CVE-2019-11087 | ByteOS Network

Vulnerability Details :

CVE-2019-11087

Assigner-intel

Assigner Org ID-6dda929c-bb53-4a77-a76d-48e79601a1ce

Published At-18 Dec, 2019 | 21:09

Updated At-04 Aug, 2024 | 22:40

Insufficient input validation in the subsystem for Intel(R) CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable escalation of privilege, information disclosure or denial of service via local access.

EPSS History

Score

Latest Score

-

N/A

Percentile

Latest Percentile

-

N/A

▼Common Vulnerabilities and Exposures (CVE)

Assigner:intel

Assigner Org ID:6dda929c-bb53-4a77-a76d-48e79601a1ce

Published At:18 Dec, 2019 | 21:09

Updated At:04 Aug, 2024 | 22:40

▼CVE Numbering Authority (CNA)

Insufficient input validation in the subsystem for Intel(R) CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable escalation of privilege, information disclosure or denial of service via local access.

Affected Products

Vendor

Product

Intel(R) CSME, Intel(R) TXE

Versions

Affected

See provided reference

Problem Types

Type	CWE ID	Description
text	N/A	Escalation of Privilege, Denial of Service, Information Disclosure

Type: text

CWE ID: N/A

Description: Escalation of Privilege, Denial of Service, Information Disclosure

References

Hyperlink	Resource
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00241.html	x_refsource_MISC

Hyperlink: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00241.html

Resource:

x_refsource_MISC

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00241.html	x_refsource_MISC x_transferred

Hyperlink: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00241.html

Resource:

x_refsource_MISC

x_transferred

▼National Vulnerability Database (NVD)

Source:secure@intel.com

Published At:18 Dec, 2019 | 22:15

Updated At:02 Jan, 2020 | 16:48

Insufficient input validation in the subsystem for Intel(R) CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable escalation of privilege, information disclosure or denial of service via local access.

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	6.7	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Primary	2.0	4.6	MEDIUM	AV:L/AC:L/Au:N/C:P/I:P/A:P

Type: Primary

Version: 3.1

Base score: 6.7

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Type: Primary

Version: 2.0

Base score: 4.6

Base severity: MEDIUM

Vector:

AV:L/AC:L/Au:N/C:P/I:P/A:P

CPE Matches

Intel Corporation

>>converged_security_management_engine_firmware>>Versions from 11.0(inclusive) to 11.8.70(exclusive)

cpe:2.3:o:intel:converged_security_management_engine_firmware:*:*:*:*:*:*:*:*

Intel Corporation

>>converged_security_management_engine_firmware>>Versions from 11.10(inclusive) to 11.11.70(exclusive)

cpe:2.3:o:intel:converged_security_management_engine_firmware:*:*:*:*:*:*:*:*

Intel Corporation

>>converged_security_management_engine_firmware>>Versions from 11.20(inclusive) to 11.22.70(exclusive)

cpe:2.3:o:intel:converged_security_management_engine_firmware:*:*:*:*:*:*:*:*

Intel Corporation

>>converged_security_management_engine_firmware>>Versions from 12.0(inclusive) to 12.0.45(exclusive)

cpe:2.3:o:intel:converged_security_management_engine_firmware:*:*:*:*:*:*:*:*

Intel Corporation

>>converged_security_management_engine_firmware>>Versions from 13.0(inclusive) to 13.0.10(exclusive)

cpe:2.3:o:intel:converged_security_management_engine_firmware:*:*:*:*:*:*:*:*

Intel Corporation

>>converged_security_management_engine_firmware>>Versions from 14.0.0(inclusive) to 14.0.10(exclusive)

cpe:2.3:o:intel:converged_security_management_engine_firmware:*:*:*:*:*:*:*:*

Intel Corporation

>>trusted_execution_engine_firmware>>Versions from 3.0(inclusive) to 3.1.70(exclusive)

cpe:2.3:o:intel:trusted_execution_engine_firmware:*:*:*:*:*:*:*:*

Intel Corporation

>>trusted_execution_engine_firmware>>Versions from 4.0(inclusive) to 4.0.20(exclusive)

cpe:2.3:o:intel:trusted_execution_engine_firmware:*:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-20	Primary	nvd@nist.gov

CWE ID: CWE-20

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00241.html	secure@intel.com	Vendor Advisory

Hyperlink: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00241.html

Source: secure@intel.com

Resource:

Vendor Advisory

Similar CVEs

909Records found

Matching Score-10

Assigner-Intel Corporation

Matching Score-10

Assigner-Intel Corporation

CVSS Score-8.2||HIGH

EPSS-0.14% / 35.28%

||

7 Day CHG~0.00%

Published-14 Nov, 2019 | 16:56

Updated-04 Aug, 2024 | 22:48

Insufficient input validation in system firmware for Intel(R) Xeon(R) Scalable Processors, Intel(R) Xeon(R) Processors D Family, Intel(R) Xeon(R) Processors E5 v4 Family, Intel(R) Xeon(R) Processors E7 v4 Family and Intel(R) Atom(R) processor C Series may allow a privileged user to potentially enable escalation of privilege, denial of service and/or information disclosure via local access.

Vendor-n/a Intel Corporation Hewlett Packard Enterprise (HPE)

