Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
Vulnerability Details :

CVE-2018-12169

Summary
Assigner-intel
Assigner Org ID-6dda929c-bb53-4a77-a76d-48e79601a1ce
Published At-21 Sep, 2018 | 20:00
Updated At-05 Aug, 2024 | 08:30
Rejected At-
Credits

Platform sample code firmware in 4th Generation Intel Core Processor, 5th Generation Intel Core Processor, 6th Generation Intel Core Processor, 7th Generation Intel Core Processor and 8th Generation Intel Core Processor contains a logic error which may allow physical attacker to potentially bypass firmware authentication.

Vendors
-
Not available
Products
-
Metrics (CVSS)
VersionBase scoreBase severityVector
Weaknesses
Attack Patterns
Solution/Workaround
References
HyperlinkResource Type
EPSS History
Score
Latest Score
-
N/A
No data available for selected date range
Percentile
Latest Percentile
-
N/A
No data available for selected date range
Stakeholder-Specific Vulnerability Categorization (SSVC)
▼Common Vulnerabilities and Exposures (CVE)
cve.org
Assigner:intel
Assigner Org ID:6dda929c-bb53-4a77-a76d-48e79601a1ce
Published At:21 Sep, 2018 | 20:00
Updated At:05 Aug, 2024 | 08:30
Rejected At:
▼CVE Numbering Authority (CNA)

Platform sample code firmware in 4th Generation Intel Core Processor, 5th Generation Intel Core Processor, 6th Generation Intel Core Processor, 7th Generation Intel Core Processor and 8th Generation Intel Core Processor contains a logic error which may allow physical attacker to potentially bypass firmware authentication.

Affected Products
Vendor
n/a
Product
n/a
Versions
Affected
  • n/a
Problem Types
TypeCWE IDDescription
textN/An/a
Type: text
CWE ID: N/A
Description: n/a
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
http://www.securityfocus.com/bid/105387
vdb-entry
x_refsource_BID
https://support.lenovo.com/us/en/solutions/LEN-20527
x_refsource_CONFIRM
https://edk2-docs.gitbooks.io/security-advisory/content/unauthenticated-firmware-chain-of-trust-bypass.html
x_refsource_CONFIRM
Hyperlink: http://www.securityfocus.com/bid/105387
Resource:
vdb-entry
x_refsource_BID
Hyperlink: https://support.lenovo.com/us/en/solutions/LEN-20527
Resource:
x_refsource_CONFIRM
Hyperlink: https://edk2-docs.gitbooks.io/security-advisory/content/unauthenticated-firmware-chain-of-trust-bypass.html
Resource:
x_refsource_CONFIRM
▼Authorized Data Publishers (ADP)
CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
http://www.securityfocus.com/bid/105387
vdb-entry
x_refsource_BID
x_transferred
https://support.lenovo.com/us/en/solutions/LEN-20527
x_refsource_CONFIRM
x_transferred
https://edk2-docs.gitbooks.io/security-advisory/content/unauthenticated-firmware-chain-of-trust-bypass.html
x_refsource_CONFIRM
x_transferred
Hyperlink: http://www.securityfocus.com/bid/105387
Resource:
vdb-entry
x_refsource_BID
x_transferred
Hyperlink: https://support.lenovo.com/us/en/solutions/LEN-20527
Resource:
x_refsource_CONFIRM
x_transferred
Hyperlink: https://edk2-docs.gitbooks.io/security-advisory/content/unauthenticated-firmware-chain-of-trust-bypass.html
Resource:
x_refsource_CONFIRM
x_transferred
Information is not available yet
▼National Vulnerability Database (NVD)
nvd.nist.gov
Source:secure@intel.com
Published At:21 Sep, 2018 | 20:29
Updated At:20 Dec, 2018 | 13:59

Platform sample code firmware in 4th Generation Intel Core Processor, 5th Generation Intel Core Processor, 6th Generation Intel Core Processor, 7th Generation Intel Core Processor and 8th Generation Intel Core Processor contains a logic error which may allow physical attacker to potentially bypass firmware authentication.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary3.07.6HIGH
CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Primary2.04.6MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
Type: Primary
Version: 3.0
Base score: 7.6
Base severity: HIGH
Vector:
CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Type: Primary
Version: 2.0
Base score: 4.6
Base severity: MEDIUM
Vector:
AV:L/AC:L/Au:N/C:P/I:P/A:P
CPE Matches
Intel Corporation
intel
>>core_i3>>4000m
cpe:2.3:h:intel:core_i3:4000m:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4005u
cpe:2.3:h:intel:core_i3:4005u:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4010u
cpe:2.3:h:intel:core_i3:4010u:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4010y
cpe:2.3:h:intel:core_i3:4010y:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4012y
cpe:2.3:h:intel:core_i3:4012y:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4020y
cpe:2.3:h:intel:core_i3:4020y:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4025u
cpe:2.3:h:intel:core_i3:4025u:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4030u
cpe:2.3:h:intel:core_i3:4030u:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4030y
cpe:2.3:h:intel:core_i3:4030y:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4100e
cpe:2.3:h:intel:core_i3:4100e:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4100m
cpe:2.3:h:intel:core_i3:4100m:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4100u
cpe:2.3:h:intel:core_i3:4100u:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4102e
cpe:2.3:h:intel:core_i3:4102e:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4110e
cpe:2.3:h:intel:core_i3:4110e:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4110m
cpe:2.3:h:intel:core_i3:4110m:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4112e
cpe:2.3:h:intel:core_i3:4112e:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4120u
cpe:2.3:h:intel:core_i3:4120u:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4130
cpe:2.3:h:intel:core_i3:4130:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4130t
cpe:2.3:h:intel:core_i3:4130t:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4150
cpe:2.3:h:intel:core_i3:4150:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4150t
cpe:2.3:h:intel:core_i3:4150t:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4158u
cpe:2.3:h:intel:core_i3:4158u:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4160
cpe:2.3:h:intel:core_i3:4160:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4160t
cpe:2.3:h:intel:core_i3:4160t:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4170
cpe:2.3:h:intel:core_i3:4170:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4170t
cpe:2.3:h:intel:core_i3:4170t:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4330
cpe:2.3:h:intel:core_i3:4330:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4330t
cpe:2.3:h:intel:core_i3:4330t:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4330te
cpe:2.3:h:intel:core_i3:4330te:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4340
cpe:2.3:h:intel:core_i3:4340:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4340te
cpe:2.3:h:intel:core_i3:4340te:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4350
cpe:2.3:h:intel:core_i3:4350:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4350t
cpe:2.3:h:intel:core_i3:4350t:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4360
cpe:2.3:h:intel:core_i3:4360:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4360t
cpe:2.3:h:intel:core_i3:4360t:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4370
cpe:2.3:h:intel:core_i3:4370:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>4370t
cpe:2.3:h:intel:core_i3:4370t:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>5005u
cpe:2.3:h:intel:core_i3:5005u:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>5010u
cpe:2.3:h:intel:core_i3:5010u:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>5015u
cpe:2.3:h:intel:core_i3:5015u:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>5020u
cpe:2.3:h:intel:core_i3:5020u:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>5157u
cpe:2.3:h:intel:core_i3:5157u:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>6006u
cpe:2.3:h:intel:core_i3:6006u:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>6098p
cpe:2.3:h:intel:core_i3:6098p:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>6100
cpe:2.3:h:intel:core_i3:6100:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>6100e
cpe:2.3:h:intel:core_i3:6100e:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>6100h
cpe:2.3:h:intel:core_i3:6100h:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>6100t
cpe:2.3:h:intel:core_i3:6100t:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>6100te
cpe:2.3:h:intel:core_i3:6100te:*:*:*:*:*:*:*
Intel Corporation
intel
>>core_i3>>6100u
cpe:2.3:h:intel:core_i3:6100u:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-287Primarynvd@nist.gov
CWE ID: CWE-287
Type: Primary
Source: nvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://www.securityfocus.com/bid/105387secure@intel.com
Third Party Advisory
VDB Entry
https://edk2-docs.gitbooks.io/security-advisory/content/unauthenticated-firmware-chain-of-trust-bypass.htmlsecure@intel.com
Third Party Advisory
https://support.lenovo.com/us/en/solutions/LEN-20527secure@intel.com
Mitigation
Third Party Advisory
Hyperlink: http://www.securityfocus.com/bid/105387
Source: secure@intel.com
Resource:
Third Party Advisory
VDB Entry
Hyperlink: https://edk2-docs.gitbooks.io/security-advisory/content/unauthenticated-firmware-chain-of-trust-bypass.html
Source: secure@intel.com
Resource:
Third Party Advisory
Hyperlink: https://support.lenovo.com/us/en/solutions/LEN-20527
Source: secure@intel.com
Resource:
Mitigation
Third Party Advisory

Change History

0
Information is not available yet

Similar CVEs

485Records found
CVE-2020-8684
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.06% / 17.29%
||
7 Day CHG~0.00%
Published-13 Aug, 2020 | 03:16
Updated-04 Aug, 2024 | 10:03
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper access control in firmware for Intel(R) PAC with Arria(R) 10 GX FPGA before Intel Acceleration Stack version 1.2.1 may allow a privileged user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-programmable_acceleration_card_with_arria_10_gx_fpgaacceleration_stackIntel(R) PAC with Arria(R) 10 GX FPGA Advisory
CVE-2020-8750
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.06% / 18.64%
||
7 Day CHG~0.00%
Published-12 Nov, 2020 | 18:07
Updated-04 Aug, 2024 | 10:12
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Use after free in Kernel Mode Driver for Intel(R) TXE versions before 3.1.80 and 4.0.30 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-trusted_execution_engineIntel(R) TXE
CWE ID-CWE-416
Use After Free
CVE-2020-8733
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.06% / 19.77%
||
7 Day CHG~0.00%
Published-13 Aug, 2020 | 02:22
Updated-04 Aug, 2024 | 10:12
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper buffer restrictions in the firmware for Intel(R) Server Board M10JNP2SB before version 7.210 may allow a privileged user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-m10jnp2sb_firmwarem10jnp2sbIntel(R) Server Board M10JNP2SB Advisory
CVE-2020-8676
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.06% / 19.77%
||
7 Day CHG~0.00%
Published-12 Nov, 2020 | 18:00
Updated-04 Aug, 2024 | 10:03
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper access control in the Intel(R) Visual Compute Accelerator 2, all versions, may allow a privileged user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-visual_compute_accelerator_2_firmwarevisual_compute_accelerator_2versions
CVE-2020-8763
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.04% / 9.90%
||
7 Day CHG~0.00%
Published-13 Aug, 2020 | 02:14
Updated-04 Aug, 2024 | 10:12
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper permissions in the installer for the Intel(R) RealSense(TM) D400 Series UWP driver for Windows* 10 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aMicrosoft CorporationIntel Corporation
Product-realsense_d435_firmwarerealsense_d415_firmwarerealsense_d435i_firmwarewindows_10Intel(R) RealSense(TM) D400 Series Advisory
CWE ID-CWE-276
Incorrect Default Permissions
CVE-2020-8336
Matching Score-8
Assigner-Lenovo Group Ltd.
ShareView Details
Matching Score-8
Assigner-Lenovo Group Ltd.
CVSS Score-6.4||MEDIUM
EPSS-0.05% / 15.94%
||
7 Day CHG~0.00%
Published-09 Jun, 2020 | 19:50
Updated-16 Sep, 2024 | 19:56
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Lenovo implemented Intel CSME Anti-rollback ARB protections on some ThinkPad models to prevent roll back of CSME Firmware in flash.

