Bypassing MEBx Authentication via Physical Access in Intel CSME and Intel Server Platform Services

Bypassing MEBx Authentication via Physical Access in Intel CSME and Intel Server Platform Services

CVE-2018-12192 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

Logic bug in Kernel subsystem in Intel CSME before version 11.8.60, 11.11.60, 11.22.60 or 12.0.20, or Intel(R) Server Platform Services before version SPS_E5_04.00.04.393.0 may allow an unauthenticated user to potentially bypass MEBx authentication via physical access.

Learn more about our Cis Benchmark Audit For Server Software.