Product-xeon_platinum_8153 atom_c3858_firmware xeon_bronze_3104_firmware xeon_e5-4610_v4 xeon_e7-8894_v4 xeon_e5-2608l_v4_firmware xeon_gold_6146 xeon_gold_6126f_firmware atom_c3830_firmware xeon_platinum_8168_firmware xeon_silver_4108_firmware apollo_4200_gen10_server xeon_d-1527 xeon_e5-2697_v4 xeon_gold_5115 synergy_620_gen9_compute_module xeon_platinum_8170 xeon_gold_6136 xeon_gold_6138f_firmware xeon_gold_5217_firmware proliant_bl460c_gen9_server_blade proliant_dl160_gen9_server_firmware xeon_gold_6138 xeon_e5-4650_v4 xeon_e7-8880_v4 atom_c3336_firmware xeon_d-2163it_firmware xeon_e5-1660_v4 proliant_bl660c_gen9_server xeon_e7-8891_v4 xeon_platinum_8164 xeon_d-1521_firmware proliant_ml350_gen9_server_firmware xeon_gold_6240_firmware xeon_d-1557_firmware atom_c3708_firmware proliant_dl60_gen9_server xeon_d-1518 atom_c2550 synergy_620_gen9_compute_module_firmware xeon_platinum_8268_firmware xeon_gold_6248_firmware xeon_gold_6262v xeon_e5-2609_v4_firmware xeon_platinum_8168 xeon_e5-2683_v4 atom_c2538_firmware xeon_e5-2608l_v4 xeon_gold_5218 xeon_e5-1620_v4 xeon_gold_6238m_firmware xeon_d-1567_firmware xeon_d-1567 xeon_e5-4640_v4 xeon_e5-4655_v4_firmware xeon_gold_6138t_firmware xeon_silver_4116_firmware xeon_d-2173it_firmware xeon_gold_5122 xeon_platinum_8180_firmware xeon_silver_4210_firmware apollo_4200_gen9_server_firmware xeon_gold_6126_firmware xeon_d-2191 proliant_dl380_gen9_server xeon_e7-8870_v4_firmware xeon_e5-4627_v4_firmware proliant_ml110_gen9_server_firmware xeon_platinum_8276_firmware xeon_e7-8870_v4 xeon_gold_6240 xeon_gold_6150_firmware xeon_platinum_8156 xeon_bronze_3106_firmware xeon_d-2177nt_firmware xeon_gold_6138_firmware xeon_e7-8893_v4_firmware xeon_d-1533n_firmware xeon_e5-2667_v4_firmware xeon_gold_5220s_firmware xeon_gold_5215_firmware xeon_e5-2667_v4 proliant_xl230a_gen9_server_firmware xeon_platinum_8274 proliant_dl580_gen9_server xeon_gold_6126f xeon_d-1539 xeon_silver_4109t_firmware xeon_e5-1680_v4 xeon_silver_4114_firmware xeon_gold_6230_firmware xeon_d-2146nt proliant_xl250a_gen9_server_firmware xeon_platinum_8280l_firmware xeon_platinum_8160f xeon_d-1577_firmware atom_c2550_firmware xeon_e5-4660_v4 atom_c3538_firmware xeon_gold_6210u xeon_d-2187nt atom_c2738 xeon_e5-4669_v4_firmware xeon_platinum_8158_firmware xeon_d-2166nt xeon_gold_5120_firmware xeon_gold_6140m_firmware xeon_silver_4216 xeon_platinum_8253 xeon_gold_6230 xeon_e5-2630l_v4 xeon_gold_6134_firmware xeon_e5-4667_v4 atom_c3336 atom_c3958 xeon_e5-2628l_v4 xeon_gold_6130t_firmware proliant_dl380_gen10_server_firmware xeon_d-2183it xeon_e5-2690_v4_firmware xeon_e5-2630_v4 xeon_d-1622 atom_c2350_firmware xeon_d-2145nt xeon_e5-1650_v4 xeon_gold_6238 xeon_gold_6126t_firmware xeon_silver_4208 xeon_e5-2623_v4 xeon_e5-4620_v4_firmware xeon_gold_5220s xeon_platinum_8280m_firmware xeon_e7-8890_v4_firmware apollo_4200_gen9_server xeon_platinum_9282 xeon_d-1513n_firmware xeon_platinum_9242_firmware xeon_e5-1620_v4_firmware xeon_silver_4108 xeon_gold_6130t xeon_silver_4210 xeon_platinum_8256_firmware xeon_e5-2618l_v4_firmware xeon_e5-2637_v4_firmware xeon_e7-8867_v4 atom_c2358_firmware proliant_ml350_gen10_server proliant_ml150_gen9_server_firmware xeon_platinum_8276m atom_c2338 xeon_bronze_3106 synergy_480_gen10_compute_module_firmware xeon_gold_6238m atom_c3708 atom_c2518_firmware xeon_d-1540 xeon_platinum_8160t xeon_e5-2698_v4 xeon_d-1528 xeon_e5-4627_v4 proliant_e910_server_blade_firmware xeon_d-2141i xeon_e5-2660_v4 xeon_d-1541 xeon_e7-4830_v4 xeon_silver_4208_firmware xeon_d-1633n_firmware xeon_platinum_8268 xeon_e5-2650_v4_firmware proliant_xl230a_gen9_server xeon_gold_5222 proliant_ws460c_gen9_graphics_server_blade_firmware xeon_e5-2687w_v4 xeon_e5-2630_v4_firmware atom_c2516 synergy_680_gen9_compute_module_firmware xeon_gold_6240m xeon_e5-4667_v4_firmware xeon_d-1548 xeon_e5-2699a_v4_firmware xeon_d-1649n xeon_d-1529 xeon_e5-2603_v4_firmware atom_c3308_firmware xeon_platinum_8160 xeon_gold_5115_firmware proliant_ml110_gen10_server_firmware xeon_platinum_8156_firmware xeon_e5-4660_v4_firmware proliant_xl270d_gen10_server xeon_gold_5118_firmware xeon_e7-4809_v4 proliant_xl450_gen9_server atom_c2718 xeon_gold_6146_firmware xeon_gold_6148f xeon_e5-2630l_v4_firmware atom_c2750 xeon_gold_5218_firmware xeon_gold_6132 xeon_gold_6238t_firmware atom_c3338 atom_c2316 xeon_e5-2618l_v4 xeon_e7-8891_v4_firmware xeon_e5-2650l_v4_firmware atom_c2358 proliant_dl580_gen10_server xeon_platinum_8160_firmware xeon_d-1623n proliant_xl170r_gen10_server atom_c2508_firmware xeon_e7-8894_v4_firmware proliant_dl360_gen9_server_firmware proliant_xl450_gen9_server_firmware xeon_gold_6148_firmware xeon_gold_5220t_firmware xeon_e5-4610_v4_firmware xeon_platinum_8253_firmware xeon_gold_5220_firmware xeon_d-1622_firmware atom_c2538 xeon_e5-2680_v4_firmware proliant_e910_server_blade xeon_gold_6240m_firmware atom_c2530_firmware xeon_e5-1630_v4_firmware xeon_silver_4214 proliant_ml150_gen9_server xeon_d-2161i atom_c3858 xeon_platinum_8164_firmware synergy_680_gen9_compute_module xeon_d-2141i_firmware proliant_dl80_gen9_server_firmware atom_c3558_firmware xeon_gold_5218b proliant_dl160_gen10_server_firmware xeon_e5-4640_v4_firmware xeon_e5-1680_v4_firmware proliant_xl270d_gen10_server_firmware xeon_silver_4216_firmware xeon_gold_6254_firmware xeon_platinum_8284_firmware xeon_e5-1650_v4_firmware xeon_e5-2648l_v4 xeon_e5-4620_v4 proliant_dl380_gen10_server xeon_d-1513n xeon_d-1537 xeon_d-2187nt_firmware xeon_e7-8880_v4_firmware xeon_gold_6209u xeon_d-1539_firmware xeon_silver_4112 xeon_d-1559 xeon_gold_6130_firmware xeon_gold_5120t xeon_gold_6134 proliant_bl460c_gen10_server_blade_firmware xeon_gold_6222v_firmware xeon_platinum_8160f_firmware atom_c3558 xeon_platinum_8260_firmware xeon_e5-2648l_v4_firmware xeon_d-2183it_firmware atom_c3308 proliant_xl170r_gen9_server_firmware xeon_d-1557 xeon_gold_6148 xeon_e7-4850_v4 xeon_gold_6144 xeon_gold_6140m xeon_platinum_9282_firmware atom_c3758 xeon_d-1553n_firmware xeon_gold_6128_firmware xeon_gold_5220t atom_c3830 atom_c2750_firmware xeon_platinum_8276l atom_c3750 xeon_platinum_8170_firmware proliant_dl560_gen10_server atom_c2730 xeon_d-1627_firmware proliant_bl660c_gen9_server_firmware xeon_gold_6126t xeon_gold_6140_firmware xeon_gold_6238_firmware atom_c3950_firmware proliant_xl250a_gen9_server xeon_e5-2640_v4_firmware atom_c2758_firmware xeon_gold_6246 xeon_e5-1630_v4 atom_c3955_firmware atom_c2758 xeon_d-1527_firmware xeon_e5-2683_v4_firmware xeon_e5-2628l_v4_firmware xeon_e5-4628l_v4_firmware xeon_e7-4850_v4_firmware xeon_gold_5215m xeon_gold_5215 proliant_xl450_gen10_server_firmware xeon_d-2143it xeon_e5-2620_v4_firmware proliant_xl190r_gen10_server_firmware xeon_d-2163it synergy_660_gen10_compute_module xeon_e5-2699_v4 xeon_gold_6244_firmware xeon_d-2161i_firmware atom_c3538 xeon_platinum_8284 xeon_silver_4109t xeon_e5-2643_v4_firmware atom_c2308_firmware xeon_gold_5215l xeon_silver_4215_firmware xeon_gold_5122_firmware xeon_e5-4655_v4 xeon_gold_6138f xeon_e5-2658_v4 xeon_gold_6132_firmware xeon_gold_6136_firmware proliant_xl730f_gen9_server synergy_480_gen9_compute_module_firmware proliant_ml350_gen9_server xeon_gold_6212u_firmware atom_c2316_firmware xeon_gold_6212u xeon_d-1531_firmware xeon_e5-2697_v4_firmware xeon_platinum_8280m xeon_gold_6240l_firmware xeon_silver_4114 atom_c3750_firmware xeon_d-2123it_firmware synergy_480_gen9_compute_module atom_c3508 xeon_bronze_3104 xeon_d-1571 xeon_gold_6240l xeon_gold_6238l xeon_e5-2699_v4_firmware xeon_d-2173it xeon_d-2123it atom_c2338_firmware atom_c2730_firmware xeon_d-1627 xeon_gold_5218n_firmware proliant_ml350_gen10_server_firmware xeon_e5-2637_v4 proliant_dl120_gen10_server_firmware proliant_dl180_gen9_server xeon_platinum_8260y_firmware xeon_gold_6144_firmware xeon_e5-2695_v4_firmware xeon_d-1602 xeon_e7-8890_v4 xeon_e5-2680_v4 proliant_dl360_gen9_server xeon_gold_5218t xeon_gold_6240y_firmware xeon_gold_6150 xeon_e5-2697a_v4 xeon_gold_6242_firmware xeon_gold_6140 xeon_e5-2690_v4 xeon_d-1649n_firmware xeon_e5-2609_v4 proliant_dl360_gen10_server xeon_e5-2658_v4_firmware xeon_gold_6148f_firmware xeon_d-2145nt_firmware proliant_xl450_gen10_server proliant_xl230k_gen10_server xeon_d-1537_firmware xeon_gold_6126 xeon_d-1541_firmware xeon_d-2166nt_firmware xeon_d-1623n_firmware xeon_e5-2699a_v4 xeon_e5-2643_v4 proliant_dl160_gen9_server xeon_d-1548_firmware atom_c3850_firmware xeon_gold_6130f_firmware xeon_d-1559_firmware proliant_xl190r_gen10_server xeon_e5-2698_v4_firmware proliant_dl580_gen9_server_firmware xeon_gold_6142f xeon_e7-4809_v4_firmware xeon_platinum_8153_firmware xeon_e5-2697a_v4_firmware xeon_gold_6130 xeon_e5-2650l_v4 xeon_d-1529_firmware xeon_d-1540_firmware xeon_platinum_8260m xeon_silver_4214y_firmware xeon_d-1637_firmware proliant_xl170r_gen10_server_firmware proliant_dl360_gen10_server_firmware xeon_platinum_8260 xeon_platinum_8160t_firmware proliant_ws460c_gen9_graphics_server_blade proliant_bl460c_gen10_server_blade xeon_bronze_3204_firmware synergy_480_gen10_compute_module xeon_silver_4214_firmware atom_c2738_firmware xeon_d-2142it_firmware proliant_dl120_gen10_server proliant_ml110_gen9_server xeon_d-2143it_firmware xeon_platinum_9242 proliant_dl160_gen10_server synergy_660_gen10_compute_module_firmware xeon_platinum_8280l xeon_silver_4110 xeon_bronze_3204 xeon_d-1523n_firmware xeon_platinum_8280_firmware proliant_dl580_gen10_server_firmware xeon_gold_5217 xeon_e5-2687w_v4_firmware atom_c3758_firmware atom_c2558_firmware xeon_gold_5218n xeon_gold_6246_firmware xeon_gold_5222_firmware xeon_gold_6138t xeon_e5-2620_v4 xeon_e7-4820_v4_firmware proliant_dl80_gen9_server xeon_gold_5120 proliant_dl180_gen10_server_firmware xeon_d-1523n xeon_gold_5220 xeon_gold_6154_firmware xeon_d-1653n proliant_dl120_gen9_server_firmware xeon_e7-8860_v4_firmware xeon_d-1637 xeon_gold_6254 xeon_silver_4209t_firmware xeon_d-1577 xeon_gold_6240y xeon_platinum_8176_firmware xeon_e5-4669_v4 xeon_gold_6154 proliant_ml110_gen10_server xeon_gold_5215l_firmware xeon_d-1543n_firmware xeon_e5-2640_v4 xeon_e7-8893_v4 xeon_gold_6252n_firmware xeon_gold_5120t_firmware proliant_dl560_gen9_server_firmware xeon_d-1653n_firmware proliant_xl230k_gen10_server_firmware xeon_platinum_8270_firmware xeon_d-1553n atom_c3808_firmware xeon_d-1571_firmware atom_c3955 xeon_silver_4209t xeon_silver_4116 xeon_d-1633n xeon_gold_6210u_firmware proliant_xl170r_gen9_server atom_c3850 xeon_gold_6252n xeon_e7-4820_v4 xeon_gold_6244 xeon_gold_5218t_firmware xeon_gold_6248 xeon_platinum_8260l_firmware xeon_gold_6226_firmware xeon_d-1518_firmware xeon_platinum_8274_firmware xeon_platinum_8280 atom_c2558 xeon_gold_6152_firmware xeon_platinum_8176f_firmware xeon_d-1520 proliant_dl180_gen10_server proliant_dl380_gen9_server_firmware xeon_platinum_8256 xeon_gold_6152 xeon_d-2146nt_firmware xeon_platinum_8158 xeon_gold_6238l_firmware xeon_e7-4830_v4_firmware atom_c3508_firmware xeon_gold_5218b_firmware xeon_gold_6222v proliant_bl460c_gen9_server_blade_firmware xeon_d-1520_firmware xeon_platinum_8176 xeon_gold_6242 xeon_silver_4112_firmware xeon_d-1531 atom_c2518 xeon_gold_6262v_firmware xeon_e5-2660_v4_firmware xeon_platinum_8260y xeon_platinum_8270 xeon_e5-2650_v4 xeon_platinum_8260m_firmware proliant_dl560_gen9_server xeon_d-1533n proliant_xl190r_gen9_server xeon_gold_6128 xeon_silver_4215 xeon_d-2142it xeon_gold_5118 xeon_gold_6130f xeon_e5-2695_v4 atom_c2530 atom_c2508 proliant_xl730f_gen9_server_firmware xeon_gold_5215m_firmware xeon_platinum_8276 xeon_gold_6142f_firmware xeon_gold_6238t xeon_silver_4214y xeon_e5-2603_v4 proliant_xl190r_gen9_server_firmware xeon_e5-1660_v4_firmware xeon_e5-4628l_v4 xeon_e7-8860_v4 atom_c2350 atom_c2516_firmware atom_c3338_firmware xeon_platinum_8276m_firmware xeon_platinum_8176f xeon_e7-8867_v4_firmware atom_c2308 xeon_e5-2623_v4_firmware apollo_4200_gen10_server_firmware atom_c3808 xeon_d-1543n xeon_d-1528_firmware proliant_dl120_gen9_server xeon_gold_6226 xeon_d-1521 xeon_d-2191_firmware xeon_gold_6252 atom_c3950 xeon_e5-4650_v4_firmware proliant_dl560_gen10_server_firmware atom_c2718_firmware xeon_gold_6252_firmware xeon_gold_6209u_firmware xeon_silver_4110_firmware xeon_platinum_8260l proliant_dl60_gen9_server_firmware xeon_d-1602_firmware xeon_platinum_8180 proliant_dl180_gen9_server_firmware xeon_d-2177nt atom_c3958_firmware xeon_platinum_8276l_firmware 2019.2 IPU – UEFI

CWE ID-CWE-20

Improper Input Validation

Matching Score-10

Assigner-Intel Corporation

Matching Score-10

Assigner-Intel Corporation

CVSS Score-7.8||HIGH

EPSS-0.07% / 20.68%

||

7 Day CHG~0.00%

Published-17 May, 2019 | 15:41

Updated-04 Aug, 2024 | 22:40

Insufficient input validation in system firmware for Intel (R) NUC Kit may allow an authenticated user to potentially enable escalation of privilege, denial of service, and/or information disclosure via local access.

Vendor-n/a Intel Corporation

CWE ID-CWE-20

Improper Input Validation

Matching Score-10

Assigner-Intel Corporation

Matching Score-10

Assigner-Intel Corporation

CVSS Score-6.7||MEDIUM

EPSS-0.07% / 21.11%

||

7 Day CHG~0.00%

Published-13 Jun, 2019 | 15:36

Updated-04 Aug, 2024 | 22:48

Insufficient input validation in system firmware for Intel(R) NUC Kit may allow a privileged user to potentially enable escalation of privilege, denial of service and/or information disclosure via local access.

Vendor-n/a Intel Corporation

Product-compute_stick_stk2mv64cc compute_stick_stck1a32wfc compute_stick_firmware compute_card_cd1iv128mk compute_card_firmware nuc_kit_nuc8i3bex nuc_kit_firmware compute_card_cd1c64gk compute_stick_stck1a8lfc compute_card_cd1m3128mk compute_stick_stk2m364cc compute_card_cd1p64gk compute_stick_stk2m3w64cc Intel(R) NUC Firmware

CWE ID-CWE-20

Improper Input Validation

Matching Score-10

Assigner-Intel Corporation

Matching Score-10

Assigner-Intel Corporation

CVSS Score-6.7||MEDIUM

EPSS-0.08% / 23.69%

||

7 Day CHG~0.00%

Published-13 Jun, 2019 | 15:36

Updated-04 Aug, 2024 | 22:48

Insufficient input validation in system firmware for Intel(R) NUC Kit may allow a privileged user to potentially enable escalation of privilege, denial of service and/or information disclosure via local access.