Action-Not Available
Vendor-Lenovo Group Limited
Product-thinkpad_t490_\(20qx\)thinkpad_x1_extreme_\(20mx\)thinkpad_e15thinkpad_l13_1st_genthinkpad_e490thinkpad_p1_\(20qx\)thinkpad_p1_\(20qx\)_firmwarethinkpad_e590_firmwarethinkpad_p53s_\(20nx\)_firmwarethinkpad_t590_\(20nx\)thinkpad_t490_\(20rx\)thinkpad_x390_yogathinkpad_x1_extreme_\(20mx\)_firmwarethinkpad_e14thinkpad_p72_\(20mx\)_firmwarethinkpad_l590thinkpad_p53_\(20qx\)_firmwarethinkpad_x1_carbon_\(20rx\)thinkpad_s2_yoga_4th_genthinkpad_x1_carbon_\(20qx\)_firmwarethinkpad_l390_yoga_firmwarethinkpad_r490_firmwarethinkpad_p43s_\(20rx\)thinkpad_x1_yoga_\(20qx\)_firmwarethinkpad_t490_\(20nx\)thinkpad_r590thinkpad_p1_\(20mx\)_firmwarethinkpad_x390_\(20qx\)thinkpad_e15_firmwarethinkpad_p43s_\(20rx\)_firmwarethinkpad_r14_firmwarethinkpad_e490s_firmwarethinkpad_s3_gen_2thinkpad_t590_\(20nx\)_firmwarethinkpad_x1_carbon_\(20rx\)_firmwarethinkpad_p73_\(20qx\)thinkpad_r14thinkpad_x1_yoga_\(20qx\)thinkpad_p72_\(20mx\)thinkpad_p73_\(20qx\)_firmwarethinkpad_s3_gen_2_firmwarethinkpad_t490_\(20qx\)_firmwarethinkpad_e490_firmwarethinkpad_s3_firmwarethinkpad_l1415_gen_1thinkpad_x390_\(20sx\)thinkpad_x390_yoga_firmwarethinkpad_r590_firmwarethinkpad_x1_extreme_\(20qx\)_firmwarethinkpad_l390_yogathinkpad_l13_1st_gen_firmwarethinkpad_l490_firmwarethinkpad_x390_\(20qx\)_firmwarethinkpad_x1_extreme_\(20qx\)thinkpad_l1415_gen_1_firmwarethinkpad_p52_\(20mx\)thinkpad_l490thinkpad_s3thinkpad_x1_yoga_\(20sx\)thinkpad_r490thinkpad_x390_\(20sx\)_firmwarethinkpad_t490_\(20rx\)_firmwarethinkpad_p1_\(20mx\)thinkpad_l590_firmwarethinkpad_e590thinkpad_t490_\(20nx\)_firmwarethinkpad_e14_firmwarethinkpad_x1_yoga_\(20sx\)_firmwarethinkpad_e490sthinkpad_t490s_\(20nx\)_firmwarethinkpad_p53s_\(20nx\)thinkpad_p52_\(20mx\)_firmwarethinkpad_t490s_\(20nx\)thinkpad_x1_carbon_\(20qx\)thinkpad_p53_\(20qx\)thinkpad_s2_yoga_4th_gen_firmwareBIOS
CVE-2020-8323
Matching Score-8
Assigner-Lenovo Group Ltd.
ShareView Details
Matching Score-8
Assigner-Lenovo Group Ltd.
CVSS Score-6.4||MEDIUM
EPSS-0.05% / 15.20%
||
7 Day CHG~0.00%
Published-09 Jun, 2020 | 19:50
Updated-16 Sep, 2024 | 23:55
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A potential vulnerability in the SMI callback function used in the Legacy SD driver in some Lenovo ThinkPad, ThinkStation, and Lenovo Notebook models may allow arbitrary code execution.

Action-Not Available
Vendor-Lenovo Group Limited
Product-thinkpad_l460_firmwarethinkpad_w541v110-15astv730-13ikb720s-15ikb_firmwarethinkpad_e49014iwl_firmwarethinkpad_p51smiix_720-12ikb_firmwarewei5-15ikbthinkpad_p53thinkpad_e575thinkpad_p72_firmwarethinkpad_x240s_firmwarethinkpad_l590v110-14astthinkpad_l460thinkpad_p52thinkpad_e560p_firmwarethinkpad_e475thinkpad_s2_yoga_4th_genthinkpad_p70s145-14ast_firmwarethinkpad_e470_firmwarethinkpad_11ethinkpad_t460pthinkpad_e15_firmwarethinkpad_p1thinkpad_e460thinkpad_x140ethinkpad_x1_tablet_firmwarethinkpad_l380_yoga_firmwarethinkpad_x280thinkpad_x390c640-iml_firmwarethinkpad_s540thinkpad_r14thinkpad_s3_gen_2_firmwarethinkpad_l470_firmwarev310-15igmv130-15ikb_firmwarethinkpad_s3_firmwares145-15ast_firmwarethinkpad_t490_firmwarethinkpad_l380_firmwarethinkpad_r590_firmwarethinkpad_t560_firmwarethinkpad_t580thinkpad_l390_yogac640-imlv730-13isk_firmwareyoga_s940-14iwl_firmwarethinkpad_s5_2nd_gen_firmwarethinkpad_x1_yogathinkpad_e485_firmwarethinkpad_x240_firmwarethinkpad_t570_firmware6_pro-13-iwlxx-14api_qc_2019thinkpad_yoga_11e_5th_genthinkpad_13_firmwaremiix_720-12ikbthinkpad_e585thinkpad_l570_firmwarethinkpad_w540_firmwarethinkpad_a475_firmwarethinkpad_x380_yoga_firmwares145-15apithinkpad_a485_firmwarethinkpad_13_2nd_genthinkpad_w540thinkpad_e490sv330-15iskwei5-15ikb_firmwareyoga_s940-14iwl340c-15astthinkpad_11e_yoga_gen_6_firmwarethinkpad_s540_firmwarev730-15ikb_firmwarethinkpad_p52_firmware330-15astk32-80_kblthinkpad_s2_yoga_4th_gen_firmwarethinkpad_a275thinkpad_t580_firmwarethinkbook_13s-iwl_firmwarethinkpad_e485thinkpad_e15v130-15igm_firmwarethinkpad_a485v340-iml_firmwarethinkpad_s2_yoga_3rd_gen_firmware340c-15apithinkpad_t25thinkpad_t460sthinkpad_t495s_firmwarethinkpad_x390_yogathinkpad_s1_yoga720s_touch-15ikb_firmwarethinkpad_e570thinkpad_s5_2nd_genthinkpad_e560thinkpad_e555thinkpad_x1_extreme_firmwarethinkpad_t440thinkpad_yoga_11e_5th_gen_firmwarethinkpad_e580v330-15igm_firmwarethinkpad_r14_firmwarethinkpad_p71v110-15ast_firmwarethinkpad_s3_gen_2e53-80v540s-13thinkpad_e480_firmwarethinkpad_p51s_firmwarethinkbook_13s-iwlthinkpad_x250thinkpad_t540pthinkpad_t540_firmwares145-14api_firmwarethinkpad_t540p_firmware6_pro-14-iwl_firmwarev340-imlthinkpad_x395thinkpad_x1_carbon_\(20ax\)_firmwarethinkpad_t460_firmwarethinkpad_t460s_firmwarethinkpad_x270_firmwares145-14ast340c-15ast_firmwarek32-80_sklthinkpad_s2_yoga_3rd_genthinkpad_s1thinkpad_helix_firmwarethinkpad_l490thinkpad_t480s_firmwarethinkpad_s3_3rd_genthinkpad_p71_firmware6_pro-13-iwl_firmwarethinkpad_yoga_11e_\(20dx\)_firmwarethinkpad_l590_firmwarev110-14ikb_firmwarek22-80thinkpad_a285_firmwarev110-14ikbthinkpad_yoga_11e_\(20dx\)v340-iil_firmwarethinkpad_l560_firmwarethinkpad_x260s540-13api330-17astthinkpad_p53s_firmwarethinkpad_x250_firmwarethinkpad_e465v130-15igmyoga_s730-13iwlthinkpad_t470_firmwarethinkpad_p52sv340-iilthinkpad_e455_firmwaree52-80_firmwarethinkpad_t480_firmwarethinkpad_x1_carbon_firmwarethinkpad_p50_firmwarethinkpad_s3_3rd_gen_firmwarethinkpad_s1_yoga_vprothinkpad_e580_firmwarethinkpad_x260_firmwarethinkpad_e590_firmwarethinkpad_t570thinkpad_l560s145-15api_firmwarethinkpad_x1_carbon_\(20bx\)_firmwarethinkpad_t490thinkpad_x280_firmwarethinkpad_t590thinkpad_t550thinkpad_p73_firmwarethinkpad_t540s940-14iwlthinkpad_x1_tabletthinkpad_t495_firmwarev130-15ikbthinkpad_w550syoga_s730-13iwl_firmwarethinkpad_l480v310-15igm_firmwarethinkpad_t460thinkpad_l390_yoga_firmwarethinkpad_x390_firmware330-17ast_firmwarethinkpad_r490_firmwaree52-80xiaoxin_14-ast_qc_2019thinkpad_x270thinkpad_t440_firmwarethinkpad_a285thinkpad_l580_firmwarethinkpad_l1415_firmwarethinkpad_p50s_firmwarev730-13iskthinkpad_yoga_370thinkpad_t440p_firmwarethinkpad_l470thinkpad_t440s_firmwarethinkpad_e570_firmwarethinkpad_s5_firmwarethinkpad_t440pk3s540-13api_firmwarethinkpad_x140e_firmwarethinkpad_x390_yoga_firmware730s-13iwlthinkpad_l380thinkpad_x1_yoga_firmwarethinkpad_t590_firmwarethinkpad_x240thinkpad_yoga_11e_4th_gen_firmwarethinkpad_s1_yoga_firmwarethinkpad_x1_extremethinkpad_l490_firmwarethinkpad_yoga_11e_3rd_gen_firmwarethinkpad_x1_carbonk4-iwlthinkpad_e560_firmwarethinkpad_t460p_firmwarethinkpad_l13_firmwares145-15astthinkpad_p52s_firmwarethinkpad_r490v720-12_firmwarethinkpad_a275_firmwarethinkpad_t550_firmwarek32-80_skl_firmwarethinkpad_e590thinkpad_e575_firmwarethinkpad_t25_firmwarethinkpad_p1_firmwarethinkpad_s5_yoga_15k4-iwl_firmwarev330-15igmxiaoxin_14-ast_qc_2019_firmwares750-iils940-14iwl_firmwarev720-12thinkbook_14s-iwlv330-15ikb_firmwarethinkpad_x380_yogathinkpad_l480_firmwarexx-14api_qc_2019_firmwarethinkpad_p53sthinkpad_t480sthinkpad_e465_firmwarethinkpad_w541_firmwarethinkpad_t495sthinkpad_p51_firmwarethinkpad_x1_carbon_\(20ax\)thinkpad_s1_yoga_vpro_firmwarethinkpad_e460_firmwarethinkpad_e455thinkpad_e14thinkpad_11e_firmwarev110-14ast_firmware6_pro-14-iwlthinkpad_l57014iwle53-80_firmwarethinkpad_p43sthinkpad_a475thinkpad_s5_yoga_15_firmwarethinkpad_t490s_firmwarethinkpad_e565thinkpad_e475_firmwarethinkpad_x240sthinkpad_e565_firmwarethinkpad_t470s_firmwaree42-80thinkpad_l580thinkpad_p50thinkpad_r590thinkpad_x395_firmware330-14aste42-80_firmwarev330-15ikbthinkpad_e490s_firmwarethinkpad_t440sthinkpad_x1_carbon_\(20bx\)thinkpad_s5thinkpad_t470p_firmwarethinkpad_11e_yoga_gen_6thinkpad_s1_firmware330-14ast_firmwarev540s-13_firmwarethinkpad_e490_firmwarethinkpad_p70_firmwarek3_firmware730s-13iwl_firmwarethinkpad_t560thinkpad_s1_3rd_firmwarethinkpad_13thinkpad_t470thinkpad_yoga_11e_3rd_genthinkpad_p50sthinkpad_p53_firmwarethinkpad_13_2nd_gen_firmwarev330-15isk_firmwarek32-80_kbl_firmwarethinkpad_s1_3rdthinkpad_e480thinkpad_l380_yogathinkpad_p51thinkpad_yoga_260thinkpad_s3thinkpad_l13thinkpad_e585_firmwarev730-15ikbthinkpad_t490sv730-13ikb_firmware720s_touch-15ikb330-15ast_firmwarethinkpad_e470thinkpad_p73thinkpad_e555_firmwarethinkpad_e560pthinkpad_yoga_11e_4th_genthinkpad_t470sthinkpad_p72thinkpad_yoga_260_firmwarethinkpad_t470p340c-15api_firmwarethinkpad_helixthinkpad_e14_firmwarethinkpad_w550s_firmwarethinkpad_l1415k22-80_firmwarethinkbook_14s-iwl_firmwarethinkpad_t495thinkpad_yoga_370_firmwares750-iil_firmware720s-15ikbthinkpad_t480s145-14apithinkpad_p43s_firmwareBIOS
CVE-2020-8351
Matching Score-8
Assigner-Lenovo Group Ltd.
ShareView Details
Matching Score-8
Assigner-Lenovo Group Ltd.
CVSS Score-7.8||HIGH
EPSS-0.06% / 17.14%
||
7 Day CHG~0.00%
Published-30 Nov, 2020 | 19:05
Updated-04 Aug, 2024 | 09:56
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A privilege escalation vulnerability was reported in Lenovo PCManager prior to version 3.0.50.9162 that could allow an authenticated user to execute code with elevated privileges.

