CVE-2018-12199 (converged_security_management_engine_firmware, trusted_execution_engine_firmware)

Buffer overflow in an OS component in Intel CSME before versions 11.8.60, 11.11.60, 11.22.60 or 12.0.20 and Intel TXE version before 3.1.60 or 4.0.10 may allow a privileged user to potentially execute arbitrary code via physical access.
Source: NIST