Vendor-n/a Intel Corporation

Product-compute_stick_stk2mv64cc compute_stick_stck1a32wfc compute_stick_firmware compute_card_cd1iv128mk compute_card_firmware nuc_kit_nuc8i3bex nuc_kit_firmware compute_card_cd1c64gk compute_stick_stck1a8lfc compute_card_cd1m3128mk compute_stick_stk2m364cc compute_card_cd1p64gk compute_stick_stk2m3w64cc Intel(R) NUC Firmware

CWE ID-CWE-20

Improper Input Validation

Matching Score-10

Assigner-Intel Corporation

Matching Score-10

Assigner-Intel Corporation

CVSS Score-6.7||MEDIUM

EPSS-0.15% / 36.19%

||

7 Day CHG~0.00%

Published-18 Dec, 2019 | 21:10

Updated-04 Aug, 2024 | 22:48

Insufficient input validation in subsystem for Intel(R) CSME before versions 12.0.45 and 13.0.10 may allow a privileged user to potentially enable escalation of privilege via local access.

Vendor-n/a Intel Corporation

Product-converged_security_management_engine_firmware Intel(R) CSME

CWE ID-CWE-20

Improper Input Validation

Matching Score-10

Assigner-Intel Corporation

Matching Score-10

Assigner-Intel Corporation

CVSS Score-6.7||MEDIUM

EPSS-0.07% / 21.11%

||

7 Day CHG~0.00%

Published-13 Jun, 2019 | 15:36

Updated-04 Aug, 2024 | 22:48

Insufficient session validation in system firmware for Intel(R) NUC Kit may allow a privileged user to potentially enable escalation of privilege, denial of service and/or information disclosure via local access.

Vendor-n/a Intel Corporation

Product-compute_stick_stk2mv64cc compute_stick_stck1a32wfc compute_stick_firmware compute_card_cd1iv128mk compute_card_firmware nuc_kit_nuc8i3bex nuc_kit_firmware compute_card_cd1c64gk compute_stick_stck1a8lfc compute_card_cd1m3128mk compute_stick_stk2m364cc compute_card_cd1p64gk compute_stick_stk2m3w64cc Intel(R) NUC Firmware

CWE ID-CWE-20

Improper Input Validation

Matching Score-10

Assigner-Intel Corporation

Matching Score-10

Assigner-Intel Corporation

CVSS Score-6.7||MEDIUM

EPSS-0.06% / 18.40%

||

7 Day CHG~0.00%

Published-19 Aug, 2019 | 16:13

Updated-04 Aug, 2024 | 22:48

Insufficient session validation in system firmware for Intel(R) NUC may allow a privileged user to potentially enable escalation of privilege, denial of service and/or information disclosure via local access.

Vendor-n/a Intel Corporation

Product-compute_stick_stk2mv64cc compute_stick_firmware compute_card_firmware compute_card_cd1iv128mk nuc_kit_nuc7i5dnx nuc_kit_nuc7i7dnx nuc_kit_firmware nuc_kit_nuc7i3dnx Intel(R) NUC Advisory

CWE ID-CWE-20

Improper Input Validation

Matching Score-10

Assigner-Intel Corporation

Matching Score-10

Assigner-Intel Corporation

CVSS Score-6.8||MEDIUM

EPSS-0.14% / 34.72%

||

7 Day CHG~0.00%

Published-18 Dec, 2019 | 21:10

Updated-04 Aug, 2024 | 22:40

Insufficient input validation in subsystem for Intel(R) AMT before version 12.0.45 may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

Vendor-n/a Intel Corporation

Product-active_management_technology_firmware Intel(R) AMT

CWE ID-CWE-20

Improper Input Validation

Matching Score-10

Assigner-Intel Corporation

Matching Score-10

Assigner-Intel Corporation

CVSS Score-7.8||HIGH

EPSS-0.12% / 30.97%

||

7 Day CHG~0.00%

Published-17 May, 2019 | 15:41

Updated-04 Aug, 2024 | 22:40

Insufficient input validation in Kernel Mode Driver in Intel(R) i915 Graphics for Linux before version 5.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

Vendor-n/a Intel Corporation

Product-i915_firmware i915 Intel(R) i915 Graphics for Linux

CWE ID-CWE-20

Improper Input Validation

Matching Score-10

Assigner-Intel Corporation

Matching Score-10

Assigner-Intel Corporation

CVSS Score-7.9||HIGH

EPSS-0.02% / 4.37%

||

7 Day CHG~0.00%

Published-11 Aug, 2023 | 02:37

Updated-02 Oct, 2024 | 13:27

Improper input validation in BIOS firmware for some Intel(R) NUC may allow a privileged user to potentially enable escalation of privilege via local access.

Vendor-n/a Intel Corporation

Product-nuc_10_performance_kit_nuc10i3fnhf nuc_10_performance_kit_nuc10i5fnhj_firmware nuc_10_performance_kit_nuc10i3fnk_firmware nuc_10_performance_kit_nuc10i7fnh_firmware nuc_10_performance_kit_nuc10i7fnkn_firmware nuc_10_performance_kit_nuc10i7fnhc_firmware nuc_10_performance_mini_pc_nuc10i3fnhja_firmware nuc_10_performance_kit_nuc10i7fnh nuc_10_performance_kit_nuc10i5fnhf_firmware nuc_10_performance_mini_pc_nuc10i5fnhca nuc_10_performance_kit_nuc10i5fnh nuc_10_performance_kit_nuc10i7fnk_firmware nuc_10_performance_kit_nuc10i5fnk_firmware nuc_10_performance_kit_nuc10i3fnk nuc_10_performance_kit_nuc10i7fnhn nuc_10_performance_mini_pc_nuc10i5fnkpa nuc_10_performance_kit_nuc10i7fnkn nuc_10_performance_kit_nuc10i5fnhj nuc_10_performance_mini_pc_nuc10i7fnhaa nuc_10_performance_kit_nuc10i5fnh_firmware nuc_10_performance_kit_nuc10i5fnhf nuc_10_performance_kit_nuc10i5fnkp_firmware nuc_10_performance_kit_nuc10i5fnkp nuc_10_performance_kit_nuc10i5fnhn nuc_10_performance_mini_pc_nuc10i7fnkpa_firmware nuc_10_performance_kit_nuc10i3fnh nuc_10_performance_mini_pc_nuc10i7fnhja_firmware nuc_10_performance_mini_pc_nuc10i7fnkpa nuc_10_performance_kit_nuc10i3fnhn_firmware nuc_10_performance_mini_pc_nuc10i5fnhca_firmware nuc_10_performance_mini_pc_nuc10i3fnhja nuc_10_performance_kit_nuc10i5fnk nuc_10_performance_kit_nuc10i7fnkp nuc_10_performance_kit_nuc10i3fnhn nuc_10_performance_mini_pc_nuc10i7fnhja nuc_10_performance_kit_nuc10i7fnkp_firmware nuc_10_performance_kit_nuc10i3fnhf_firmware nuc_10_performance_mini_pc_nuc10i3fnhfa_firmware nuc_10_performance_kit_nuc10i7fnhc nuc_10_performance_mini_pc_nuc10i7fnhaa_firmware nuc_10_performance_kit_nuc10i7fnhn_firmware nuc_10_performance_kit_nuc10i3fnh_firmware nuc_10_performance_kit_nuc10i7fnk nuc_10_performance_mini_pc_nuc10i5fnhja nuc_10_performance_mini_pc_nuc10i5fnkpa_firmware nuc_10_performance_kit_nuc10i5fnkn nuc_10_performance_mini_pc_nuc10i3fnhfa nuc_10_performance_kit_nuc10i3fnkn_firmware nuc_10_performance_mini_pc_nuc10i5fnhja_firmware nuc_10_performance_kit_nuc10i5fnkn_firmware nuc_10_performance_kit_nuc10i5fnhn_firmware nuc_10_performance_kit_nuc10i3fnkn Intel(R) NUC

CWE ID-CWE-20

Improper Input Validation

Matching Score-10

Assigner-Intel Corporation

Matching Score-10

Assigner-Intel Corporation

CVSS Score-6.8||MEDIUM

EPSS-0.16% / 37.00%

||

7 Day CHG~0.00%

Published-14 Mar, 2019 | 20:00

Updated-16 Sep, 2024 | 22:25

Insufficient input validation in Intel(R) AMT in Intel(R) CSME before version 11.8.60, 11.11.60, 11.22.60 or 12.0.20 may allow an unauthenticated user to potentially execute arbitrary code via physical access.

Vendor-Intel Corporation

Product-converged_security_management_engine_firmware Intel(R) CSME, Server Platform Services, Trusted Execution Engine and Intel(R) Active Management Technology

CWE ID-CWE-20

Improper Input Validation

Matching Score-10

Assigner-Intel Corporation

Matching Score-10

Assigner-Intel Corporation

CVSS Score-8.7||HIGH

EPSS-0.03% / 8.23%

||

7 Day CHG~0.00%

Published-13 Nov, 2024 | 21:10

Updated-19 Nov, 2024 | 19:45

Improper input validation in UEFI firmware in some Intel(R) Server Board M10JNP2SB Family may allow a privileged user to potentially enable escalation of privilege via local access.

Vendor-n/a Intel Corporation

Product-m10jnp2sb_firmware m10jnp2sb Intel(R) Server Board M10JNP2SB Family m10jnp2sb_firmware

CWE ID-CWE-20

Improper Input Validation

Matching Score-10

Assigner-Intel Corporation

Matching Score-10

Assigner-Intel Corporation

CVSS Score-7.1||HIGH

EPSS-0.05% / 13.35%

||

7 Day CHG~0.00%

Published-13 Nov, 2024 | 21:11

Updated-04 Feb, 2025 | 18:27

Improper input validation in some Intel(R) CIP software before version 2.4.10852 may allow a privileged user to potentially enable escalation of privilege via local access.

Vendor-n/a Intel Corporation

Product-computing_improvement_program Intel(R) CIP software cip_software

CWE ID-CWE-20

Improper Input Validation

Matching Score-10

Assigner-Intel Corporation

Matching Score-10

Assigner-Intel Corporation

CVSS Score-7.8||HIGH

EPSS-0.06% / 17.81%

||

7 Day CHG~0.00%

Published-17 Feb, 2021 | 13:51

Updated-04 Aug, 2024 | 11:56

Insufficient input validation in some Intel(R) Graphics Drivers before version 27.20.100.8587 may allow a privileged user to potentially enable an escalation of privilege via local access.

Vendor-n/a Intel Corporation

Product-graphics_drivers Intel(R) Graphics Drivers

CWE ID-CWE-20

Improper Input Validation

Matching Score-10

Assigner-Intel Corporation

Matching Score-10

Assigner-Intel Corporation

CVSS Score-8.2||HIGH

EPSS-0.04% / 12.22%

||

7 Day CHG~0.00%

Published-11 Nov, 2022 | 15:48

Updated-05 Feb, 2025 | 21:15

Improper input validation in BIOS firmware for some Intel(R) NUC 11 Performance kits and Intel(R) NUC 11 Performance Mini PCs before version PATGL357.0042 may allow a privileged user to potentially enable escalation of privilege via local access.