Action-Not Available
Vendor-Lenovo Group Limited
Product-pcmanagerPCManager
CWE ID-CWE-16
Not Available
CWE ID-CWE-269
Improper Privilege Management
CVE-2020-8320
Matching Score-8
Assigner-Lenovo Group Ltd.
ShareView Details
Matching Score-8
Assigner-Lenovo Group Ltd.
CVSS Score-6.4||MEDIUM
EPSS-0.05% / 13.78%
||
7 Day CHG~0.00%
Published-09 Jun, 2020 | 19:50
Updated-16 Sep, 2024 | 17:33
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

An internal shell was included in BIOS image in some ThinkPad models that could allow escalation of privilege.

Action-Not Available
Vendor-Lenovo Group Limited
Product-thinkpad_t480_firmwarethinkpad_l460_firmwarethinkpad_p50_firmwarethinkpad_x1_carbon_firmwarethinkpad_s3_3rd_gen_firmwarethinkpad_e580_firmwarethinkpad_e490thinkpad_x260_firmwarethinkpad_e590_firmwarethinkpad_t570thinkpad_l560thinkpad_t490thinkpad_p51sthinkpad_x280_firmwarethinkpad_p73_firmwarethinkpad_t590thinkpad_p53thinkpad_e575thinkpad_p72_firmwarethinkpad_x1_tabletthinkpad_t495_firmwarethinkpad_l460thinkpad_l590thinkpad_p52thinkpad_e560p_firmwarethinkpad_l480thinkpad_e475thinkpad_s2_yoga_4th_genthinkpad_p70thinkpad_t460thinkpad_l390_yoga_firmwarethinkpad_x390_firmwarethinkpad_e470_firmwarethinkpad_r490_firmwarethinkpad_11ethinkpad_x270thinkpad_a285thinkpad_t460pthinkpad_e15_firmwarethinkpad_p1thinkpad_l580_firmwarethinkpad_e460thinkpad_x1_tablet_firmwarethinkpad_l1415_firmwarethinkpad_l380_yoga_firmwarethinkpad_x280thinkpad_x390thinkpad_p50s_firmwarethinkpad_r14thinkpad_yoga_370thinkpad_s3_gen_2_firmwarethinkpad_l470thinkpad_e570_firmwarethinkpad_l470_firmwarethinkpad_s5_firmwarethinkpad_s3_firmwarethinkpad_t490_firmwarethinkpad_x390_yoga_firmwarethinkpad_l380_firmwarethinkpad_r590_firmwarethinkpad_l380thinkpad_t560_firmwarethinkpad_t580thinkpad_t590_firmwarethinkpad_x1_yoga_firmwarethinkpad_l390_yogathinkpad_yoga_11e_4th_gen_firmwarethinkpad_x1_extremethinkpad_x1_yogathinkpad_l490_firmwarethinkpad_e485_firmwarethinkpad_yoga_11e_3rd_gen_firmwarethinkpad_s5_2nd_gen_firmwarethinkpad_x1_carbonthinkpad_e560_firmwarethinkpad_t460p_firmwarethinkpad_t570_firmwarethinkpad_l13_firmwarethinkpad_yoga_11e_5th_genthinkpad_p52s_firmwarethinkpad_r490thinkpad_13_firmwarethinkpad_a275_firmwarethinkpad_e585thinkpad_l570_firmwarethinkpad_e590thinkpad_a475_firmwarethinkpad_x380_yoga_firmwarethinkpad_a485_firmwarethinkpad_e575_firmwarethinkpad_13_2nd_genthinkpad_e490sthinkpad_t25_firmwarethinkpad_p1_firmwarethinkpad_11e_yoga_gen_6_firmwarethinkpad_p52_firmwarethinkpad_s2_yoga_4th_gen_firmwarethinkpad_a275thinkpad_t580_firmwarethinkpad_e15thinkpad_e485thinkpad_l480_firmwarethinkpad_x380_yogathinkpad_a485thinkpad_s2_yoga_3rd_gen_firmwarethinkpad_t25thinkpad_p53sthinkpad_t480sthinkpad_e465_firmwarethinkpad_t495sthinkpad_p51_firmwarethinkpad_t460sthinkpad_t495s_firmwarethinkpad_x390_yogathinkpad_e460_firmwarethinkpad_e455thinkpad_e14thinkpad_11e_firmwarethinkpad_e570thinkpad_s5_2nd_genthinkpad_l570thinkpad_e560thinkpad_p43sthinkpad_a475thinkpad_e555thinkpad_x1_extreme_firmwarethinkpad_t490s_firmwarethinkpad_e565thinkpad_e475_firmwarethinkpad_e565_firmwarethinkpad_t470s_firmwarethinkpad_l580thinkpad_p50thinkpad_r590thinkpad_yoga_11e_5th_gen_firmwarethinkpad_x395_firmwarethinkpad_e580thinkpad_r14_firmwarethinkpad_e490s_firmwarethinkpad_p71thinkpad_s3_gen_2thinkpad_s5thinkpad_t470p_firmwarethinkpad_e480_firmwarethinkpad_11e_yoga_gen_6thinkpad_p51s_firmwarethinkpad_s1_firmwarethinkpad_e490_firmwarethinkpad_p70_firmwarethinkpad_t560thinkpad_x395thinkpad_s1_3rd_firmwarethinkpad_t460_firmwarethinkpad_t460s_firmwarethinkpad_13thinkpad_t470thinkpad_yoga_11e_3rd_genthinkpad_p50sthinkpad_p53_firmwarethinkpad_x270_firmwarethinkpad_13_2nd_gen_firmwarethinkpad_s2_yoga_3rd_genthinkpad_s1_3rdthinkpad_s1thinkpad_e480thinkpad_l490thinkpad_l380_yogathinkpad_p51thinkpad_t480s_firmwarethinkpad_yoga_260thinkpad_s3thinkpad_s3_3rd_genthinkpad_p71_firmwarethinkpad_l13thinkpad_e585_firmwarethinkpad_t490sthinkpad_p73thinkpad_e555_firmwarethinkpad_e470thinkpad_yoga_11e_4th_genthinkpad_l590_firmwarethinkpad_e560pthinkpad_t470sthinkpad_p72thinkpad_t470pthinkpad_yoga_260_firmwarethinkpad_a285_firmwarethinkpad_e14_firmwarethinkpad_l1415thinkpad_l560_firmwarethinkpad_x260thinkpad_t495thinkpad_yoga_370_firmwarethinkpad_p53s_firmwarethinkpad_e465thinkpad_t480thinkpad_t470_firmwarethinkpad_p52sthinkpad_p43s_firmwarethinkpad_e455_firmwareBIOS
CWE ID-CWE-489
Active Debug Code
CWE ID-CWE-269
Improper Privilege Management
CVE-2020-8335
Matching Score-8
Assigner-Lenovo Group Ltd.
ShareView Details
Matching Score-8
Assigner-Lenovo Group Ltd.
CVSS Score-6.1||MEDIUM
EPSS-0.07% / 22.51%
||
7 Day CHG~0.00%
Published-01 Sep, 2020 | 21:30
Updated-16 Sep, 2024 | 18:04
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

The BIOS tamper detection mechanism was not triggered in Lenovo ThinkPad A285, BIOS versions up to r0xuj70w; A485, BIOS versions up to r0wuj65w; T495 BIOS versions up to r12uj55w; T495s/X395, BIOS versions up to r13uj47w, while the emergency-reset button is pressed which may allow for unauthorized access.

