siemens / simatic_ipc477e_firmware	-	21.01.09
siemens / simatic_ipc547e_firmware	-	r1.30.0
siemens / simatic_pc547g_firmware	-	r1.23.0
siemens / simatic_ipc627d_firmware	-	19.02.11
siemens / simatic_ipc647d_firmware	-	19.01.14
siemens / simatic_ipc677d_firmware	-	19.02.11
siemens / simatic_ipc827d_firmware	-	19.02.11
siemens / simatic_ipc847d_firmware	-	19.01.14
siemens / simatic_itp1000_firmware	-	23.01.04
intel / manageability_engine_firmware	9.0.0.0	11.0
intel / active_management_technology_firmware	-	12.0.5
intel / converged_security_management_engine_firmware	11.0.0	12.0.5