Vendor-n/a Intel Corporation

Product-nuc_11_performance_kit_nuc11pahi70z_firmware nuc_11_performance_kit_nuc11paki7 nuc_11_performance_kit_nuc11pahi7_firmware nuc_11_performance_kit_nuc11pahi30z_firmware nuc_11_performance_mini_pc_nuc11paqi70qa nuc_11_performance_kit_nuc11paki5 nuc_11_performance_kit_nuc11paki3 nuc_11_performance_kit_nuc11pahi5 nuc_11_performance_kit_nuc11pahi30z nuc_11_performance_kit_nuc11pahi5_firmware nuc_11_performance_kit_nuc11pahi70z nuc_11_performance_kit_nuc11pahi3_firmware nuc_11_performance_kit_nuc11paki7_firmware nuc_11_performance_mini_pc_nuc11paqi50wa nuc_11_performance_kit_nuc11paki3_firmware nuc_11_performance_kit_nuc11pahi50z nuc_11_performance_kit_nuc11pahi7 nuc_11_performance_kit_nuc11pahi3 nuc_11_performance_kit_nuc11paki5_firmware nuc_11_performance_mini_pc_nuc11paqi50wa_firmware nuc_11_performance_mini_pc_nuc11paqi70qa_firmware nuc_11_performance_kit_nuc11pahi50z_firmware Intel(R) NUC 11 Performance kits and Intel(R) NUC 11 Performance Mini PCs

CWE ID-CWE-20

Improper Input Validation

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-6.7||MEDIUM

EPSS-0.34% / 55.62%

||

7 Day CHG~0.00%

Published-14 Nov, 2019 | 19:06

Updated-04 Aug, 2024 | 17:44

Insufficient memory protection in System Management Mode (SMM) and Intel(R) TXT for certain Intel(R) Xeon(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

Vendor-n/a Intel Corporation

Product-xeon_platinum_8276l xeon_platinum_8153 xeon_platinum_8170_firmware xeon_bronze_3104_firmware xeon_gold_6146 xeon_gold_6126t xeon_gold_6126f_firmware xeon_gold_6140_firmware xeon_platinum_8168_firmware xeon_silver_4108_firmware xeon_gold_5115 xeon_gold_6238_firmware xeon_platinum_8170 xeon_gold_6136 xeon_gold_6138f_firmware xeon_w-2125 xeon_w-2155_firmware xeon_gold_5217_firmware xeon_gold_6138 xeon_gold_6246 xeon_d-2163it_firmware xeon_platinum_8164 xeon_gold_6240_firmware xeon_gold_5215m xeon_gold_5215 xeon_platinum_8268_firmware xeon_gold_6248_firmware xeon_gold_6262v xeon_d-2143it xeon_d-2163it xeon_platinum_8168 xeon_gold_6244_firmware xeon_d-2161i_firmware xeon_gold_5218 xeon_gold_6238m_firmware xeon_platinum_8284 xeon_silver_4109t xeon_gold_5215l xeon_silver_4215_firmware xeon_gold_5122_firmware xeon_gold_6138t_firmware xeon_silver_4116_firmware xeon_d-2173it_firmware xeon_gold_6138f xeon_gold_5122 xeon_platinum_8180_firmware xeon_silver_4210_firmware xeon_gold_6132_firmware xeon_gold_6136_firmware xeon_gold_6212u_firmware xeon_gold_6212u xeon_gold_6126_firmware xeon_platinum_8280m xeon_gold_6240l_firmware xeon_silver_4114 xeon_d-2123it_firmware xeon_platinum_8276_firmware xeon_bronze_3104 xeon_gold_6240 xeon_gold_6238l xeon_gold_6240l xeon_gold_6150_firmware xeon_d-2173it xeon_platinum_8156 xeon_d-2123it xeon_bronze_3106_firmware xeon_d-2177nt_firmware xeon_gold_6138_firmware xeon_gold_5218n_firmware xeon_gold_5220s_firmware xeon_gold_5215_firmware xeon_platinum_8260y_firmware xeon_gold_6144_firmware xeon_platinum_8274 xeon_gold_6126f xeon_silver_4109t_firmware xeon_gold_5218t xeon_gold_6240y_firmware xeon_gold_6150 xeon_gold_6242_firmware xeon_gold_6140 xeon_silver_4114_firmware xeon_gold_6230_firmware xeon_d-2146nt xeon_platinum_8280l_firmware xeon_platinum_8160f xeon_gold_6148f_firmware xeon_w-2123_firmware xeon_d-2145nt_firmware xeon_gold_6210u xeon_d-2187nt xeon_gold_6126 xeon_platinum_8158_firmware xeon_d-2166nt_firmware xeon_d-2166nt xeon_gold_5120_firmware xeon_gold_6140m_firmware xeon_silver_4216 xeon_platinum_8253 xeon_gold_6230 xeon_w-2195 xeon_gold_6134_firmware xeon_gold_6130t_firmware xeon_gold_6130f_firmware xeon_d-2183it xeon_gold_6142f xeon_w-2145_firmware xeon_d-2145nt xeon_platinum_8153_firmware xeon_gold_6238 xeon_gold_6126t_firmware xeon_gold_6130 xeon_platinum_8260m xeon_silver_4214y_firmware xeon_silver_4208 xeon_platinum_8260 xeon_platinum_8160t_firmware xeon_bronze_3204_firmware xeon_silver_4214_firmware xeon_d-2142it_firmware xeon_w-2123 xeon_gold_5220s xeon_platinum_8280m_firmware xeon_d-2143it_firmware xeon_platinum_9242 xeon_platinum_9282 xeon_platinum_8280l xeon_silver_4110 xeon_platinum_9242_firmware xeon_bronze_3204 xeon_platinum_8280_firmware xeon_silver_4108 xeon_gold_6130t xeon_silver_4210 xeon_platinum_8256_firmware xeon_gold_5217 xeon_platinum_8276m xeon_gold_5218n xeon_gold_6246_firmware xeon_gold_5222_firmware xeon_gold_6138t xeon_bronze_3106 xeon_gold_6238m xeon_gold_5120 xeon_gold_5220 xeon_gold_6154_firmware xeon_platinum_8160t xeon_gold_6254 xeon_silver_4209t_firmware xeon_gold_6240y xeon_platinum_8176_firmware xeon_gold_6154 xeon_d-2141i xeon_gold_5215l_firmware xeon_silver_4208_firmware xeon_w-2195_firmware xeon_platinum_8268 xeon_gold_6252n_firmware xeon_gold_5120t_firmware xeon_gold_5222 xeon_platinum_8270_firmware xeon_silver_4209t xeon_w-2133_firmware xeon_silver_4116 xeon_gold_6240m xeon_gold_6210u_firmware xeon_gold_6252n xeon_gold_6244 xeon_platinum_8160 xeon_gold_5218t_firmware xeon_gold_6248 xeon_gold_5115_firmware xeon_platinum_8260l_firmware xeon_platinum_8156_firmware xeon_gold_6226_firmware xeon_platinum_8274_firmware xeon_gold_5118_firmware xeon_platinum_8280 xeon_w-2135_firmware xeon_gold_6152_firmware xeon_gold_6146_firmware xeon_platinum_8176f_firmware xeon_gold_6148f xeon_gold_5218_firmware xeon_gold_6132 xeon_gold_6238t_firmware xeon_platinum_8256 xeon_gold_6152 xeon_d-2146nt_firmware xeon_platinum_8158 xeon_gold_6238l_firmware xeon_w-2155 xeon_gold_5218b_firmware xeon_w-2135 xeon_gold_6222v xeon_w-2125_firmware xeon_platinum_8176 xeon_platinum_8160_firmware xeon_gold_6242 xeon_w-2175_firmware xeon_silver_4112_firmware xeon_w-2145 xeon_gold_6262v_firmware xeon_platinum_8260y xeon_platinum_8270 xeon_platinum_8260m_firmware xeon_gold_6148_firmware xeon_gold_6128 xeon_w-3175x_firmware xeon_silver_4215 xeon_gold_5220t_firmware xeon_d-2142it xeon_platinum_8253_firmware xeon_gold_5118 xeon_gold_6130f xeon_gold_5220_firmware xeon_gold_6240m_firmware xeon_gold_5215m_firmware xeon_silver_4214 xeon_platinum_8276 xeon_gold_6142f_firmware xeon_gold_6238t xeon_d-2161i xeon_platinum_8164_firmware xeon_silver_4214y xeon_d-2141i_firmware xeon_gold_5218b xeon_silver_4216_firmware xeon_gold_6254_firmware xeon_platinum_8276m_firmware xeon_platinum_8176f xeon_platinum_8284_firmware xeon_d-2187nt_firmware xeon_gold_6209u xeon_silver_4112 xeon_gold_6226 xeon_gold_6130_firmware xeon_gold_5120t xeon_w-3175x xeon_gold_6252 xeon_gold_6134 xeon_gold_6222v_firmware xeon_platinum_8160f_firmware xeon_platinum_8260_firmware xeon_w-2133 xeon_gold_6252_firmware xeon_d-2183it_firmware xeon_gold_6148 xeon_gold_6209u_firmware xeon_silver_4110_firmware xeon_platinum_8260l xeon_gold_6144 xeon_gold_6140m xeon_platinum_9282_firmware xeon_platinum_8180 xeon_d-2177nt xeon_platinum_8276l_firmware xeon_gold_6128_firmware xeon_w-2175 xeon_gold_5220t 2019.2 IPU – Intel(R) Processor Security

CWE ID-CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-6.7||MEDIUM

EPSS-0.25% / 47.94%

||

7 Day CHG~0.00%

Published-18 Feb, 2019 | 17:00

Updated-16 Sep, 2024 | 19:01

Insufficient user prompt in install routine for Intel(R) Data Center Manager SDK before version 5.0.2 may allow a privileged user to potentially enable escalation of privilege via local access.

Vendor-n/a Intel Corporation

Product-data_center_manager n/a

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-7.8||HIGH

EPSS-0.13% / 33.67%

||

7 Day CHG~0.00%

Published-18 Feb, 2019 | 17:00

Updated-16 Sep, 2024 | 16:23

Improper folder permissions in Intel(R) Data Center Manager SDK before version 5.0.2 may allow an authenticated user to potentially enable escalation of privilege via local access.

Vendor-n/a Intel Corporation

Product-data_center_manager n/a

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-7.8||HIGH

EPSS-0.07% / 20.69%

||

7 Day CHG~0.00%

Published-17 Apr, 2019 | 17:02

Updated-04 Aug, 2024 | 17:44

Insufficient path checking in the installation package for Intel(R) Graphics Performance Analyzer for Linux version 18.4 and before may allow an authenticated user to potentially enable escalation of privilege via local access.

Vendor-n/a Intel Corporation

Product-graphics_performance_analyzer Intel(R) Graphics Performance Analyzer for Linux Advisory

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-7.8||HIGH

EPSS-0.04% / 9.78%

||

7 Day CHG~0.00%

Published-17 May, 2019 | 15:41

Updated-04 Aug, 2024 | 17:44

Improper directory permissions in the installer for Intel(R) Quartus(R) software may allow an authenticated user to potentially enable escalation of privilege via local access.

Vendor-n/a Intel Corporation

Product-quartus_ii quartus_prime Intel(R) Quartus(R)

CWE ID-CWE-732

Incorrect Permission Assignment for Critical Resource

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-6.7||MEDIUM

EPSS-0.16% / 37.86%

||

7 Day CHG~0.00%

Published-17 May, 2019 | 15:41

Updated-04 Aug, 2024 | 17:44

Buffer overflow in subsystem in Intel(R) DAL before version 12.0.35 may allow a privileged user to potentially enable escalation of privilege via local access.

Vendor-n/a Intel Corporation

Product-converged_security_management_engine_firmware Intel(R) Dynamic Application Loader (DAL)

CWE ID-CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-7.8||HIGH

EPSS-0.38% / 58.46%

||

7 Day CHG~0.00%

Published-16 Dec, 2019 | 19:13

Updated-04 Aug, 2024 | 17:44

Insufficient memory protection in the Linux Administrative Tools for Intel(R) Network Adapters before version 24.3 may allow an authenticated user to potentially enable escalation of privilege via local access.

Vendor-n/a Intel Corporation

Product-administrative_tools_for_intel_network_adapters Linux Administrative Tools for Intel(R) Network Adapters

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-7.8||HIGH

EPSS-0.07% / 22.16%

||

7 Day CHG~0.00%

Published-13 Jun, 2019 | 15:36

Updated-04 Aug, 2024 | 17:44

Improper permissions in the installer for Intel(R) Chipset Device Software (INF Update Utility) before version 10.1.1.45 may allow an authenticated user to escalate privilege via local access.