Action-Not Available
Vendor-Lenovo Group Limited
Product-thinkpad_a275thinkpad_a275_firmwarethinkpad_a485thinkpad_x395thinkpad_x395_firmwarethinkpad_a475_firmwarethinkpad_t495s_jazz_firmwarethinkpad_a285thinkpad_a285_firmwarethinkpad_a485_firmwarethinkpad_t495s_jazzthinkpad_x1_carbon_\(20bx\)_firmwarethinkpad_t495_driftthinkpad_t495_drift_firmwarethinkpad_x1_carbon_\(20bx\)thinkpad_a475ThinkPad A485 BIOSThinkPad A285 BIOSThinkPad T495s/X395 BIOSThinkPad T495 BIOS
CVE-2022-24382
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.06% / 19.77%
||
7 Day CHG~0.00%
Published-12 May, 2022 | 16:35
Updated-05 May, 2025 | 17:18
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper input validation in firmware for some Intel(R) NUCs may allow a privileged user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-nuc_11_pro_kit_nuc11tnhi30l_firmwarenuc11dbbi7_firmwarenuc_9_pro_compute_element_nuc9vxqnb_firmwarenuc_11_pro_kit_nuc11tnki7nuc11pa_firmwarenuc8i3cysnnuc_9_pro_kit_nuc9vxqnx_firmwarenuc_11_compute_element_cm11ebi58w_firmwarenuc_11_pro_board_nuc11tnbi50znuc_11_pro_kit_nuc11tnki30z_firmwarenuc_8_compute_element_cm8pcbnuc_8_compute_element_cm8pcb_firmwarelapkc71fnuc_11_pro_board_nuc11tnbi70z_firmwarenuc_11_pro_board_nuc11tnbi7nuc_11_compute_element_cm11ebc4w_firmwarenuc_11_pro_kit_nuc11tnki50znuc_11_pro_kit_nuc11tnki5nuc_kit_nuc8i5benuc8i3cysmlapbc710nuc_11_pro_kit_nuc11tnhi50znuc_8_compute_element_cm8i3cbnuc8i3cysn_firmwarenuc_kit_nuc8i5be_firmwarenuc11pahnuc_11_pro_board_nuc11tnbi30z_firmwarenuc_9_pro_kit_nuc9v7qnx_firmwarenuc_8_compute_element_cm8ccbnuc11dbbi9_firmwarenuc_11_pro_board_nuc11tnbi5nuc_9_pro_compute_element_nuc9v7qnblapbc710_firmwarelapkc51enuc_11_pro_kit_nuc11tnki3nuc_11_pro_kit_nuc11tnki70znuc_8_compute_element_cm8i7cblapkc71f_firmwarenuc_11_enthusiast_kit_nuc11phki7cnuc11panuc_11_pro_kit_nuc11tnhi70lnuc_11_pro_kit_nuc11tnhi50lnuc_8_compute_element_cm8i7cb_firmwarenuc9i9qnnuc_11_pro_board_nuc11tnbi70znuc_11_pro_kit_nuc11tnhi30znuc_11_pro_kit_nuc11tnhi50w_firmwarelapbc510_firmwarenuc_11_compute_element_cm11ebi716wnuc_11_pro_kit_nuc11tnki30znuc_kit_nuc8i3b_firmwarenuc11btmi9nuc11btmi7nuc9i7qnnuc9i7qn_firmwarenuc_8_compute_element_cm8i5cb_firmwarenuc_11_compute_element_cm11ebi38w_firmwarenuc_11_pro_kit_nuc11tnhi70l_firmwarenuc_11_pro_kit_nuc11tnhi70qnuc_11_pro_kit_nuc11tnhi70znuc9i5qn_firmwarenuc_kit_nuc8i7be_firmwarenuc_11_pro_kit_nuc11tnhi30lnuc8i3cysm_firmwarelapkc71e_firmwarenuc_11_pro_kit_nuc11tnhi30z_firmwarenuc_11_pro_board_nuc11tnbi5_firmwarenuc_11_pro_kit_nuc11tnki50z_firmwarenuc11paq_firmwarenuc_11_pro_board_nuc11tnbi3_firmwarenuc_11_pro_kit_nuc11tnhi5_firmwarenuc_11_pro_kit_nuc11tnhi7_firmwarenuc_kit_nuc8i3bnuc_11_pro_kit_nuc11tnhi50l_firmwarenuc_11_enthusiast_mini_pc_nuc11phki7caanuc11btmi9_firmwarenuc_9_pro_kit_nuc9vxqnxnuc_11_pro_board_nuc11tnbi30znuc_11_pro_kit_nuc11tnhi3nuc_11_enthusiast_kit_nuc11phki7c_firmwarenuc_11_pro_board_nuc11tnbi3nuc_11_pro_kit_nuc11tnhi7nuc_11_pro_board_nuc11tnbi7_firmwarenuc_11_pro_kit_nuc11tnki5_firmwarelapbc510nuc_11_pro_kit_nuc11tnki3_firmwarenuc_8_compute_element_cm8i5cbnuc_11_pro_kit_nuc11tnhi70q_firmwarenuc11pah_firmwarenuc_8_compute_element_cm8i3cb_firmwarelapkc51e_firmwarenuc_11_compute_element_cm11ebi716w_firmwarenuc11paqnuc_9_pro_compute_element_nuc9v7qnb_firmwarenuc_11_pro_kit_nuc11tnki70z_firmwarenuc_9_pro_kit_nuc9v7qnxnuc_11_compute_element_cm11ebi58wnuc_11_pro_kit_nuc11tnhi5nuc_11_pro_kit_nuc11tnhi3_firmwarenuc_11_pro_board_nuc11tnbi50z_firmwarenuc_11_compute_element_cm11ebc4wnuc11dbbi9nuc11btmi7_firmwarenuc_11_pro_kit_nuc11tnhi50wnuc_kit_nuc8i7benuc_11_pro_kit_nuc11tnki7_firmwarenuc_11_pro_kit_nuc11tnhi30p_firmwarenuc_11_pro_kit_nuc11tnhi30pnuc_11_pro_kit_nuc11tnhi70z_firmwarenuc_8_compute_element_cm8ccb_firmwarenuc_11_enthusiast_mini_pc_nuc11phki7caa_firmwarenuc9i5qnnuc11dbbi7nuc9i9qn_firmwarenuc_11_pro_kit_nuc11tnhi50z_firmwarenuc_9_pro_compute_element_nuc9vxqnblapkc71enuc_11_compute_element_cm11ebi38wIntel(R) NUCs
CWE ID-CWE-20
Improper Input Validation
CVE-2019-18619
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.8||HIGH
EPSS-0.14% / 34.36%
||
7 Day CHG~0.00%
Published-22 Jul, 2020 | 13:15
Updated-05 Aug, 2024 | 01:54
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Incorrect parameter validation in the synaTee component of Synaptics WBF drivers using an SGX enclave (all versions prior to 2019-11-15) allows a local user to execute arbitrary code in the enclave (that can compromise confidentiality of enclave data) via APIs that accept invalid pointers.

Action-Not Available
Vendor-synapticsn/aHP Inc.Lenovo Group Limited
Product-thinkpad_t480_firmwarethinkpad_t470_\(20hx\)thinkpad_p50_firmwarethinkpad_x1_carbon_firmwareenvy_x360_-_15t-dr100_firmwarethinkpad_25thinkpad_e580_firmwarethinkpad_e490thinkpad_e590_firmwareenvy_17m-bw0xxx_firmwareenvy_13-aq0xxxenvy_17-bw0xxx_firmwarethinkpad_t490thinkpad_t470s_\(20jx\)_firmwarethinkpad_t570\(20jx\)_firmwarethinkpad_x280_firmwarethinkpad_p73_firmwarethinkpad_t590thinkpad_p53envy_15-dr0xxx_x360envy_15m-dr0xxx_x360_\(validity_fps\)thinkpad_p72_firmwarethinkpad_x1_tabletenvy_-_17t-ce000_firmwarethinkpad_p52thinkpad_l480thinkpad_p70thinkpad_x1_carbon_\(20hx\)thinkpad_x390_firmwarethinkpad_r490_firmwareenvy_x360_-_15t-dr100_\(validity_fps\)pavilion_x360_-_14t-cd000_firmwarethinkpad_t570_\(20hx\)_firmwarethinkpad_x270envy_15-dr1xxx_x360_\(validity_fps\)envy_x360_-_15t-dr100thankpad_a485_firmwarethinkpad_t460penvy_13-aq1xxxthinkpad_p1envy_-_17t-ce100thinkpad_l580_firmwareenvy_-_17t-bw000envy_15-dr0xxx_x360_\(validity_fps\)pavilion_x360_14t-dh000thinkpad_x1_tablet_firmwarespectre_x360_firmwarethinkpad_x280thinkpad_x390envy_17-ce0xxx_firmwarepavilion_14-cd2xxx_x360pavilion_x360_14t-dh000_firmwarethinkpad_yoga_370envy_-_13t-ah100_firmwareenvy_17m-bw0xxxthinkpad_s3_firmwareenvy_13-ah0xxx_firmwareenvy_x360_-_15t-cn000_firmwarethinkpad_p71_\(20hx\)_firmwarethinkpad_t470s_\(20hx\)thinkpad_t490_firmwarethinkpad_x390_yoga_firmwareenvy_x360_-_15t-dr000thinkpad_r590_firmwareenvy_15-cn1xxx_x360thinkpad_t580thinkpad_t590_firmwarethinkpad_x1_yoga_firmwarethinkpad_t570\(20jx\)thinkpad_x1_extremethinkpad_x1_yogathinkpad_e485_firmwareenvy_x360_-_15t-cn000envy_13-ah1xxx_firmwarepavilion_14-cd1xxx_x360thinkpad_x1_carbonthinkpad_p1_gen_2_firmwarethinkpad_t460p_firmwarethinkpad_p51s_\(20kx\)pavilion_15thinkpad_p52s_firmwarethinkpad_r490envy_15-dr1xxx_x360_firmwarethinkpad_p51s_\(20hx\)envy_15-cn0xxx_x360_firmwareenvy_-_13t-aq100envy_13-aq0xxx_firmwareenvy_13-ah0xxxthinkpad_a275_firmwarethinkpad_e585pavilion_14m-dh0xxx_x360pavilion_15_firmwarethinkpad_x1_carbon_\(20kx\)envy_17m-ce1xxx_firmwareenvy_17-ce1xxxthinkpad_e590thinkpad_x1_yoga_3rd_genthinkpad_x380_yoga_firmwareenvy_15m-dr1xxx_x360_\(validity_fps\)envy_-_17t-bw000_firmwarepavilion_14-cd1xxx_x360_firmwarethinkpad_e490sthinkpad_t470_\(20jx\)thinkpad_p1_firmwarethinkpad_p51s_\(20jx\)envy_x360_-_15t-dr100_\(validity_fps\)_firmwarethinkpad_x1_carbon_\(20kx\)_firmwarethinkpad_x1_yoga_4th_genpavilion_14-cd2xxx_x360_firmwarethinkpad_t570_\(20hx\)thinkpad_p52_firmwarepavilion_x360_-_14t-cd000thinkpad_t470s_\(20hx\)_firmwareenvy_15-dr1xxx_x360_\(validity_fps\)_firmwarethinkpad_t470_\(20hx\)_firmwarethinkpad_t580_firmwarethinkpad_a275thinkpad_e485thinkpad_x380_yogathinkpad_l480_firmwarethinkpad_yoga_s1_firmwarethinkpad_p53sthinkpad_t480sthankpad_a485envy_15m-dr0xxx_x360thinkpad_p71_\(20hx\)envy_x360_-_15t-dr000_\(validity_fps\)_firmwarethinkpad_x1_extreme_2nd_firmwarethinkpad_p51_firmwarevfs75xxthinkpad_t460spavilion_x360_-_15t-dq000_firmwarethinkpad_x390_yogaenvy_13-aq1xxx_firmwarethinkpad_t25_\(20k7\)_firmwarepavilion_x360_-_15t-dq000pavilion_14-dh0xxx_x360pavilion_x360_14t-cd100_firmwareenvy_-_13t-aq100_firmwarepavilion_14m-dh0xxx_x360_firmwarethinkpad_p43sthinkpad_x1_yoga_4th_gen_firmwarethinkpad_x1_extreme_firmwarethinkpad_x1_yoga_3rd_gen_firmwareenvy_15m-cn0xxx_x360_firmwarepavilion_14m-cd0xxx_x360thinkpad_p51s_\(20kx\)_firmwarethankpad_a475_firmwarethinkpad_t490s_firmwarethinkpad_p51s_\(20hx\)_firmwarepavilion_x360_-_15t-dq100pavilion_14m-cd0xxx_x360_firmwarethinkpad_25_firmwarepavilion_14-dh0xxx_x360_firmwarespectre_x360thinkpad_l580thinkpad_p50thinkpad_r590envy_15-dr0xxx_x360_firmwarethinkpad_e580envy_17-bw0xxxenvy_15m-dr1xxx_x360_firmwareenvy_17-ce0xxxenvy_13-ah1xxxpavilion_x360_-_15t-dq100_firmwareenvy_15-dr0xxx_x360_\(validity_fps\)_firmwarethinkpad_x1_tablet_\(20jx\)thinkpad_e490s_firmwareenvy_15m-dr0xxx_x360_firmwarethinkpad_x1_yoga_\(20jx\)thinkpad_p1_gen_2envy_15-dr1xxx_x360thinkpad_t470p_firmwarethinkpad_e480_firmwareenvy_15m-dr1xxx_x360envy_17m-ce1xxxthinkpad_e490_firmwarethinkpad_p70_firmwarethinkpad_s1_3rd_firmwarethinkpad_t460s_firmwareenvy_x360_-_15t-dr000_\(validity_fps\)thinkpad_x1_tablet_\(20jx\)_firmwareenvy_17m-ce0xxx_firmwarethinkpad_p53_firmwarepavilion_x360_14t-cd100thinkpad_x270_firmwareenvy_-_17t-ce100_firmwarethankpad_a475thinkpad_t25_\(20k7\)envy_15m-cn0xxx_x360envy_x360_-_15t-dr000_firmwarevfs75xx_firmwareenvy_15-cn1xxx_x360_firmwarethinkpad_s1_3rdenvy_17-ce1xxx_firmwarethinkpad_e480thinkpad_t480s_firmwarethinkpad_p51thinkpad_yoga_260thinkpad_s3envy_15-cn0xxx_x360thinkpad_t470_\(20jx\)_firmwarethinkpad_e585_firmwarethinkpad_t490sthinkpad_p73thinkpad_p72envy_17m-ce0xxxthinkpad_t470pthinkpad_x1_yoga_\(20jx\)_firmwarethinkpad_yoga_260_firmwarethinkpad_yoga_s1envy_15m-dr0xxx_x360_\(validity_fps\)_firmwarethinkpad_t470s_\(20jx\)thinkpad_yoga_370_firmwareenvy_15m-dr1xxx_x360_\(validity_fps\)_firmwarethinkpad_p53s_firmwareenvy_-_17t-ce000thinkpad_p51s_\(20jx\)_firmwarethinkpad_t480envy_-_13t-ah100thinkpad_x1_extreme_2ndthinkpad_p52sthinkpad_p43s_firmwarethinkpad_x1_carbon_\(20hx\)_firmwaren/a
CWE ID-CWE-763
Release of Invalid Pointer or Reference
CVE-2019-14569
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.05% / 16.64%
||
7 Day CHG~0.00%
Published-11 Oct, 2019 | 17:57
Updated-05 Aug, 2024 | 00:19
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Pointer corruption in system firmware for Intel(R) NUC may allow a privileged user to potentially enable escalation of privilege, denial of service and/or information disclosure via local access.

