Improper Authentication in Intel AMT Subsystem
CVE-2021-33159

6.7MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Amt
Vendor: CVE Published:; 11 November 2022

Summary

The vulnerability in Intel Active Management Technology (AMT) arises from improper authentication, which could allow a privileged user to gain elevated access. This flaw affects multiple versions of AMT, enabling potential escalation of privilege through local access. Users and organizations utilizing Intel AMT should review their systems against the listed affected versions and take necessary precautions to mitigate risks. For detailed information, refer to Intel's security advisory.

Affected Version(s)

Intel(R) AMT before versions 11.8.93, 11.22.93, 11.12.93, 12.0.92, 14.1.67, 15.0.42, 16.1.25

References

https://www.intel.com/content/www/us/en/security-center/a...

CVSS V3.1

Score:

6.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 11, 2022
Vulnerability Reserved
May 18, 2021