Vendor-n/a Intel Corporation

Product-chipset_device_software Intel(R) Chipset Device Software (INF Update Utility) Advisory

CWE ID-CWE-264

Not Available

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-6.7||MEDIUM

EPSS-0.34% / 55.62%

||

7 Day CHG~0.00%

Published-14 Nov, 2019 | 19:07

Updated-04 Aug, 2024 | 17:44

Insufficient memory protection in Intel(R) TXT for certain Intel(R) Core Processors and Intel(R) Xeon(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

Vendor-n/a Intel Corporation

Product-xeon_e5-2687w_v2_firmware xeon_platinum_8153 xeon_e3-1230_v5 xeon_e5-1620_v2_firmware xeon_e7-8893_v3 xeon_e5-1630_v3_firmware xeon_e3-1558l_v5 xeon_bronze_3104_firmware xeon_e5-4610_v4 xeon_e7-8894_v4 xeon_e5-2608l_v4_firmware xeon_e3-1226_v3_firmware xeon_gold_6146 xeon_e5-2660_v3 xeon_gold_6126f_firmware xeon_e3-1240_v3_firmware xeon_e5-2450_v2 xeon_e7-8880l_v2 xeon_platinum_8168_firmware xeon_e3-1501l_v6_firmware xeon_silver_4108_firmware xeon_e5-2670_v2 xeon_e5-1680_v3 xeon_e-2124g_firmware xeon_e5-2697_v4 xeon_d-1527 xeon_e5-2608l_v3_firmware xeon_gold_5115 xeon_platinum_8170 xeon_gold_6136 xeon_gold_6138f_firmware xeon_e-2254me_firmware xeon_w-2125 core_i5-8400h core_m-5y71_firmware xeon_e5-2690_v2 xeon_e3-1220_v2_firmware xeon_e5-2648l_v2 xeon_e5-4610_v3 xeon_e7-8890_v3_firmware xeon_e3-1220_v5_firmware xeon_e7-8870_v3 xeon_e-2276me_firmware xeon_e5-4650_v4 xeon_e7-8880_v4 xeon_gold_6138 xeon_e5-2448l_v2_firmware xeon_e5-2620_v2_firmware xeon_e3-1275l_v3_firmware xeon_d-2163it_firmware xeon_e5-1660_v4 xeon_e5-2699r_v4_firmware xeon_e7-8891_v4 xeon_platinum_8164 core_i7-9700 xeon_d-1521_firmware xeon_e5-1620_v2 core_i7-6650u_firmware xeon_e3-1280_v5 xeon_e-2226g xeon_e3-1226_v3 xeon_e5-2699r_v4 xeon_e3-1265l_v2 xeon_e5-2658a_v3_firmware xeon_silver_4116t_firmware xeon_d-1557_firmware xeon_e7-4820_v2_firmware xeon_e5-1680_v3_firmware xeon_d-1518 xeon_e3-1285l_v4_firmware xeon_e5-1620_v3_firmware xeon_e-2276m_firmware core_i5-9600_firmware core_i5-9600t_firmware core_i7-6700te xeon_e7-4830_v2 xeon_e7-4830_v3_firmware xeon_e3-1501l_v6 xeon_e5-2609_v4_firmware xeon_platinum_8168 xeon_e5-2683_v4 core_i7-7600u xeon_e5-1660_v3_firmware xeon_e5-2640_v3 xeon_e5-2608l_v4 xeon_e-2224 xeon_e-2186m_firmware core_i5-7y57_firmware xeon_e5-2418l_v3_firmware xeon_e3-1280_v3_firmware xeon_e5-1620_v4 xeon_e7-8880l_v3 xeon_d-1567_firmware xeon_e3-1230_v2_firmware xeon_d-1567 xeon_e5-2630l_v3 xeon_e3-1505l_v6 xeon_e-2278ge xeon_e5-4640_v4 xeon_e5-4655_v4_firmware xeon_gold_6138t_firmware xeon_e-2134_firmware xeon_silver_4116_firmware xeon_d-2173it_firmware xeon_gold_5122 xeon_platinum_8180_firmware xeon_e5-2699_v3 core_i7-7600u_firmware xeon_gold_6126_firmware xeon_e5-4624l_v2_firmware xeon_e3-1240_v5_firmware xeon_e5-4640_v2 xeon_e3-1285_v3_firmware xeon_e5-2618l_v2_firmware xeon_e5-4657l_v2 core_i5-9500_firmware xeon_e7-8870_v4_firmware xeon_e5-4627_v4_firmware xeon_e3-1558l_v5_firmware xeon_e7-8870_v4 xeon_e5-2609_v2_firmware core_i5-8400h_firmware xeon_gold_6150_firmware xeon_e3-1265l_v4 xeon_platinum_8156 core_i5-8600 xeon_e5-2450l_v2_firmware xeon_e-2136 core_i7-9700k xeon_bronze_3106_firmware xeon_e7-8893_v4_firmware xeon_gold_6138_firmware xeon_d-2177nt_firmware xeon_d-1533n_firmware xeon_e7-4860_v2_firmware xeon_e5-2667_v4_firmware xeon_e7-8893_v2 xeon_e5-2667_v4 core_m7-6y75 xeon_e3-1285l_v4 xeon_gold_6126f xeon_e5-2628l_v2 xeon_e7-8870_v2 xeon_d-1539 xeon_silver_4109t_firmware xeon_e3-1275_v5_firmware xeon_e3-1535m_v5 xeon_e5-1680_v4 xeon_silver_4114_firmware xeon_e7-4809_v3 xeon_d-2146nt xeon_e3-1575m_v5_firmware xeon_e5-2609_v2 xeon_e3-1268l_v5 core_i5-8600k xeon_platinum_8160f xeon_e7-4820_v3_firmware xeon_d-1577_firmware core_i7-8700k_firmware xeon_e-2124_firmware core_i7-8700_firmware xeon_e3-1290_v2_firmware xeon_e3-1260l_v5_firmware xeon_e3-1240_v6_firmware xeon_e5-2658_v3 xeon_e5-4660_v4 xeon_e3-1501m_v6 core_i5-8365u xeon_e3-1105c_v2_firmware xeon_e3-1505m_v5_firmware xeon_e-2226ge_firmware xeon_d-2187nt xeon_e5-2643_v3_firmware xeon_e5-4669_v4_firmware xeon_platinum_8158_firmware xeon_e5-2680_v2 xeon_e5-2698_v3_firmware xeon_e3-1270_v6 xeon_gold_5120_firmware xeon_e-2286m xeon_d-2166nt xeon_e3-1505m_v5 xeon_e3-1280_v2_firmware xeon_silver_4114t_firmware xeon_w-2195 xeon_e5-2403_v2_firmware xeon_e5-2630l_v4 xeon_gold_6134_firmware xeon_e5-4667_v4 core_i7-5650u xeon_e5-2628l_v4 xeon_gold_6130t_firmware xeon_e-2276g xeon_e5-2658_v2 xeon_e-2186g xeon_d-2183it xeon_silver_4116t xeon_e5-2690_v4_firmware xeon_e-2174g xeon_e5-2630_v4 xeon_e5-2687w_v2 xeon_e5-4610_v3_firmware xeon_e5-4667_v3 xeon_e5-2609_v3_firmware xeon_e7-4809_v2_firmware core_m-5y70 xeon_e3-1280_v2 xeon_w-2145_firmware xeon_e3-1230_v6_firmware xeon_e5-2643_v3 xeon_e3-1220_v2 xeon_e5-1650_v4 xeon_d-2145nt xeon_e5-2630_v3 xeon_gold_6126t_firmware xeon_e5-4627_v2_firmware xeon_e3-1275_v6_firmware core_i5-5300u xeon_e3-1585_v5 xeon_e3-1225_v6_firmware xeon_e5-2667_v2_firmware xeon_e5-2623_v4 xeon_e5-4620_v4_firmware xeon_w-2123 xeon_e7-8890_v4_firmware core_i5-8600t_firmware xeon_gold_5119t_firmware xeon_e3-1220_v6_firmware xeon_d-1513n_firmware xeon_e5-2683_v3 xeon_e5-2637_v2_firmware xeon_gold_6142_firmware xeon_e3-1535m_v6_firmware xeon_e3-1265l_v4_firmware core_i7-5600u xeon_e5-2428l_v3_firmware xeon_e5-1620_v4_firmware xeon_gold_6130t xeon_silver_4108 xeon_e3-1280_v3 core_i5-9600 xeon_e3-1285_v3 xeon_e5-2618l_v4_firmware xeon_e5-2650_v3_firmware xeon_e5-2637_v4_firmware xeon_e3-1585l_v5_firmware xeon_e3-1240l_v5_firmware xeon_e5-2428l_v2 xeon_e7-8867_v4 xeon_e3-1225_v2_firmware xeon_e5-2660_v3_firmware core_i5-7300u_firmware core_i5-8600_firmware xeon_e3-1281_v3 xeon_bronze_3106 xeon_e-2224_firmware xeon_e3-1240l_v3 xeon_e-2274g xeon_e7-8880_v3 core_i5-9500 xeon_e-2278gel xeon_e3-1270_v2 xeon_d-1540 xeon_e3-1280_v6 xeon_e3-1225_v3 xeon_e7-8891_v3_firmware core_i7-6700t_firmware xeon_e5-1650_v2 xeon_e3-1245_v5_firmware xeon_e5-2650l_v3_firmware xeon_e5-2698_v4 xeon_e7-4890_v2_firmware xeon_platinum_8160t xeon_d-1528 xeon_e5-2697_v3 xeon_e5-4603_v2 xeon_e5-4627_v4 xeon_e5-4620_v2_firmware xeon_e3-1280_v6_firmware xeon_e-2124 core_i9-9880h xeon_e5-2620_v3_firmware xeon_e5-2660_v4 xeon_d-2141i core_i5-8500t_firmware xeon_e3-1275_v3 xeon_e7-4809_v2 xeon_e7-4830_v4 xeon_d-1541 xeon_e5-2650_v4_firmware xeon_e-2136_firmware xeon_e-2276g_firmware xeon_e3-1235l_v5_firmware core_i5-6300u xeon_e5-1660_v2 xeon_e5-2690_v2_firmware xeon_e-2276me xeon_e5-4620_v3_firmware xeon_e5-2687w_v4 xeon_e5-2630_v4_firmware xeon_e-2274g_firmware xeon_e5-4607_v2 xeon_e3-1271_v3 xeon_e5-2695_v2_firmware xeon_w-2133_firmware xeon_e5-4667_v3_firmware xeon_e3-1220l_v3_firmware xeon_e3-1275_v2_firmware xeon_e3-1535m_v6 xeon_e5-4667_v4_firmware xeon_e3-1278l_v4_firmware xeon_e5-2699a_v4_firmware xeon_d-1548 xeon_e3-1265l_v3 xeon_d-1529 core_i9-9900 xeon_e5-2603_v4_firmware xeon_e3-1220_v5 xeon_platinum_8160 xeon_gold_5115_firmware xeon_platinum_8156_firmware xeon_e5-4660_v4_firmware xeon_e-2146g_firmware xeon_e5-2403_v2 xeon_e5-2428l_v3 core_i7-8850h_firmware core_m7-6y75_firmware xeon_gold_5118_firmware xeon_e5-2667_v3_firmware xeon_e5-4648_v3 xeon_e7-4809_v4 core_i7-9850h_firmware xeon_gold_6146_firmware xeon_gold_6148f xeon_e5-2630l_v4_firmware xeon_e5-2640_v2 xeon_e5-2407_v2_firmware xeon_gold_6132 xeon_e5-2618l_v3_firmware core_i7-6660u_firmware xeon_e5-2618l_v4 xeon_e7-8891_v4_firmware xeon_e3-1258l_v4 xeon_w-2155 xeon_e-2278g_firmware xeon_e-2276ml_firmware xeon_e5-2623_v3_firmware xeon_e5-2650l_v4_firmware xeon_e-2224g xeon_w-2135 xeon_platinum_8160_firmware xeon_w-2145 xeon_e7-8894_v4_firmware xeon_e3-1231_v3_firmware xeon_e5-2648l_v2_firmware xeon_e-2226ge core_i7-6650u xeon_gold_6142 xeon_e5-4650_v3_firmware core_m-5y71 xeon_gold_6148_firmware xeon_e5-4610_v4_firmware core_i7-8665u_firmware xeon_e3-1585_v5_firmware xeon_e-2176g_firmware core_i5-9400h xeon_e5-2620_v2 xeon_e5-4640_v3_firmware core_i9-9900t xeon_e5-2680_v4_firmware xeon_e5-1428l_v2_firmware xeon_e3-1286l_v3_firmware xeon_e5-1630_v4_firmware xeon_e3-1286_v3 xeon_e7-8890_v2 xeon_e3-1230_v3 xeon_d-2161i xeon_e5-4603_v2_firmware xeon_e3-1225_v3_firmware xeon_e5-2640_v2_firmware xeon_platinum_8164_firmware xeon_d-2141i_firmware xeon_e3-1585l_v5 xeon_e5-2620_v3 xeon_e5-2670_v3 xeon_e7-2880_v2_firmware xeon_e5-4640_v4_firmware xeon_e5-2648l_v3 xeon_e5-1680_v4_firmware xeon_e3-1271_v3_firmware xeon_e5-2609_v3 xeon_e3-1275_v5 core_i7-9700k_firmware xeon_e3-1270_v2_firmware xeon_e5-2438l_v3 xeon_e3-1240_v5 xeon_e-2288g_firmware xeon_e5-2430_v2_firmware xeon_e5-2450_v2_firmware xeon_e5-2440_v2_firmware xeon_e3-1230l_v3 xeon_e3-1286_v3_firmware xeon_e5-2660_v2_firmware xeon_e5-2650_v3 xeon_e-2246g_firmware xeon_e5-2648l_v4 xeon_e5-1650_v4_firmware xeon_e-2176m_firmware xeon_e-2174g_firmware xeon_e5-4620_v4 xeon_d-1513n xeon_d-1537 xeon_e5-2683_v3_firmware xeon_e3-1515m_v5 xeon_d-2187nt_firmware xeon_e3-1225_v5 xeon_e7-8880_v4_firmware xeon_e5-2630l_v2 core_i5-8500 xeon_d-1539_firmware xeon_silver_4112 xeon_d-1559 xeon_gold_6130_firmware xeon_e5-2667_v2 xeon_e3-1515m_v5_firmware xeon_e5-2618l_v2 xeon_e7-4890_v2 xeon_gold_5120t xeon_e5-2630_v3_firmware