Action-Not Available
Vendor-Intel Corporation
Product-nuc_kit_dn2820fykhnuc_board_de3815tybe_firmwarenuc_8_mainstream_game_kitnuc_kit_de3815tykhe_firmwarenuc_8_mainstream_game_mini_computer_firmwarenuc_8_mainstream_game_kit_firmwarenuc_kit_de3815tykhenuc_kit_dn2820fykh_firmwarenuc_board_de3815tybenuc_8_mainstream_game_mini_computerNUC Advisory
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2019-14568
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.30% / 52.81%
||
7 Day CHG~0.00%
Published-16 Dec, 2019 | 19:12
Updated-05 Aug, 2024 | 00:19
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper permissions in the executable for Intel(R) RST before version 17.7.0.1006 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-rapid_storage_technologyIntel(R) RST
CWE ID-CWE-276
Incorrect Default Permissions
CVE-2019-14600
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.07% / 20.51%
||
7 Day CHG~0.00%
Published-17 Jan, 2020 | 17:33
Updated-05 Aug, 2024 | 00:19
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Uncontrolled search path element in the installer for Intel(R) SNMP Subagent Stand-Alone for Windows* may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-Intel Corporation
Product-snmp_subagent_stand-aloneIntel(R) SNMP Subagent Stand-Alone for Windows*
CWE ID-CWE-427
Uncontrolled Search Path Element
CVE-2018-18094
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.04% / 12.08%
||
7 Day CHG~0.00%
Published-17 Apr, 2019 | 17:01
Updated-05 Aug, 2024 | 11:01
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper directory permissions in installer for Intel(R) Media SDK before 2018 R2.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-media_sdkIntel(R) Media SDK Advisory
CWE ID-CWE-732
Incorrect Permission Assignment for Critical Resource
CVE-2018-18097
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.04% / 9.90%
||
7 Day CHG~0.00%
Published-13 Dec, 2018 | 23:00
Updated-05 Aug, 2024 | 11:01
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper directory permissions in Intel Solid State Drive Toolbox before 3.5.7 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-Intel Corporation
Product-solid_state_drive_toolboxIntel Solid State Drive Toolbox
CWE ID-CWE-732
Incorrect Permission Assignment for Critical Resource
CVE-2018-12152
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-1.83% / 82.17%
||
7 Day CHG~0.00%
Published-10 Oct, 2018 | 18:00
Updated-16 Sep, 2024 | 16:58
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Pointer corruption in Unified Shader Compiler in Intel Graphics Drivers before 10.18.x.5056 (aka 15.33.x.5056), 10.18.x.5057 (aka 15.36.x.5057) and 20.19.x.5058 (aka 15.40.x.5058) may allow an unauthenticated remote user to potentially execute arbitrary WebGL code via local access.

Action-Not Available
Vendor-Intel Corporation
Product-graphics_driverIntel Graphics Driver
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2018-12175
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.04% / 9.90%
||
7 Day CHG~0.00%
Published-12 Sep, 2018 | 19:00
Updated-17 Sep, 2024 | 03:08
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Default install directory permissions in Intel Distribution for Python (IDP) version 2018 may allow an unprivileged user to escalate privileges via local access.

Action-Not Available
Vendor-Intel Corporation
Product-distribution_for_pythonIntel(R) Distribution for Python 2018
CWE ID-CWE-276
Incorrect Default Permissions
CVE-2018-12131
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.04% / 9.90%
||
7 Day CHG~0.00%
Published-10 Oct, 2018 | 14:00
Updated-17 Sep, 2024 | 02:01
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Permissions in the driver pack installers for Intel NVMe before version 4.0.0.1007 and Intel RSTe before version 4.7.0.2083 may allow an authenticated user to potentially escalate privilege via local access.

Action-Not Available
Vendor-Intel Corporation
Product-client_nvmedatacenter_nvmerapid_storage_technologyIntel NVMe and Intel RSTe
CWE ID-CWE-732
Incorrect Permission Assignment for Critical Resource
CVE-2018-12177
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.04% / 9.90%
||
7 Day CHG~0.00%
Published-10 Jan, 2019 | 20:00
Updated-16 Sep, 2024 | 16:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper directory permissions in the ZeroConfig service in Intel(R) PROSet/Wireless WiFi Software before version 20.90.0.7 may allow an authorized user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-Intel Corporation
Product-wireless-ac_9560dual_band_wireless-ac_8265_desktop_kitwireless-n_7265_\(rev_c\)dual_band_wireless-n_7260dual_band_wireless-ac_7265_\(rev_d\)dual_band_wireless-ac_8265dual_band_wireless-ac_7260wireless-ac_9462tri-band_wireless-ac_18260dual_band_wireless-ac_7265\(rev_c\)wireless-ac_9461dual_band_wireless-ac_3160tri-band_wireless-ac_17265proset\/wireless_softwarewireless-n_7260dual_band_wireless-ac_3165dual_band_wireless-ac_8260wireless-ac_9260dual_band_wireless-ac_3168wireless-n_7265_\(rev_d\)dual_band_wireless-ac_7260_for_desktopdual_band_wireless-n_7265_\(rev_c\)tri-band_wireless-ac_18265dual_band_wireless-n_7265_\(rev_d\)Intel(R) PROSet/Wireless WiFi Software
CWE ID-CWE-732
Incorrect Permission Assignment for Critical Resource
CVE-2020-24515
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.8||MEDIUM
EPSS-0.15% / 35.77%
||
7 Day CHG~0.00%
Published-09 Jun, 2021 | 18:48
Updated-04 Aug, 2024 | 15:12
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Protection mechanism failure in some Intel(R) RealSense(TM) IDs may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-realsense_id_f450realsense_id_f455_firmwarerealsense_id_f450_firmwarerealsense_id_f455Intel(R) RealSense(TM) IDs
CVE-2018-12174
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.08% / 25.11%
||
7 Day CHG~0.00%
Published-14 Nov, 2018 | 14:00
Updated-05 Aug, 2024 | 08:30
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Heap overflow in Intel Trace Analyzer 2018 in Intel Parallel Studio XE 2018 Update 3 may allow an authenticated user to potentially escalate privileges via local access.

Action-Not Available
Vendor-Intel Corporation
Product-parallel_studio_xeIntel Parallel Studio XE 2018
CWE ID-CWE-787
Out-of-bounds Write
CVE-2018-12196
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.16% / 37.32%
||
7 Day CHG~0.00%
Published-14 Mar, 2019 | 20:00
Updated-16 Sep, 2024 | 17:04
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Insufficient input validation in Intel(R) AMT in Intel(R) CSME before version 11.8.60, 11.11.60, 11.22.60 or 12.0.20 may allow a privileged user to potentially execute arbitrary code via local access.

Action-Not Available
Vendor-Intel Corporation
Product-converged_security_management_engine_firmwareIntel(R) CSME, Server Platform Services, Trusted Execution Engine and Intel(R) Active Management Technology
CWE ID-CWE-20
Improper Input Validation
CVE-2018-12185
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.8||MEDIUM
EPSS-0.16% / 36.97%
||
7 Day CHG~0.00%
Published-14 Mar, 2019 | 20:00
Updated-16 Sep, 2024 | 22:25
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Insufficient input validation in Intel(R) AMT in Intel(R) CSME before version 11.8.60, 11.11.60, 11.22.60 or 12.0.20 may allow an unauthenticated user to potentially execute arbitrary code via physical access.

Action-Not Available
Vendor-Intel Corporation
Product-converged_security_management_engine_firmwareIntel(R) CSME, Server Platform Services, Trusted Execution Engine and Intel(R) Active Management Technology
CWE ID-CWE-20
Improper Input Validation
CVE-2020-24462
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.06% / 17.91%
||
7 Day CHG~0.00%
Published-17 Feb, 2021 | 13:49
Updated-04 Aug, 2024 | 15:12
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Out of bounds write in the Intel(R) Graphics Driver before version 15.33.53.5161, 15.36.40.5162, 15.40.47.5166, 15.45.33.5164 and 27.20.100.8336 may allow an authenticated user to potentially enable an escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-graphics_driversIntel(R) Graphics Driver
CWE ID-CWE-787
Out-of-bounds Write
CVE-2018-12190
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.13% / 33.61%
||
7 Day CHG~0.00%
Published-14 Mar, 2019 | 20:00
Updated-16 Sep, 2024 | 17:54
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Insufficient input validation in Intel(r) CSME subsystem before versions 11.8.60, 11.11.60, 11.22.60 or 12.0.20 or Intel(r) TXE before 3.1.60 or 4.0.10 may allow a privileged user to potentially enable an escalation of privilege via local access.

Action-Not Available
Vendor-Intel Corporation
Product-converged_security_management_engine_firmwaretrusted_execution_engine_firmwareIntel(R) CSME, Server Platform Services, Trusted Execution Engine and Intel(R) Active Management Technology
CWE ID-CWE-20
Improper Input Validation
CVE-2018-12160
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-5.3||MEDIUM
EPSS-0.04% / 10.18%
||
7 Day CHG~0.00%
Published-12 Sep, 2018 | 19:00
Updated-16 Sep, 2024 | 19:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

DLL injection vulnerability in software installer for Intel Data Center Migration Center Software v3.1 and before may allow an authenticated user to potentially execute code using default directory permissions via local access.

