Arbitrary Code Execution via Buffer Overflow in Intel Active Management Technology

Arbitrary Code Execution via Buffer Overflow in Intel Active Management Technology

CVE-2018-3628 · HIGH Severity

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Buffer overflow in HTTP handler in Intel Active Management Technology in Intel Converged Security Manageability Engine Firmware 3.x, 4.x, 5.x, 6.x, 7.x, 8.x, 9.x, 10.x, and 11.x may allow an attacker to execute arbitrary code via the same subnet.

Learn more about our Web Application Penetration Testing UK.