xeon_e7-4830_v2_firmware xeon_w-3175x xeon_e3-1230l_v3_firmware xeon_gold_6134 xeon_e5-2628l_v3 xeon_e-2254me xeon_platinum_8160f_firmware xeon_e5-2448l_v2 core_i5-6440hq xeon_e3-1258l_v4_firmware core_i7-7y75 xeon_e5-2648l_v4_firmware xeon_e5-4669_v3 xeon_e7-8893_v2_firmware xeon_e5-1660_v2_firmware xeon_e-2286g_firmware core_i7-6700 xeon_e3-1220_v3 xeon_d-2183it_firmware xeon_w-2133 core_i5-7y57 xeon_e5-4627_v3 xeon_e7-2890_v2_firmware xeon_e7-4850_v4 xeon_gold_6148 xeon_d-1557 xeon_e3-1505m_v6 xeon_gold_6144 core_i5-9600k_firmware core_i9-9900t_firmware xeon_e7-2870_v2_firmware xeon_e7-4880_v2_firmware xeon_e-2224g_firmware xeon_e5-2670_v2_firmware xeon_e7-8860_v3_firmware xeon_d-1553n_firmware xeon_gold_6128_firmware xeon_e3-1578l_v5_firmware xeon_e5-2687w_v3_firmware xeon_e5-4627_v2 xeon_platinum_8170_firmware xeon_e-2276m xeon_e7-4860_v2 core_i7-8665u xeon_e5-4620_v2 xeon_e5-2470_v2_firmware core_i7-6600u xeon_e3-1220l_v2 xeon_gold_6126t xeon_gold_6140_firmware xeon_e3-1565l_v5_firmware xeon_e5-2630_v2_firmware xeon_e3-1565l_v5 xeon_e-2236 core_i9-9880h_firmware xeon_e5-4610_v2_firmware core_i7-8700t_firmware xeon_e-2236_firmware xeon_e5-2408l_v3 xeon_e5-2643_v2_firmware xeon_e-2126g_firmware xeon_e3-1240_v6 core_i7-8700 xeon_w-2155_firmware xeon_e7-4850_v3_firmware xeon_e3-1285l_v3_firmware xeon_e5-2640_v4_firmware xeon_e5-1630_v4 xeon_e5-4660_v3 xeon_e7-2850_v2_firmware xeon_e5-1428l_v2 xeon_e5-2603_v2 core_i7-6600u_firmware xeon_e5-2603_v3_firmware xeon_d-1527_firmware xeon_e5-2697_v3_firmware core_i7-8700k xeon_e5-2407_v2 xeon_e5-2683_v4_firmware xeon_e3-1268l_v3 xeon_e5-4628l_v4_firmware xeon_e5-2628l_v4_firmware xeon_e5-2603_v3 xeon_e7-4850_v4_firmware xeon_e3-1270_v6_firmware xeon_e5-2658_v3_firmware core_i5-8600k_firmware xeon_e7-8870_v3_firmware xeon_e3-1285_v6_firmware xeon_e-2134 xeon_e5-2667_v3 xeon_e5-4655_v3 xeon_e5-2650_v2 xeon_e7-4820_v3 xeon_e5-2620_v4_firmware xeon_d-2143it xeon_e-2226g_firmware xeon_d-2163it xeon_e5-2699_v4 xeon_e3-1285_v6 xeon_d-2161i_firmware xeon_e3-1278l_v4 xeon_e3-1225_v6 xeon_e3-1220l_v3 xeon_e5-2699_v3_firmware xeon_e-2144g_firmware xeon_silver_4109t xeon_e5-2650l_v2_firmware xeon_e5-2643_v4_firmware xeon_e3-1240l_v5 xeon_e3-1225_v5_firmware xeon_e5-2690_v3 xeon_e5-4655_v4 xeon_gold_5122_firmware xeon_e5-2658_v4 xeon_gold_6138f xeon_e5-2440_v2 xeon_e5-1630_v3 xeon_gold_6132_firmware xeon_gold_6136_firmware xeon_e5-4650_v2_firmware core_i5-9600k xeon_e7-8893_v3_firmware xeon_e3-1290_v2 xeon_e3-1286l_v3 xeon_e5-2418l_v2_firmware xeon_e5-2680_v3 xeon_e3-1125c_v2 xeon_d-1531_firmware xeon_e5-2697_v4_firmware xeon_e7-4830_v3 xeon_e5-2420_v2_firmware xeon_silver_4114 xeon_e5-4655_v3_firmware xeon_d-2123it_firmware xeon_e3-1245_v3 xeon_e5-2698_v3 xeon_e3-1245_v5 xeon_e7-8880_v3_firmware xeon_e3-1230_v2 xeon_e5-2648l_v3_firmware xeon_e7-8857_v2_firmware xeon_bronze_3104 xeon_d-1571 xeon_e3-1265l_v2_firmware xeon_e5-2699_v4_firmware xeon_e5-2637_v3 xeon_e7-8890_v2_firmware xeon_e5-1620_v3 core_i5-8350u xeon_e7-8880l_v3_firmware core_i5-7300u core_i5-6440hq_firmware xeon_e3-1505l_v6_firmware xeon_e3-1240_v2 xeon_e7-8850_v2_firmware xeon_d-2173it xeon_d-2123it core_i7-5600u_firmware core_i5-8500t xeon_e-2246g xeon_e5-2670_v3_firmware xeon_e5-2637_v4 xeon_e3-1241_v3 xeon_gold_6144_firmware xeon_e5-2687w_v3 xeon_e5-2695_v4_firmware xeon_e5-1428l_v3_firmware xeon_e3-1270_v5_firmware xeon_e7-8890_v4 xeon_e5-2680_v4 core_i5-8350u_firmware xeon_e5-4607_v2_firmware xeon_e5-2630l_v3_firmware xeon_e5-2697a_v4 xeon_gold_6150 xeon_e3-1535m_v5_firmware xeon_e7-4809_v3_firmware xeon_gold_6140 xeon_e5-2690_v4 core_i7-6820hq_firmware xeon_e5-2609_v4 xeon_e7-8891_v2 xeon_e3-1220_v3_firmware xeon_e5-2658_v4_firmware xeon_e7-4850_v2 xeon_e-2254ml xeon_e5-2660_v2 xeon_e3-1545m_v5 xeon_e5-1650_v2_firmware xeon_gold_6148f_firmware xeon_w-2123_firmware xeon_d-2145nt_firmware xeon_e3-1501m_v6_firmware xeon_e-2254ml_firmware xeon_e7-4870_v2 xeon_e3-1578l_v5 core_i7-6660u xeon_e3-1270_v5 xeon_d-1537_firmware xeon_gold_6126 xeon_d-1541_firmware xeon_e3-1245_v3_firmware xeon_d-2166nt_firmware xeon_e3-1260l_v5 xeon_e3-1246_v3 core_i5-6500_firmware xeon_e5-2699a_v4 xeon_e5-2643_v4 xeon_d-1548_firmware xeon_e-2276ml xeon_gold_6130f_firmware xeon_e5-2690_v3_firmware xeon_e7-2870_v2 xeon_e7-8860_v3 xeon_e-2244g core_i9-9900k xeon_d-1559_firmware xeon_e-2176g xeon_e3-1125c_v2_firmware xeon_e3-1275l_v3 xeon_e5-4648_v3_firmware xeon_e5-2698_v4_firmware xeon_gold_6142f xeon_e5-2637_v2 xeon_e7-4809_v4_firmware core_i7-7y75_firmware xeon_e7-4870_v2_firmware xeon_platinum_8153_firmware xeon_e5-2697a_v4_firmware xeon_e5-4650_v3 xeon_e5-2650l_v4 xeon_gold_6130 xeon_d-1529_firmware xeon_d-1540_firmware xeon_e5-1650_v3_firmware xeon_e7-8850_v2 xeon_e5-2695_v2 xeon_platinum_8160t_firmware xeon_e5-4640_v2_firmware core_i7-5650u_firmware xeon_e3-1245_v2 xeon_d-2142it_firmware xeon_e-2278ge_firmware core_i5-9500t xeon_e5-2470_v2 core_i7-8700t xeon_d-2143it_firmware xeon_e3-1280_v5_firmware xeon_e5-2420_v2 core_i7-6820hq xeon_e3-1270_v3_firmware xeon_e7-4850_v3 xeon_silver_4110 core_i7-8650u xeon_d-1523n_firmware xeon_e5-2697_v2 xeon_e5-2430_v2 xeon_e5-4627_v3_firmware xeon_gold_5119t xeon_e-2286m_firmware core_i7-6700t xeon_e7-8880l_v2_firmware core_i7-6920hq xeon_e5-4669_v3_firmware xeon_e5-2408l_v3_firmware xeon_e7-8870_v2_firmware xeon_e3-1230_v6 xeon_e5-2687w_v4_firmware xeon_e7-8867_v3_firmware core_i7-6700_firmware xeon_e-2234_firmware xeon_e5-2430l_v2 xeon_e5-2628l_v2_firmware xeon_e3-1245_v2_firmware xeon_e7-2850_v2 xeon_e5-2620_v4 xeon_e7-4820_v4_firmware xeon_gold_6138t xeon_e-2186g_firmware xeon_e3-1276_v3 xeon_gold_5120 xeon_e-2124g xeon_e5-2618l_v3 xeon_e3-1230_v3_firmware xeon_e3-1270_v3 xeon_d-1523n xeon_e5-2608l_v3 xeon_e3-1231_v3 xeon_e5-4660_v3_firmware xeon_e-2288g xeon_e7-8880_v2 xeon_e7-8891_v2_firmware xeon_gold_6154_firmware xeon_e-2234 xeon_e7-8860_v4_firmware xeon_e5-4650_v2 xeon_d-1577 xeon_silver_4114t core_i7-9850h core_i7-9700t_firmware xeon_e5-4669_v4 xeon_platinum_8176_firmware xeon_gold_6154 xeon_d-1543n_firmware xeon_e5-2640_v4 xeon_w-2195_firmware xeon_e7-8893_v4 xeon_gold_5120t_firmware xeon_e3-1240_v2_firmware xeon_e5-1650_v3 xeon_e5-2630_v2 xeon_e3-1276_v3_firmware xeon_e3-1105c_v2 xeon_e7-8891_v3 xeon_e5-2640_v3_firmware core_m5-6y57 xeon_d-1553n xeon_e-2126g xeon_d-1571_firmware core_i7-6920hq_firmware xeon_e5-4620_v3 core_i7-9700t xeon_silver_4116 xeon_e7-4820_v4 xeon_e3-1268l_v3_firmware xeon_e3-1240_v3 xeon_e3-1220l_v2_firmware xeon_e5-2650_v2_firmware xeon_e5-2695_v3 core_i5-6500 core_i7-8650u_firmware xeon_e5-2658_v2_firmware xeon_d-1518_firmware xeon_e3-1220_v6 core_i9-9900k_firmware core_m-5y70_firmware xeon_w-2135_firmware xeon_e3-1246_v3_firmware xeon_e3-1225_v2 xeon_e-2186m xeon_e5-2438l_v3_firmware xeon_gold_6152_firmware xeon_e5-2603_v2_firmware xeon_e5-1660_v3 xeon_platinum_8176f_firmware xeon_d-1520 xeon_e-2176m xeon_e3-1285_v4 xeon_e5-4657l_v2_firmware xeon_e3-1265l_v3_firmware xeon_d-2146nt_firmware xeon_gold_6152 xeon_e3-1230_v5_firmware xeon_e5-2623_v3 xeon_e7-4830_v4_firmware xeon_platinum_8158 xeon_e3-1275_v3_firmware xeon_e5-2418l_v3 xeon_e5-2658a_v3 xeon_e7-8857_v2 xeon_e-2286g xeon_e5-2680_v2_firmware xeon_e7-2890_v2 xeon_w-2125_firmware xeon_d-1520_firmware xeon_e3-1268l_v5_firmware core_i5-8365u_firmware xeon_platinum_8176 xeon_w-2175_firmware core_i7-6700te_firmware xeon_silver_4112_firmware xeon_e3-1241_v3_firmware xeon_e3-1275_v6 xeon_e5-4610_v2 xeon_e7-4820_v2 xeon_d-1531 xeon_e-2244g_firmware xeon_e3-1575m_v5 core_i5-6360u_firmware xeon_e5-2660_v4_firmware xeon_e-2278g xeon_e5-2650_v4 xeon_e3-1505l_v5 xeon_d-1533n xeon_e7-8867_v3 xeon_e7-8880_v2_firmware xeon_e5-2450l_v2 xeon_e3-1245_v6 xeon_gold_6128 xeon_w-3175x_firmware xeon_d-2142it core_i7-8850h xeon_gold_5118 xeon_e5-2695_v4 xeon_gold_6130f core_i5-5350u xeon_e3-1281_v3_firmware xeon_e5-4624l_v2 core_i9-9900_firmware xeon_e3-1505m_v6_firmware xeon_e3-1545m_v5_firmware xeon_gold_6142f_firmware xeon_e3-1235l_v5 xeon_e5-2603_v4 xeon_e5-2643_v2 xeon_e5-2695_v3_firmware xeon_e5-1660_v4_firmware xeon_e5-4628l_v4 xeon_e5-2630l_v2_firmware xeon_e5-2418l_v2 xeon_e7-8860_v4 core_i5-8500_firmware xeon_e3-1285l_v3 xeon_e5-2650l_v2 xeon_e5-2680_v3_firmware xeon_gold_6138p core_i5-5300u_firmware xeon_e5-2430l_v2_firmware xeon_gold_6138p_firmware core_i5-6300u_firmware xeon_platinum_8176f xeon_e7-4880_v2 xeon_e7-8867_v4_firmware xeon_e3-1240l_v3_firmware xeon_e7-4850_v2_firmware core_i5-9400h_firmware xeon_e7-8890_v3 xeon_e3-1275_v2 xeon_e5-2623_v4_firmware xeon_e3-1285_v4_firmware xeon_e3-1505l_v5_firmware xeon_e5-2697_v2_firmware xeon_d-1543n xeon_d-1528_firmware xeon_e-2278gel_firmware core_i5-5350u_firmware core_i5-6360u xeon_e3-1245_v6_firmware xeon_d-1521 xeon_e-2144g core_i5-9500t_firmware core_m5-6y57_firmware xeon_e5-2637_v3_firmware xeon_e5-2428l_v2_firmware xeon_e5-4640_v3 xeon_e5-4650_v4_firmware core_i5-9600t xeon_silver_4110_firmware core_i5-8600t xeon_e5-1428l_v3 core_i7-9700_firmware xeon_platinum_8180 xeon_d-2177nt xeon_e-2146g xeon_e5-2628l_v3_firmware xeon_e5-2650l_v3 xeon_w-2175 xeon_e7-2880_v2 2019.2 IPU – Intel(R) Processor Security