Action-Not Available
Vendor-Intel Corporation
Product-data_migration_softwareIntel(R) Data Migration Software
CWE ID-CWE-276
Incorrect Default Permissions
CWE ID-CWE-427
Uncontrolled Search Path Element
CVE-2020-24489
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-8.8||HIGH
EPSS-0.05% / 15.93%
||
7 Day CHG~0.00%
Published-09 Jun, 2021 | 19:59
Updated-04 Aug, 2024 | 15:12
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Incomplete cleanup in some Intel(R) VT-d products may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel CorporationDebian GNU/Linux
Product-core_i5-11600kfceleron_j1750core_i7-11700kfcore_i7-10870hpentium_j2850core_i5-1035g1core_i7-1068ng7core_i5-1038ng7core_i7-11700fpentium_silver_n5030core_i7-1160g7core_i5-1035g7core_i5-11500bcore_i7-10850hcore_i7-1185grecore_i7-11375hceleron_n3350core_i7-1185g7core_i7-1195g7core_i5-11500tcore_i7-10700kcore_i7-1165g7celeron_n3050celeron_j1850celeron_n5095celeron_n6210core_i5-10400fcore_i5-11600kpentium_silver_j5005core_i7-11390hcore_i5-1030g4celeron_j4115core_i7-10700tecore_i3-10300celeron_n3000core_i7-10700tcore_i3-1110g4celeron_n2807core_i5-10500core_i5-10210ucore_i7-11700kceleron_n2815pentium_j3710pentium_j2900core_i5-10200hcore_i7-10710ucore_i7-10700kfdebian_linuxceleron_n2940core_i5-1035g4core_i5-10400hcore_i7-11700celeron_n5105core_i3-10100ypentium_n3530celeron_j3455core_i5-10400tpentium_silver_n6000core_i7-11370hcore_i5-10310ucore_i9-11900tcore_i5-11400hcore_i5-10505core_i7-11700bcore_i9-11900kbcore_i5-1030g7celeron_n4500core_i3-10305celeron_n2820core_i3-1000ng4core_i5-11600tpentium_n6415core_i7-11850hcore_i9-11900core_i3-1000g1core_i7-10510yceleron_j3160core_i9-11900fcore_i3-10110ucore_i7-11800hceleron_n3150celeron_n4100celeron_n2805celeron_n2806core_i9-11980hkcore_i5-10600kceleron_n3060atom_x5-e3940core_i5-10400core_i5-1155g7core_i3-10105fcore_i5-10500tecore_i9-10900kfcore_i3-10105core_i3-11100bpentium_n4200core_i9-11950hcore_i5-11600core_i5-10300hcore_i5-l16g7celeron_n4120core_i5-1130g7celeron_n3350ecore_i3-1120g4core_i9-10980hkcore_i7-1060ng7pentium_silver_a1030core_i7-11700tcore_i5-10310yceleron_n3010core_i7-10510uceleron_n2840pentium_j6426core_i5-10500hcore_i3-10100eceleron_n2808core_i5-1030ng7celeron_j4025celeron_n2910core_i7-1060g7core_i9-10900celeron_n2930core_i9-11900hpentium_j4205core_i5-11320hcore_i7-10810upentium_n3510core_i9-11900kceleron_j6413core_i3-10100tcore_i3-1115grecore_i5-11500hcore_i9-10900ecore_i9-10850kcore_i7-10610ucore_i3-10100fpentium_n3700core_i9-10900kceleron_n2920core_i5-10600core_i9-10900fpentium_n3520core_i5-11260hcore_i7-10700core_i3-1115g4eceleron_j3060pentium_silver_n6005celeron_n3160celeron_n6211core_i3-10100tecore_i9-10910core_i3-10105tcore_i9-10885hcore_i5-11400tcore_i7-10700fcore_i5-11300hpentium_silver_n5000core_i9-11900kfcore_i3-10325celeron_n4000ccore_i3-1125g4core_i5-1145g7pentium_n3540celeron_n4000celeron_j3455eceleron_n2830core_i5-1145g7ecore_i7-10750hpentium_n4200ecore_i3-10320core_i9-10900tcore_i3-1000g4core_i7-10875hcore_i3-10300tceleron_n3450celeron_n5100core_i5-11500core_i5-1135g7pentium_n3710celeron_n4020celeron_j4105celeron_j6412core_i3-l13g4core_i3-10100celeron_n2810celeron_j1800celeron_j1900core_i3-1115g4core_i5-10500tceleron_n4505core_i7-1185g7ecore_i5-10210ycore_i5-1140g7core_i3-1005g1celeron_j4005celeron_n4020ccore_i5-10500eatom_x5-e3930celeron_j3355atom_x7-e3950core_i3-10305tcore_i5-11400core_i5-10600tcore_i7-1065g7core_i3-10110ypentium_silver_j5040core_i5-10600kfcore_i5-11400fcore_i9-10900tecore_i7-10700eceleron_j3355ecore_i5-1145grecore_i7-1180g7celeron_j4125Intel(R) VT-d products
CWE ID-CWE-459
Incomplete Cleanup
CVE-2020-24481
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.04% / 12.37%
||
7 Day CHG~0.00%
Published-17 Feb, 2021 | 13:45
Updated-04 Aug, 2024 | 15:12
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Insecure inherited permissions for the Intel(R) Quartus Prime Pro and Standard edition software may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-quartusIntel(R) Quartus Prime Pro and Standard edition software
CVE-2020-24457
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.6||HIGH
EPSS-0.07% / 22.14%
||
7 Day CHG~0.00%
Published-14 Sep, 2020 | 18:28
Updated-04 Aug, 2024 | 15:12
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Logic error in BIOS firmware for 8th, 9th and 10th Generation Intel(R) Core(TM) Processors may allow an unauthenticated user to potentially enable escalation of privilege, denial of service and/or information disclosure via physical access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-core_i7-8550ucore_i9-9900kscore_i7-10510ucore_i7-8705gpentium_silver_n5000_firmwarecore_i7-8665ucore_i7-8500y_firmwarecore_i7-10870hcore_i7-1060g7core_i7-10810u_firmwarecore_i7-8706gcore_i7-1068ng7core_i7-10810ucore_i7-8565u_firmwarecore_i9-9880h_firmwarecore_i7-8700t_firmwarecore_i7-10850hcore_i7-10700e_firmwarecore_i7-8700b_firmwarecore_i7-10875h_firmwarecore_i7-8559u_firmwarecore_i7-10700kcore_i7-8850hcore_i7-8086k_firmwarecore_i7-10870h_firmwarecore_i7-10610ucore_i7-8700core_i7-8665ue_firmwarepentium_silver_j5005core_i7-8665u_firmwarecore_i7-8500ycore_i7-8705g_firmwarecore_i7-10700tecore_i9-9900tcore_i9-9900_firmwarecore_i7-1065g7_firmwarecore_i7-10700tcore_i9-9900ks_firmwarecore_i7-10700te_firmwarecore_i7-8700k_firmwarecore_i7-8086kcore_i7-8709g_firmwarecore_i7-1060g7_firmwarecore_i7-8700_firmwarecore_i7-8750hcore_i7-10700core_i7-8700kcore_i7\+8700core_i9-9880hcore_i9-9900kfcore_i7-10710ucore_i7-10700kfpentium_silver_j5005_firmwarecore_i7-10750h_firmwarecore_i7-8750h_firmwarecore_i7-10700k_firmwarecore_i7-10510u_firmwarecore_i7-8665uecore_i7-10700fpentium_silver_n5000core_i7-8809g_firmwarecore_i7-8557u_firmwarecore_i7-1068ng7_firmwarecore_i7-10750hcore_i7-8565ucore_i9-9980hk_firmwarecore_i7-10700t_firmwarecore_i7-10875hcore_i7-8569u_firmwarecore_i7-8706g_firmwarecore_i7\+8700_firmwarecore_i9-9900kcore_i7-10510ycore_i7-8809gcore_i7-8709gcore_i7-8700bcore_i9-9900core_i7-10510y_firmwarecore_i7-8550u_firmwarecore_i7-8569upentium_silver_j5040_firmwarecore_i7-10700f_firmwarecore_i7-8650u_firmwarecore_i7-10700kf_firmwarecore_i7-8850h_firmwarecore_i9-9900k_firmwarecore_i7-10610u_firmwarecore_i7-8557ucore_i7-10710u_firmwarecore_i9-9900kf_firmwarecore_i7-8700tcore_i7-10700_firmwarecore_i7-10850h_firmwarecore_i7-1065g7pentium_silver_j5040core_i9-9980hkcore_i7-8559ucore_i7-8650ucore_i9-9900t_firmwarecore_i7-10700eIntel BIOS
CVE-2018-12223
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.3||MEDIUM
EPSS-0.05% / 13.42%
||
7 Day CHG~0.00%
Published-14 Mar, 2019 | 20:00
Updated-16 Sep, 2024 | 17:42
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Insufficient access control in User Mode Driver in Intel(R) Graphics Driver for Windows* before versions 10.18.x.5059 (aka 15.33.x.5059), 10.18.x.5057 (aka 15.36.x.5057), 20.19.x.5063 (aka 15.40.x.5063) 21.20.x.5064 (aka 15.45.x.5064) and 24.20.100.6373 potentially enables an unprivileged user to escape from a virtual machine guest-to-host via local access.

Action-Not Available
Vendor-Intel Corporation
Product-graphics_driverIntel(R) Graphics Driver for Windows
CWE ID-CWE-732
Incorrect Permission Assignment for Critical Resource
CVE-2020-24509
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.16% / 37.06%
||
7 Day CHG~0.00%
Published-09 Jun, 2021 | 18:47
Updated-04 Aug, 2024 | 15:12
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Insufficient control flow management in subsystem in Intel(R) SPS versions before SPS_E3_05.01.04.300.0, SPS_SoC-A_05.00.03.091.0, SPS_E5_04.04.04.023.0, or SPS_E5_04.04.03.263.0 may allow a privileged user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-server_platform_servicesIntel(R) SPS versions
CVE-2020-24473
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.06% / 17.91%
||
7 Day CHG~0.00%
Published-09 Jun, 2021 | 19:01
Updated-04 Aug, 2024 | 15:12
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Out of bounds write in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-server_system_r2312wfqzsserver_system_r1304wftysserver_board_s2600bpsserver_board_s2600bpqrserver_system_r2208wf0zsserver_board_s2600wftcompute_module_hns2600bpb24rserver_system_r2312wftzsrserver_system_r1208wftysserver_board_s2600bpbserver_board_s2600stqrserver_system_r1304wf0ysserver_system_r1304wf0ysrserver_system_r2308wftzsrserver_board_s2600bpqcompute_module_hns2600bps24rserver_system_r1304wftysrserver_board_s2600stbserver_board_s2600wfqserver_system_r2208wfqzsrserver_board_s2600bpsrcompute_module_hns2600bpsrserver_system_r2312wf0npserver_system_r2312wf0nprserver_system_r2224wfqzsserver_board_s2600stbrserver_system_r1208wfqysrserver_system_r2312wftzsserver_board_s2600wfqrserver_board_s2600stqserver_system_r2224wftzscompute_module_hns2600bpqrserver_system_r2208wf0zsrcompute_module_hns2600bpbrserver_system_r2308wftzsserver_board_s2600wf0rserver_system_r2208wfqzsserver_system_r2208wftzsrserver_system_r1208wftysrserver_system_r2208wftzsserver_board_s2600bpbrcompute_module_hns2600bpq24rserver_system_r2224wftzsrbaseboard_management_controller_firmwareserver_board_s2600wftrserver_board_s2600wf0Intel(R) Server Boards, Server Systems and Compute Modules
CWE ID-CWE-787
Out-of-bounds Write
CVE-2018-12162
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.04% / 11.06%
||
7 Day CHG~0.00%
Published-12 Sep, 2018 | 19:00
Updated-16 Sep, 2024 | 22:36
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Directory permissions in the Intel OpenVINO Toolkit for Windows before version 2018.1.265 may allow an authenticated user to potentially execute code using default directory permissions via local access.

Action-Not Available
Vendor-Intel Corporation
Product-openvino_toolkitIntel(R) OpenVINO(TM) Toolkit for Windows
CWE ID-CWE-732
Incorrect Permission Assignment for Critical Resource
CVE-2018-12221
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.06% / 17.91%
||
7 Day CHG~0.00%
Published-14 Mar, 2019 | 20:00
Updated-16 Sep, 2024 | 16:32
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Insufficient input validation in Kernel Mode Driver in Intel(R) Graphics Driver for Windows* before versions 10.18.x.5059 (aka 15.33.x.5059), 10.18.x.5057 (aka 15.36.x.5057), 20.19.x.5063 (aka 15.40.x.5063) 21.20.x.5064 (aka 15.45.x.5064) and 24.20.100.6373 potentially enables an unprivileged user to cause an integer overflow via local access.

Action-Not Available
Vendor-Intel Corporation
Product-graphics_driverIntel(R) Graphics Driver for Windows
CWE ID-CWE-20
Improper Input Validation
CVE-2018-12208
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.6||HIGH
EPSS-0.40% / 59.95%
||
7 Day CHG~0.00%
Published-14 Mar, 2019 | 20:00
Updated-17 Sep, 2024 | 00:16
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Buffer overflow in HECI subsystem in Intel(R) CSME before versions 11.8.60, 11.11.60, 11.22.60 or 12.0.20 and Intel(R) TXE version before 3.1.60 or 4.0.10, or Intel(R) Server Platform Services before version 5.00.04.012 may allow an unauthenticated user to potentially execute arbitrary code via physical access.

