CVE-2019-11132
HIGH WAF: High
CVSS 8.4
Published: 2019-12-18
CWE-79
Cross site scripting in subsystem in Intel(R) AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow a privileged user to potentially enable escalation of privilege via network access.
WAF Coverage Analysis
Cross-Site Scripting (XSS)
High WAF Coverage
OWASP: A03:2021 Injection
941xxx - XSS / XXE
Affected Software
| Vendor | Product | Version |
|---|---|---|
| intel | active_management_technology_firmware | 11.0 - 11.8.70 |
| intel | active_management_technology_firmware | 11.10 - 11.11.70 |
| intel | active_management_technology_firmware | 11.20 - 11.22.70 |
| intel | active_management_technology_firmware | 12.0 - 12.0.45 |
References
- www.intel.com (Vendor Advisory)