CWE ID-CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-6.7||MEDIUM

EPSS-0.06% / 19.65%

||

7 Day CHG~0.00%

Published-13 Jun, 2019 | 15:36

Updated-04 Aug, 2024 | 17:44

Insufficient password protection in the attestation database for Open CIT may allow an authenticated user to potentially enable information disclosure via local access.

Vendor-n/a Intel Corporation

Product-open_cloud_integrity_tehnology openattestation Open Cloud Integrity Technology and OpenAttestation

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-7.8||HIGH

EPSS-0.10% / 28.99%

||

7 Day CHG~0.00%

Published-14 Mar, 2019 | 20:00

Updated-16 Sep, 2024 | 23:26

Improper permissions for Intel(R) USB 3.0 Creator Utility all versions may allow an authenticated user to potentially enable escalation of privilege via local access.

Vendor-Intel Corporation

Product-usb_3.0_creator_utility Intel(R) USB 3.0 Creator Utility

CWE ID-CWE-264

Not Available

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-7.8||HIGH

EPSS-0.08% / 24.77%

||

7 Day CHG~0.00%

Published-16 Dec, 2019 | 19:13

Updated-04 Aug, 2024 | 17:44

Improper permissions in the Intel(R) Dynamic Platform and Thermal Framework v8.3.10208.5643 and before may allow an authenticated user to potentially execute code at an elevated level of privilege.

Vendor-n/a Intel Corporation

Product-dynamic_platform_and_thermal_framework Intel(R) Dynamic Platform and Thermal Framework

CWE ID-CWE-276

Incorrect Default Permissions

Matching Score-8

Assigner-Advanced Micro Devices Inc.

Matching Score-8

Assigner-Advanced Micro Devices Inc.

CVSS Score-6.7||MEDIUM

EPSS-0.03% / 6.23%

||

7 Day CHG~0.00%

Published-14 Nov, 2023 | 18:51

Updated-13 Feb, 2025 | 17:16

Improper signature verification of RadeonTM RX Vega M Graphics driver for Windows may allow an attacker with admin privileges to launch RadeonInstaller.exe without validating the file signature potentially leading to arbitrary code execution.

Vendor-Intel Corporation Advanced Micro Devices, Inc.

Product-radeon_rx_7700s ryzen_5_pro_3200ge radeon_pro_w6900x ryzen_3_5300u radeon_rx_5700m radeon_rx_vega_m_firmware radeon_pro_w6500m radeon_rx_7900_gre radeon_rx_vega_56 core_i5-8305g radeon_pro_vega_56_firmware ryzen_5_4600hs radeon_rx_5600 ryzen_7_4980u radeon_rx_5300m radeon_rx_7900m ryzen_3_3015ce radeon_rx_7900_xt radeon_rx_5500_xt radeon_rx_6600s radeon_rx_6650m nuc_8_enthusiast_nuc8i7hvkvaw radeon_rx_6650_xt radeon_pro_w6800x radeon_rx_6700_xt ryzen_5_pro_3400g radeon_rx_7600m_xt ryzen_5_pro_3350ge ryzen_5_5600g ryzen_5_pro_3400ge radeon_pro_w6600 radeon_pro_vega_64 radeon_rx_6700m ryzen_5_4680u ryzen_5_5500u nuc_8_enthusiast_nuc8i7hvkva radeon_pro_w7600 radeon_rx_6650m_xt radeon_rx_6700 radeon_rx_7700_xt radeon_rx_7600s radeon_rx_6550m radeon_rx_5600_xt radeon_rx_6850m_xt radeon_rx_6550s radeon_pro_w5700 radeon_rx_6800 ryzen_7_4800h ryzen_3_3015e radeon_software radeon_rx_6600m radeon_rx_5500m radeon_rx_7900_xtx ryzen_7_5700g nuc_8_enthusiast_nuc8i7hnkqc radeon_rx_6900_xt radeon_rx_5600m radeon_rx_6950_xt ryzen_3_4300ge ryzen_5_pro_3200g radeon_rx_vega_64_firmware ryzen_7_4700g ryzen_3_4300g ryzen_9_4900hs radeon_rx_5700_xt radeon_rx_6500m core_i7-8706g radeon_rx_6800_xt radeon_pro_w6400 radeon_rx_6500_xt radeon_rx_5700 radeon_rx_6450m radeon_rx_7800_xt ryzen_5_4500u radeon_rx_5300 radeon_pro_w5500x radeon_pro_w6300m ryzen_5_4600u radeon_pro_w6800x_duo radeon_pro_vega_64_firmware radeon_rx_5500 ryzen_7_4700ge ryzen_9_4900h radeon_rx_6400 radeon_rx_6600_xt radeon_pro_vega_56 ryzen_7_5700u radeon_rx_6800m radeon_rx_6300m ryzen_5_4600ge radeon_rx_7600 radeon_pro_w6300 radeon_pro_w6600x ryzen_5_5500h radeon_pro_w7500 radeon_rx_vega_56_firmware radeon_rx_7600m core_i7-8709g ryzen_7_4700u radeon_pro_w6600m ryzen_5_5600ge core_i7-8705g ryzen_3_4300u radeon_pro_w5500 ryzen_3_5300ge ryzen_5_4500 ryzen_3_4100 ryzen_7_4800hs radeon_pro_w5700x radeon_pro_w6800 ryzen_7_5700ge radeon_rx_6600 radeon_rx_vega_64 ryzen_3_5300g ryzen_5_4600g nuc_kit_nuc8i7hnk nuc_kit_nuc8i7hvk ryzen_5_pro_3350g ryzen_5_4600h radeon_pro_w7800 radeon_rx_6700s radeon_rx_5300_xt radeon_rx_6800s Radeon™ RX Vega Series Graphics Cards Radeon™ PRO WX Vega Series Graphics Cards Radeon™ RX 5000/6000/7000 Series Graphics Cards Radeon™ PRO W5000/W6000/W7000 Series Graphics Cards

CWE ID-CWE-347

Improper Verification of Cryptographic Signature

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-7.8||HIGH

EPSS-0.06% / 17.81%

||

7 Day CHG~0.00%

Published-10 Jan, 2019 | 20:00

Updated-17 Sep, 2024 | 02:56

Insufficient path checking in Intel(R) System Support Utility for Windows before 2.5.0.15 may allow an authenticated user to potentially enable an escalation of privilege via local access.

Vendor-Intel Corporation

Product-system_support_utility Intel(R) System Support Utility for Windows

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-6.7||MEDIUM

EPSS-0.13% / 33.62%

||

7 Day CHG~0.00%

Published-17 May, 2019 | 15:41

Updated-04 Aug, 2024 | 17:37

Improper data sanitization vulnerability in subsystem in Intel(R) SPS before versions SPS_E5_04.00.04.381.0, SPS_E3_04.01.04.054.0, SPS_SoC-A_04.00.04.181.0, and SPS_SoC-X_04.00.04.086.0 may allow a privileged user to potentially enable escalation of privilege via local access.

Vendor-n/a Intel Corporation

Product-server_platform_services Intel(R) Server Platform Services (SPS)

CWE ID-CWE-19

Not Available

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-7.8||HIGH

EPSS-0.04% / 12.23%

||

7 Day CHG~0.00%

Published-14 Mar, 2019 | 20:00

Updated-16 Sep, 2024 | 20:26

Improper permissions in Intel(R) Matrix Storage Manager 8.9.0.1023 and before may allow an authenticated user to potentially enable escalation of privilege via local access.

Vendor-Intel Corporation

Product-matrix_storage_manager Intel(R) Matrix Storage Manager

CWE ID-CWE-264

Not Available

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-7.8||HIGH

EPSS-0.10% / 28.99%

||

7 Day CHG~0.00%

Published-14 Mar, 2019 | 20:00

Updated-04 Aug, 2024 | 17:44

Improper permissions in the installer for Intel(R) Accelerated Storage Manager in Intel(R) RSTe before version 5.5.0.2015 may allow an authenticated user to potentially enable escalation of privilege via local access. L-SA-00206

Vendor-n/a Lenovo Group Limited Intel Corporation

Product-thinkstation_p520_firmware thinkstation_p520 thinkstation_p720_firmware thinkstation_p720 thinkstation_p520c_firmware rapid_storage_technology_enterprise thinkstation_p520c thinkstation_p920 thinkstation_p920_firmware Intel(R) Accelerated Storage Manager in RSTe Advisory

CWE ID-CWE-264

Not Available

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-6.7||MEDIUM

EPSS-0.12% / 32.33%

||

7 Day CHG~0.00%

Published-14 Nov, 2019 | 18:21

Updated-04 Aug, 2024 | 17:44

Insufficient access control in firmware for Intel(R) Ethernet 700 Series Controllers before version 7.0 may allow a privileged user to potentially enable an escalation of privilege, denial of service, or information disclosure via local access.

Vendor-n/a Intel Corporation

Product-ethernet_controller_x710-at2_firmware ethernet_controller_x710-tm4_firmware ethernet_controller_x710-bm2_firmware ethernet_controller_710-bm1 ethernet_controller_xxv710-am2 ethernet_controller_xxv710-am1_firmware ethernet_controller_xxv710-am1 ethernet_controller_x710-bm2 ethernet_controller_xxv710-am2_firmware ethernet_700_series_software ethernet_controller_x710-at2 ethernet_controller_710-bm1_firmware ethernet_controller_x710-tm4 2019.2 IPU – Intel(R) Ethernet 700 Series Controllers

Matching Score-8

Assigner-Advanced Micro Devices Inc.

Matching Score-8

Assigner-Advanced Micro Devices Inc.

CVSS Score-6.7||MEDIUM

EPSS-0.03% / 6.23%

||

7 Day CHG~0.00%

Published-14 Nov, 2023 | 18:51

Updated-13 Feb, 2025 | 17:16

Improper signature verification of RadeonTM RX Vega M Graphics driver for Windows may allow an attacker with admin privileges to launch AMDSoftwareInstaller.exe without validating the file signature potentially leading to arbitrary code execution.