Action-Not Available
Vendor-Intel Corporation
Product-server_platform_services_firmwareconverged_security_management_engine_firmwaretrusted_execution_engine_firmwareIntel(R) CSME, Server Platform Services, Trusted Execution Engine and Intel(R) Active Management Technology
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2018-12173
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.6||HIGH
EPSS-0.04% / 11.69%
||
7 Day CHG~0.00%
Published-10 Oct, 2018 | 18:00
Updated-16 Sep, 2024 | 16:18
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Insufficient access protection in firmware in Intel Server Board, Intel Server System and Intel Compute Module before firmware version 00.01.0014 may allow an unauthenticated attacker to potentially execute arbitrary code resulting in information disclosure, escalation of privilege and/or denial of service via local access.

Action-Not Available
Vendor-Intel Corporation
Product-server_system_r1000wf_firmwareserver_board_s2600wfrserver_system_r1000wfrserver_board_s2600bpr_firmwareserver_board_s2600bprcompute_module_hns2600bprserver_system_h2000gr_firmwarecompute_module_hns2600bp_firmwareserver_system_r1000wfr_firmwareserver_board_s2600st_firmwarecompute_module_hns2600bpserver_system_h2000g_firmwareserver_system_h2000grserver_system_r2000wfrserver_system_r2000wf_firmwareserver_system_h2000gserver_board_s2600bpserver_system_r2000wfserver_system_r1000wfcompute_module_hns2600bpr_firmwareserver_board_s2600wfserver_board_s2600bp_firmwareserver_board_s2600wf_firmwareserver_board_s2600wfr_firmwareserver_board_s2600stserver_board_s2600str_firmwareserver_system_r2000wfr_firmwareserver_board_s2600strIntel Server Boards Firmware
CWE ID-CWE-732
Incorrect Permission Assignment for Critical Resource
CVE-2018-12150
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.06% / 18.30%
||
7 Day CHG~0.00%
Published-12 Sep, 2018 | 19:00
Updated-17 Sep, 2024 | 02:47
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Escalation of privilege in Installer for Intel Extreme Tuning Utility before 6.4.1.21 may allow an authenticated user to potentially execute code or disclose information as administrator via local access.

Action-Not Available
Vendor-Intel Corporation
Product-extreme_tuning_utilityIntel(R) Extreme Tuning Utility
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2018-12200
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.11% / 30.39%
||
7 Day CHG~0.00%
Published-14 Mar, 2019 | 20:00
Updated-17 Sep, 2024 | 03:13
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Insufficient access control in Intel(R) Capability Licensing Service before version 1.50.638.1 may allow an unprivileged user to potentially escalate privileges via local access.

Action-Not Available
Vendor-Intel Corporation
Product-capability_licensing_serviceIntel(R) CSME, Server Platform Services, Trusted Execution Engine and Intel(R) Active Management Technology
CWE ID-CWE-732
Incorrect Permission Assignment for Critical Resource
CVE-2006-4022
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-4.6||MEDIUM
EPSS-0.10% / 27.36%
||
7 Day CHG~0.00%
Published-09 Aug, 2006 | 00:00
Updated-03 Apr, 2025 | 01:03
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Intel 2100 PRO/Wireless Network Connection driver PROSet before 7.1.4.6 allows local users to corrupt memory and execute code via "requests for capabilities from higher-level protocol drivers or user-level applications" involving crafted frames, a different issue than CVE-2006-3992.

Action-Not Available
Vendor-n/aIntel Corporation
Product-2100_proset_wirelessn/a
CVE-2021-3452
Matching Score-8
Assigner-Lenovo Group Ltd.
ShareView Details
Matching Score-8
Assigner-Lenovo Group Ltd.
CVSS Score-6.7||MEDIUM
EPSS-0.13% / 32.55%
||
7 Day CHG~0.00%
Published-16 Jul, 2021 | 20:30
Updated-03 Aug, 2024 | 16:53
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A potential vulnerability in the system shutdown SMI callback function in some ThinkPad models may allow an attacker with local access and elevated privileges to execute arbitrary code.

Action-Not Available
Vendor-Lenovo Group Limited
Product-thinkpad_11e_4th_genthinkpad_x380_yogathinkpad_t460thinkpad_yoga_11e_4th_genthinkpad_13_gen_2thinkpad_yoga_370thinkpad_l15_gen_2thinkpad_e15_gen_2thinkpad_l15thinkpad_l390thinkpad_yoga_11e_3rd_genthinkpad_11e_5th_genthinkpad_l380thinkpad_l14_gen_2thinkpad_l390_yogathinkpad_l13_gen_2thinkpad_11e_3rd_genthinkpad_x260thinkpad_x12_detachable_gen_1thinkpad_e14_gen_2thinkpad_l13_yogathinkpad_l380_yogabiosthinkpad_l13_yogo_gen_2thinkpad_11e_yoga_gen_6thinkpad_l14thinkpad_l13ThinkPad BIOS
CWE ID-CWE-20
Improper Input Validation
CVE-2021-33101
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.07% / 21.16%
||
7 Day CHG~0.00%
Published-09 Feb, 2022 | 22:04
Updated-05 May, 2025 | 17:17
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Uncontrolled search path in the Intel(R) GPA software before version 21.2 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-graphics_performance_analyzersIntel(R) GPA software
CWE ID-CWE-427
Uncontrolled Search Path Element
CVE-2021-33059
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.06% / 17.29%
||
7 Day CHG~0.00%
Published-17 Nov, 2021 | 19:13
Updated-03 Aug, 2024 | 23:42
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper input validation in the Intel(R) Administrative Tools for Intel(R) Network Adapters driver for Windows before version 1.4.0.15, may allow a privileged user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-administrative_tools_for_intel_network_adaptersIntel(R) Administrative Tools for Intel(R) Network Adapters
CWE ID-CWE-20
Improper Input Validation
CVE-2021-33058
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.07% / 22.37%
||
7 Day CHG~0.00%
Published-17 Nov, 2021 | 19:11
Updated-03 Aug, 2024 | 23:42
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper access control in the installer Intel(R)Administrative Tools for Intel(R) Network Adaptersfor Windowsbefore version 1.4.0.21 may allow an unauthenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-administrative_tools_for_intel_network_adaptersversion
CVE-2021-33129
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.04% / 9.90%
||
7 Day CHG~0.00%
Published-09 Feb, 2022 | 22:04
Updated-05 May, 2025 | 17:17
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Incorrect default permissions in the software installer for the Intel(R) Advisor before version 2021.4.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-advisorIntel(R) Advisor
CWE ID-CWE-276
Incorrect Default Permissions
CVE-2021-0186
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.06% / 19.77%
||
7 Day CHG~0.00%
Published-17 Nov, 2021 | 19:45
Updated-03 Aug, 2024 | 15:32
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper input validation in the Intel(R) SGX SDK applications compiled for SGX2 enabled processors may allow a privileged user to potentially escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-celeron_j1750pentium_silver_n5000_firmwareceleron_n2940_firmwarecore_i7-1068ng7xeon_platinum_8362celeron_j1900_firmwarecore_i5-1035g7core_i3-10105f_firmwarexeon_gold_6338core_i7-10850hxeon_gold_6338t_firmwarecore_i7-10870h_firmwareceleron_j1850celeron_n6210core_i5-10400fxeon_silver_4309yxeon_platinum_8352yxeon_platinum_8380h_firmwarexeon_platinum_8360hl_firmwarecore_i3-10300core_i9-10900te_firmwarexeon_gold_6354_firmwarecore_i7-10700tceleron_n2930_firmwarecore_i5-10210uxeon_gold_6326core_i7-1060g7_firmwareceleron_n2815xeon_gold_5317_firmwarecore_i5-10200hcore_i3-10100f_firmwareceleron_n2940xeon_silver_4316celeron_n2830_firmwarecore_i5-1035g4core_i5-10400hcore_i7-10700k_firmwareceleron_n5105xeon_gold_5318y_firmwarecore_i7-10510u_firmwareceleron_n3000_firmwarecore_i3-10100yceleron_j3455core_i5-10400txeon_gold_6348_firmwarepentium_silver_n6000core_i3-10100_firmwarecore_i5-10310uxeon_gold_5318s_firmwarecore_i5-10505core_i7-10700t_firmwarecore_i5-1030g7celeron_n2807_firmwareceleron_n4500core_i5-10310y_firmwarecore_i3-1000g1core_i7-10510yxeon_platinum_8380hceleron_j3160core_i5-10600kf_firmwarecore_i3-10110uxeon_platinum_8368q_firmwarecore_i5-10600_firmwareceleron_n3150_firmwarexeon_platinum_8376hceleron_n3150celeron_n4100celeron_n5100_firmwarexeon_gold_6312u_firmwarexeon_gold_6330xeon_platinum_8362_firmwarecore_i3-10305t_firmwareceleron_n3060core_i5-10310u_firmwarecore_i5-10400xeon_silver_4310t_firmwarepentium_silver_n6000_firmwarexeon_gold_6314uceleron_n5105_firmwarecore_i7-10610u_firmwarecore_i9-10900f_firmwarecore_i7-10710u_firmwarecore_i5-10500tecore_i3-10105fcore_i5-10300hceleron_n4120xeon_platinum_8353hcore_i9-10980hkxeon_gold_6348hcore_i3-1005g1_firmwarexeon_gold_6338_firmwareceleron_n4000_firmwareceleron_n3050_firmwareceleron_j3455_firmwarecore_i7-10510ucore_i3-10100y_firmwarecore_i5-10400t_firmwareceleron_n2840celeron_n2806_firmwarecore_i3-10100ecore_i7-1060g7xeon_silver_4309y_firmwareceleron_n2910core_i9-10900celeron_n2930xeon_gold_5320hceleron_n2840_firmwarexeon_gold_5320celeron_j1800_firmwarexeon_platinum_8360yxeon_platinum_8358p_firmwarexeon_gold_6330h_firmwarecore_i3-10100txeon_gold_6338tcore_i9-10900ecore_i9-10850kxeon_gold_5318score_i3-10325_firmwarecore_i9-10900kcore_i7-10700te_firmwarecore_i9-10900fxeon_platinum_8356h_firmwarecore_i7-10700core_i3-10105t_firmwareceleron_j3060celeron_j4105_firmwareceleron_n3160core_i3-10100tecore_i7-10750h_firmwarecore_i5-10400_firmwarexeon_platinum_8380hlxeon_gold_5318nceleron_n4505_firmwarexeon_platinum_8358pcore_i3-10105tcore_i7-10700fcore_i9-10885hpentium_silver_n5000core_i5-1030g4_firmwarecore_i3-10325xeon_gold_6328h_firmwarecore_i7-1068ng7_firmwarecore_i7-10750hxeon_gold_6328hl_firmwarecore_i3-1000g4xeon_gold_6342_firmwarexeon_gold_5317xeon_platinum_8352m_firmwarexeon_platinum_8358_firmwarecore_i7-10875hceleron_n3350e_firmwareceleron_j6413_firmwarexeon_gold_6348h_firmwarexeon_platinum_8356hceleron_j4105core_i5-10400h_firmwarecore_i3-10100celeron_j4025_firmwarecore_i5-10500_firmwarecore_i5-1035g7_firmwarexeon_platinum_8360y_firmwareceleron_j1800pentium_silver_j5040_firmwarecore_i7-10700f_firmwareceleron_j6412_firmwareceleron_j1900xeon_gold_5318h_firmwarexeon_gold_5320tceleron_n4505core_i5-10210yxeon_gold_6312ucore_i5-10500exeon_gold_5320h_firmwareceleron_j3355core_i3-10305_firmwarecore_i5-10210u_firmwarecore_i5-10600tcore_i3-10110ycore_i5-10600kfceleron_n2810_firmwarexeon_silver_4314xeon_gold_5318n_firmwarecore_i7-10700exeon_platinum_8352y_firmwareceleron_j3355ecore_i9-10900e_firmwarecore_i5-10500h_firmwarexeon_platinum_8358celeron_j4125_firmwarexeon_gold_5315ycore_i7-10870hceleron_j1850_firmwarexeon_platinum_8352s_firmwarecore_i5-1035g1pentium_silver_n5030core_i5-1038ng7xeon_platinum_8354hxeon_silver_4310_firmwarecore_i7-10700e_firmwarexeon_gold_6338n_firmwareceleron_n2920_firmwarecore_i5-1035g4_firmwareceleron_n3350core_i3-10110y_firmwarecore_i7-10700kxeon_gold_6326_firmwareceleron_n3050xeon_platinum_8351n_firmwarepentium_silver_j5005core_i5-1030g4core_i5-10500te_firmwarecore_i7-10700texeon_platinum_8368celeron_n3000celeron_n2807core_i5-10500xeon_silver_4310tceleron_n4100_firmwarecore_i5-10500e_firmwarexeon_platinum_8380core_i7-10710ucore_i7-10700kfxeon_gold_6314u_firmwarepentium_silver_j5005_firmwarexeon_platinum_8351nxeon_platinum_8376hl_firmwarexeon_gold_6330n_firmwarexeon_platinum_8352vxeon_gold_6336ycore_i5-10600t_firmwarecore_i5-10210y_firmwareceleron_n3350_firmwarecore_i3-10305core_i3-10300_firmwareceleron_n2820core_i3-1000g4_firmwareceleron_n4500_firmwarexeon_platinum_8360hlxeon_platinum_8380_firmwareceleron_j3355e_firmwarecore_i7-10510y_firmwareceleron_n3450_firmwaresgx_sdkxeon_gold_6330_firmwarecore_i3-10100e_firmwareceleron_n2805celeron_n2806core_i5-10600kceleron_j1750_firmwarecore_i5-1038ng7_firmwarexeon_gold_5320_firmwarexeon_platinum_8380hl_firmwarecore_i9-10900kfcore_i3-10105xeon_platinum_8360h_firmwareceleron_n4120_firmwarexeon_gold_6354xeon_gold_6336y_firmwarecore_i3-10100te_firmwarexeon_platinum_8354h_firmwarexeon_platinum_8352mceleron_n3350ecore_i9-10900k_firmwarecore_i3-1000g1_firmwarecore_i5-10600k_firmwarecore_i5-10310yxeon_gold_6330hceleron_n3010xeon_gold_5318hxeon_platinum_8376hlcore_i5-10500hxeon_silver_4316_firmwareceleron_n2808celeron_j4025core_i7-10810u_firmwarecore_i3-10100t_firmwarecore_i9-10900t_firmwarepentium_silver_n6005_firmwarecore_i7-10810upentium_silver_n5030_firmwarecore_i5-10400f_firmwarecore_i3-10300t_firmwarecore_i3-10105_firmwareceleron_j6413xeon_gold_6346core_i9-10900_firmwarecore_i7-10875h_firmwareceleron_j3160_firmwarecore_i5-10500t_firmwareceleron_j3455e_firmwareceleron_j4005_firmwarecore_i7-10610uceleron_j3060_firmwarecore_i5-10505_firmwarecore_i5-1035g1_firmwarecore_i3-10100fxeon_gold_6338nceleron_n2920core_i7-1065g7_firmwarecore_i5-10600celeron_n3160_firmwareceleron_n2815_firmwarexeon_platinum_8360hxeon_gold_5315y_firmwarecore_i5-10300h_firmwarepentium_silver_n6005core_i9-10900kf_firmwareceleron_n2820_firmwarexeon_gold_6348celeron_n6211xeon_gold_6330ncore_i5-10200h_firmwarexeon_platinum_8368_firmwareceleron_n4020_firmwarecore_i9-10850k_firmwareceleron_n6210_firmwareceleron_n6211_firmwareceleron_n3060_firmwareceleron_n3010_firmwarexeon_platinum_8352v_firmwarecore_i9-10885h_firmwarexeon_platinum_8368qceleron_n4000celeron_n2830celeron_j3455exeon_gold_5320t_firmwarecore_i5-1030g7_firmwarexeon_silver_4310core_i3-10320core_i9-10900txeon_silver_4314_firmwarecore_i3-10300txeon_gold_6334celeron_n3450celeron_n5100celeron_n2805_firmwarecore_i3-10110u_firmwareceleron_n4020celeron_j6412xeon_gold_6342celeron_n2810celeron_n2808_firmwarecore_i7-10700kf_firmwarexeon_platinum_8376h_firmwarexeon_platinum_8353h_firmwarecore_i5-10500tcore_i3-10320_firmwarexeon_platinum_8352sxeon_gold_6346_firmwarexeon_gold_5318yceleron_j3355_firmwarecore_i3-1005g1celeron_j4005xeon_gold_6328hcore_i3-10305tcore_i7-10700_firmwarexeon_gold_6334_firmwareceleron_n2910_firmwarecore_i7-10850h_firmwarecore_i7-1065g7pentium_silver_j5040xeon_gold_6328hlcore_i9-10900tecore_i9-10980hk_firmwareceleron_j4125Intel(R) SGX SDK applications compiled for SGX2 enabled processors
CWE ID-CWE-20
Improper Input Validation
CVE-2021-0135
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.13% / 33.61%
||
7 Day CHG~0.00%
Published-17 Nov, 2021 | 19:26
Updated-03 Aug, 2024 | 15:32
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper input validation in the Intel(R) Ethernet Diagnostic Driver for Windows before version 1.4.0.10 may allow a privileged user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-ethernet_diagnostic_driverIntel(R) Ethernet Diagnostic Driver for Windows
CWE ID-CWE-20
Improper Input Validation
CVE-2020-8765
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.04% / 8.75%
||
7 Day CHG~0.00%
Published-17 Feb, 2021 | 13:57
Updated-04 Aug, 2024 | 10:12
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Incorrect default permissions in the installer for the Intel(R) RealSense(TM) DCM may allow a privileged user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-realsense_camera_f200realsense_camera_sr300realsense_camera_r200realsense_depth_camera_managerIntel(R) RealSense(TM) DCM
CWE ID-CWE-276
Incorrect Default Permissions
CVE-2020-8739
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.23% / 46.08%
||
7 Day CHG~0.00%
Published-12 Nov, 2020 | 18:04
Updated-04 Aug, 2024 | 10:12
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Use of potentially dangerous function in Intel BIOS platform sample code for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel CorporationNetApp, Inc.
Product-xeon_platinum_8153xeon_w-2223core_i7-9800xxeon_w-3245mxeon_gold_5217xeon_gold_6230txeon_gold_6146xeon_gold_6126tcore_i7-6950xxeon_gold_6230ncore_i7-4960xxeon_w-3225xeon_w-3265xeon_gold_5218nxeon_bronze_3106xeon_gold_6138txeon_w-3245xeon_d-1527xeon_gold_5115xeon_gold_5120xeon_platinum_8170xeon_gold_6136xeon_w-2125core_i9-10940xxeon_d-1523nxeon_d-1540xeon_gold_6138xeon_gold_5220xeon_d-1653nxeon_platinum_8160thci_compute_node_bioscore_i7-7740xxeon_w-2295xeon_silver_4214rcore_i7-5820kxeon_d-1528xeon_platinum_8164xeon_d-1577xeon_silver_4114txeon_d-1637core_i7-3960xaff_biosxeon_gold_6154xeon_gold_6234xeon_d-2141ixeon_w-2175xeon_d-1541core_i7-3940xmxeon_gold_6238rxeon_w-1250xeon_w-1250texeon_w-2255xeon_d-1518fas_bioshci_storage_node_biosxeon_gold_6208ucore_i7-4940mxxeon_gold_5215xeon_w-1290exeon_d-2143itcore_i7-4930kxeon_d-2163itxeon_platinum_8168core_i9-7920xxeon_gold_5222xeon_w-3275xeon_gold_5218xeon_w-1270xeon_d-1553nxeon_silver_4209txeon_silver_4109txeon_d-1567xeon_silver_4116xeon_w-1270exeon_d-1633nxeon_gold_5215lxeon_silver_4215rxeon_d-1548xeon_gold_6138fcore_i7-4820kxeon_d-1529xeon_gold_5122xeon_w-2245xeon_d-1649nxeon_platinum_8160core_i9-7960xxeon_silver_4210tcore_i7-7820xxeon_gold_6212uxeon_w-1270tecore_i9-7980xexeon_silver_4114core_i7-6900kcore_i9-9940xxeon_gold_6148fxeon_bronze_3104xeon_d-1520xeon_w-1290txeon_gold_6132xeon_d-1571xeon_gold_6238lbiosxeon_gold_6152core_i9-9820xxeon_platinum_8158xeon_w-2155xeon_platinum_8156xeon_d-2173itcore_i9-9900xxeon_d-2123itxeon_w-1290pxeon_w-3265mxeon_w-2135xeon_gold_6222vxeon_d-1627core_i7-3930kxeon_platinum_8176xeon_w-2265xeon_d-1623nxeon_w-2145xeon_d-1531xeon_d-1602xeon_w-10855mxeon_gold_6142xeon_gold_6126fxeon_d-1539xeon_d-1533nxeon_gold_6128core_i9-9980xexeon_gold_5218txeon_silver_4215xeon_gold_6150xeon_gold_5118xeon_w-2235xeon_gold_6130fxeon_d-2142itxeon_gold_5220rxeon_gold_6140core_i7-6800kxeon_d-2146ntxeon_platinum_8160fcore_i9-10900xxeon_silver_4214xeon_w-1270pxeon_silver_4210rxeon_d-2161ixeon_silver_4214ycore_i9-10920xcore_i9-10980xexeon_gold_6210uxeon_d-2187ntxeon_gold_5218bcore_i7-6850kxeon_gold_6126core_i7-3970xcore_i9-7940xxeon_gold_6138pcore_i9-9960xxeon_w-1250exeon_w-1290xeon_d-2166ntcore_i7-3920xmxeon_platinum_8176fxeon_silver_4216solidfire_biosxeon_gold_6230xeon_w-2195xeon_w-10885mxeon_d-2183itxeon_silver_4116txeon_d-1513nxeon_d-1537xeon_w-2275xeon_d-1622xeon_w-1290tecore_i5-7640xcore_i9-7900xxeon_d-1543nxeon_gold_6209uxeon_silver_4112xeon_gold_6226xeon_gold_6142fxeon_w-3223xeon_d-1521xeon_d-1559core_i7-5960xxeon_d-2145ntxeon_gold_5120txeon_gold_6230rxeon_w-3175xxeon_gold_6238xeon_gold_6130xeon_gold_6134xeon_w-1250pcore_i7-7800xcore_i9-9920xcore_i7-4930mxxeon_w-3235xeon_silver_4208core_i7-5930kxeon_gold_5218rxeon_gold_6226rxeon_bronze_3206rxeon_w-2225xeon_w-2123xeon_gold_5220sxeon_w-2133xeon_w-3275mxeon_d-1557xeon_gold_6148core_i7-3820xeon_gold_6144xeon_silver_4110xeon_bronze_3204xeon_platinum_8180xeon_d-2177ntxeon_gold_5119txeon_silver_4108xeon_gold_6130txeon_gold_5220txeon_silver_4210Intel BIOS platform sample code for some Intel(R) Processors
  • Previous
  • 1
  • 2
  • ...
  • 6
  • 7
  • 8
  • 9
  • 10
  • Next
Details not found