Vendor-Intel Corporation Advanced Micro Devices, Inc.

Product-radeon_rx_7700s ryzen_5_pro_3200ge radeon_pro_w6900x ryzen_3_5300u radeon_rx_5700m radeon_rx_vega_m_firmware radeon_pro_w6500m radeon_rx_7900_gre radeon_rx_vega_56 core_i5-8305g radeon_pro_vega_56_firmware ryzen_5_4600hs radeon_rx_5600 ryzen_7_4980u radeon_rx_5300m radeon_rx_7900m ryzen_3_3015ce radeon_rx_7900_xt radeon_rx_5500_xt radeon_rx_6600s radeon_rx_6650m nuc_8_enthusiast_nuc8i7hvkvaw radeon_rx_6650_xt radeon_pro_w6800x radeon_rx_6700_xt ryzen_5_pro_3400g radeon_rx_7600m_xt ryzen_5_pro_3350ge ryzen_5_5600g ryzen_5_pro_3400ge radeon_pro_w6600 radeon_pro_vega_64 radeon_rx_6700m ryzen_5_4680u ryzen_5_5500u nuc_8_enthusiast_nuc8i7hvkva radeon_pro_w7600 radeon_rx_6650m_xt radeon_rx_6700 radeon_rx_7700_xt radeon_rx_7600s radeon_rx_6550m radeon_rx_5600_xt radeon_rx_6850m_xt radeon_rx_6550s radeon_pro_w5700 radeon_rx_6800 ryzen_7_4800h ryzen_3_3015e radeon_software radeon_rx_6600m radeon_rx_5500m radeon_rx_7900_xtx ryzen_7_5700g nuc_8_enthusiast_nuc8i7hnkqc radeon_rx_6900_xt radeon_rx_5600m radeon_rx_6950_xt ryzen_3_4300ge ryzen_5_pro_3200g radeon_rx_vega_64_firmware ryzen_7_4700g ryzen_3_4300g ryzen_9_4900hs radeon_rx_5700_xt radeon_rx_6500m core_i7-8706g radeon_rx_6800_xt radeon_pro_w6400 radeon_rx_6500_xt radeon_rx_5700 radeon_rx_6450m radeon_rx_7800_xt ryzen_5_4500u radeon_rx_5300 radeon_pro_w5500x radeon_pro_w6300m ryzen_5_4600u radeon_pro_w6800x_duo radeon_pro_vega_64_firmware radeon_rx_5500 ryzen_7_4700ge ryzen_9_4900h radeon_rx_6400 radeon_rx_6600_xt radeon_pro_vega_56 ryzen_7_5700u radeon_rx_6800m radeon_rx_6300m ryzen_5_4600ge radeon_rx_7600 radeon_pro_w6300 radeon_pro_w6600x ryzen_5_5500h radeon_pro_w7500 radeon_rx_vega_56_firmware radeon_rx_7600m core_i7-8709g ryzen_7_4700u radeon_pro_w6600m ryzen_5_5600ge core_i7-8705g ryzen_3_4300u radeon_pro_w5500 ryzen_3_5300ge ryzen_5_4500 ryzen_3_4100 ryzen_7_4800hs radeon_pro_w5700x radeon_pro_w6800 ryzen_7_5700ge radeon_rx_6600 radeon_rx_vega_64 ryzen_3_5300g ryzen_5_4600g nuc_kit_nuc8i7hnk nuc_kit_nuc8i7hvk ryzen_5_pro_3350g ryzen_5_4600h radeon_pro_w7800 radeon_rx_6700s radeon_rx_5300_xt radeon_rx_6800s Radeon™ RX Vega Series Graphics Cards Radeon™ PRO WX Vega Series Graphics Cards Radeon™ RX 5000/6000/7000 Series Graphics Cards Radeon™ PRO W5000/W6000/W7000 Series Graphics Cards

CWE ID-CWE-347

Improper Verification of Cryptographic Signature

Matching Score-8

Assigner-MITRE Corporation

Matching Score-8

Assigner-MITRE Corporation

CVSS Score-4.6||MEDIUM

EPSS-0.10% / 27.50%

||

7 Day CHG~0.00%

Published-08 Feb, 2010 | 21:00

Updated-11 Apr, 2025 | 00:51

Unspecified vulnerability in the BIOS in Intel Desktop Board DB, DG, DH, DP, and DQ Series allows local administrators to execute arbitrary code in System Management Mode (SSM) via unknown attack vectors.

Vendor-n/a Intel Corporation

Product-intel_desktop_board n/a

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-6.8||MEDIUM

EPSS-0.08% / 23.19%

||

7 Day CHG~0.00%

Published-17 May, 2019 | 15:41

Updated-04 Aug, 2024 | 17:37

Insufficient access control vulnerability in subsystem in Intel(R) SPS before version SPS_E3_05.00.04.027.0 may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

Vendor-n/a Intel Corporation

Product-server_platform_services_firmware Intel(R) Server Platform Services (SPS), Intel (R) Trusted Execution Engine Interface (TXE)

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-6.7||MEDIUM

EPSS-0.25% / 47.94%

||

7 Day CHG~0.00%

Published-18 Feb, 2019 | 17:00

Updated-16 Sep, 2024 | 18:23

Insufficient run protection in install routine for Intel(R) Data Center Manager SDK before version 5.0.2 may allow a privileged user to potentially enable escalation of privilege via local access.

Vendor-n/a Intel Corporation

Product-data_center_manager n/a

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-7.8||HIGH

EPSS-0.04% / 9.78%

||

7 Day CHG~0.00%

Published-17 May, 2019 | 15:41

Updated-04 Aug, 2024 | 17:44

Improper directory permissions in Intel(R) ACU Wizard version 12.0.0.129 and earlier may allow an authenticated user to potentially enable escalation of privilege via local access.

Vendor-n/a Intel Corporation

Product-acu_wizard Intel(R) ACU Wizard

CWE ID-CWE-732

Incorrect Permission Assignment for Critical Resource

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-7.8||HIGH

EPSS-0.14% / 34.06%

||

7 Day CHG~0.00%

Published-17 May, 2019 | 15:41

Updated-04 Aug, 2024 | 17:37

Insufficient access control vulnerability in Dynamic Application Loader software for Intel(R) CSME before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 and Intel(R) TXE 3.1.65, 4.0.15 may allow an unprivileged user to potentially enable escalation of privilege via local access.

Vendor-n/a Intel Corporation

Product-converged_security_management_engine_firmware trusted_execution_engine_firmware Intel(R) Converged Security & Management Engine (CSME) Dynamic Application Loader, Intel (R) Trusted Execution Engine Interface (TXE)

CWE ID-CWE-59

Improper Link Resolution Before File Access ('Link Following')

CWE ID-CWE-732

Incorrect Permission Assignment for Critical Resource

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-7.8||HIGH

EPSS-0.14% / 33.91%

||

7 Day CHG~0.00%

Published-18 Feb, 2019 | 17:00

Updated-16 Sep, 2024 | 23:11

Insufficient file permissions checking in install routine for Intel(R) Data Center Manager SDK before version 5.0.2 may allow authenticated user to potentially enable escalation of privilege via local access.

Vendor-n/a Intel Corporation

Product-data_center_manager n/a

CWE ID-CWE-863

Incorrect Authorization

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-6.7||MEDIUM

EPSS-0.14% / 34.18%

||

7 Day CHG~0.00%

Published-18 Feb, 2019 | 17:00

Updated-16 Sep, 2024 | 22:35

Code injection vulnerability in the installer for Intel(R) USB 3.0 eXtensible Host Controller Driver for Microsoft Windows 7 before version 5.0.4.43v2 may allow a user to potentially enable escalation of privilege via local access.

Vendor-n/a Microsoft Corporation Intel Corporation

Product-windows_7 usb_3.0_extensible_host_controller_driver n/a

CWE ID-CWE-94

Improper Control of Generation of Code ('Code Injection')

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-7.8||HIGH

EPSS-0.04% / 9.78%

||

7 Day CHG~0.00%

Published-10 Jan, 2019 | 20:00

Updated-16 Sep, 2024 | 16:28

Improper directory permissions in the installer for the Intel(R) SSD Data Center Tool for Windows before v3.0.17 may allow authenticated users to potentially enable an escalation of privilege via local access.

Vendor-Microsoft Corporation Intel Corporation

Product-windows ssd_data_center_tool Intel(R) SSD Data Center Tool for Windows

CWE ID-CWE-732

Incorrect Permission Assignment for Critical Resource

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-7.8||HIGH

EPSS-0.07% / 21.20%

||

7 Day CHG~0.00%

Published-17 May, 2019 | 15:41

Updated-05 Aug, 2024 | 04:50

Improper directory permissions in the installer for Intel(R) PROSet/Wireless WiFi Software version 20.100 and earlier may allow an authenticated user to potentially enable escalation of privilege via local access.

Vendor-n/a Intel Corporation

Product-proset\/wireless_wifi Intel(R) PROSet/Wireless WiFi Software Advisory

CWE ID-CWE-732

Incorrect Permission Assignment for Critical Resource

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-7.8||HIGH

EPSS-0.04% / 9.78%

||

7 Day CHG~0.00%

Published-13 Dec, 2018 | 23:00

Updated-05 Aug, 2024 | 04:50

Improper directory permissions in the installer for the Intel Parallel Studio before 2019 Gold may allow authenticated users to potentially enable an escalation of privilege via local access.

Vendor-Intel Corporation

Product-parallel_studio parallel_studio_xe Intel Parallel Studio

CWE ID-CWE-732

Incorrect Permission Assignment for Critical Resource

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-7.8||HIGH

EPSS-0.05% / 15.47%

||

7 Day CHG~0.00%

Published-03 Apr, 2018 | 21:00

Updated-16 Sep, 2024 | 16:52

Escalation of privilege in all versions of the Intel Remote Keyboard allows a local attacker to inject keystrokes into another remote keyboard session.

Vendor-Intel Corporation

Product-remote_keyboard_mobile_app remote_keyboard Intel Remote Keyboard

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-7.6||HIGH

EPSS-0.14% / 35.41%

||

7 Day CHG~0.00%

Published-10 Jul, 2018 | 21:00

Updated-05 Aug, 2024 | 04:50

Existing UEFI setting restrictions for DCI (Direct Connect Interface) in 5th and 6th generation Intel Xeon Processor E3 Family, Intel Xeon Scalable processors, and Intel Xeon Processor D Family allows a limited physical presence attacker to potentially access platform secrets via debug interfaces.

Vendor-Intel Corporation

CWE ID-CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-7.8||HIGH

EPSS-0.05% / 15.61%

||

7 Day CHG~0.00%

Published-10 Jul, 2018 | 21:00

Updated-05 Aug, 2024 | 04:50

Installation tool IPDT (Intel Processor Diagnostic Tool) 4.1.0.24 sets permissions of installed files incorrectly, allowing for execution of arbitrary code and potential privilege escalation.

Vendor-Intel Corporation

Product-processor_diagnostic_tool Intel Processor Diagnostic Tool

CWE ID-CWE-1188

Initialization of a Resource with an Insecure Default

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-8.2||HIGH

EPSS-0.05% / 13.81%

||

7 Day CHG~0.00%

Published-10 Jul, 2018 | 21:00

Updated-05 Aug, 2024 | 04:50

BMC Firmware in Intel server boards, compute modules, and systems potentially allow an attacker with administrative privileges to make unauthorized read\writes to the SMBUS.

Vendor-Intel Corporation

CWE ID-CWE-269

Improper Privilege Management

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-7.8||HIGH

EPSS-0.04% / 9.72%

||

7 Day CHG~0.00%

Published-14 Nov, 2018 | 14:00

Updated-05 Aug, 2024 | 04:50

Improper directory permissions in the installer for the Intel Media Server Studio may allow unprivileged users to potentially enable an escalation of privilege via local access.

Vendor-Intel Corporation

Product-media_server_studio Intel Media Server Studio

CWE ID-CWE-732

Incorrect Permission Assignment for Critical Resource

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-7.8||HIGH

EPSS-0.06% / 17.65%

||

7 Day CHG~0.00%

Published-10 Jul, 2018 | 21:00

Updated-05 Aug, 2024 | 04:50

Unquoted service paths in Intel Quartus Prime Programmer and Tools in versions 15.1 - 18.0 allow a local attacker to potentially execute arbitrary code.

Vendor-Intel Corporation

Product-quartus_prime_programmer_and_tools Intel Quartus Prime Programmer and Tools

CWE ID-CWE-428

Unquoted Search Path or Element