Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
Vulnerability Details :

CVE-2022-26124

Summary
Assigner-intel
Assigner Org ID-6dda929c-bb53-4a77-a76d-48e79601a1ce
Published At-11 Nov, 2022 | 15:48
Updated At-05 Feb, 2025 | 15:38
Rejected At-
Credits

Improper buffer restrictions in BIOS firmware for some Intel(R) NUC Boards, Intel(R) NUC 8 Boards, Intel(R) NUC 8 Rugged Boards and Intel(R) NUC 8 Rugged Kits before version CHAPLCEL.0059 may allow a privileged user to potentially enable escalation of privilege via local access.

Vendors
-
Not available
Products
-
Metrics (CVSS)
VersionBase scoreBase severityVector
Weaknesses
Attack Patterns
Solution/Workaround
References
HyperlinkResource Type
EPSS History
Score
Latest Score
-
N/A
No data available for selected date range
Percentile
Latest Percentile
-
N/A
No data available for selected date range
Stakeholder-Specific Vulnerability Categorization (SSVC)
▼Common Vulnerabilities and Exposures (CVE)
cve.org
Assigner:intel
Assigner Org ID:6dda929c-bb53-4a77-a76d-48e79601a1ce
Published At:11 Nov, 2022 | 15:48
Updated At:05 Feb, 2025 | 15:38
Rejected At:
▼CVE Numbering Authority (CNA)

Improper buffer restrictions in BIOS firmware for some Intel(R) NUC Boards, Intel(R) NUC 8 Boards, Intel(R) NUC 8 Rugged Boards and Intel(R) NUC 8 Rugged Kits before version CHAPLCEL.0059 may allow a privileged user to potentially enable escalation of privilege via local access.

Affected Products
Vendor
n/a
Product
Intel(R) NUC Boards, Intel(R) NUC 8 Boards, Intel(R) NUC 8 Rugged Boards and Intel(R) NUC 8 Rugged Kits
Default Status
unaffected
Versions
Affected
  • before version CHAPLCEL.0059
Problem Types
TypeCWE IDDescription
N/AN/Aescalation of privilege
Type: N/A
CWE ID: N/A
Description: escalation of privilege
Metrics
VersionBase scoreBase severityVector
3.17.5HIGH
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Version: 3.1
Base score: 7.5
Base severity: HIGH
Vector:
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00752.html
N/A
Hyperlink: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00752.html
Resource: N/A
▼Authorized Data Publishers (ADP)
1. CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00752.html
x_transferred
Hyperlink: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00752.html
Resource:
x_transferred
2. CISA ADP Vulnrichment
Affected Products
Problem Types
TypeCWE IDDescription
CWECWE-119CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer
Type: CWE
CWE ID: CWE-119
Description: CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
Information is not available yet
▼National Vulnerability Database (NVD)
nvd.nist.gov
Source:secure@intel.com
Published At:11 Nov, 2022 | 16:15
Updated At:05 Feb, 2025 | 16:15

Improper buffer restrictions in BIOS firmware for some Intel(R) NUC Boards, Intel(R) NUC 8 Boards, Intel(R) NUC 8 Rugged Boards and Intel(R) NUC 8 Rugged Kits before version CHAPLCEL.0059 may allow a privileged user to potentially enable escalation of privilege via local access.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Secondary3.17.5HIGH
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Primary3.17.8HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Type: Secondary
Version: 3.1
Base score: 7.5
Base severity: HIGH
Vector:
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Type: Primary
Version: 3.1
Base score: 7.8
Base severity: HIGH
Vector:
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CPE Matches
Intel Corporation
intel
>>nuc_8_rugged_kit_nuc8cchkrn_firmware>>Versions before chaplcel.0059(exclusive)
cpe:2.3:o:intel:nuc_8_rugged_kit_nuc8cchkrn_firmware:*:*:*:*:*:*:*:*
Intel Corporation
intel
>>nuc_8_rugged_kit_nuc8cchkrn>>-
cpe:2.3:h:intel:nuc_8_rugged_kit_nuc8cchkrn:-:*:*:*:*:*:*:*
Intel Corporation
intel
>>nuc_8_rugged_kit_nuc8cchkr_firmware>>Versions before chaplcel.0059(exclusive)
cpe:2.3:o:intel:nuc_8_rugged_kit_nuc8cchkr_firmware:*:*:*:*:*:*:*:*
Intel Corporation
intel
>>nuc_8_rugged_kit_nuc8cchkr>>-
cpe:2.3:h:intel:nuc_8_rugged_kit_nuc8cchkr:-:*:*:*:*:*:*:*
Intel Corporation
intel
>>nuc_8_rugged_board_nuc8cchbn_firmware>>Versions before chaplcel.0059(exclusive)
cpe:2.3:o:intel:nuc_8_rugged_board_nuc8cchbn_firmware:*:*:*:*:*:*:*:*
Intel Corporation
intel
>>nuc_8_rugged_board_nuc8cchbn>>-
cpe:2.3:h:intel:nuc_8_rugged_board_nuc8cchbn:-:*:*:*:*:*:*:*
Intel Corporation
intel
>>nuc_board_nuc8cchb_firmware>>Versions before chaplcel.0059(exclusive)
cpe:2.3:o:intel:nuc_board_nuc8cchb_firmware:*:*:*:*:*:*:*:*
Intel Corporation
intel
>>nuc_board_nuc8cchb>>-
cpe:2.3:h:intel:nuc_board_nuc8cchb:-:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-119Primarynvd@nist.gov
CWE-119Secondary134c704f-9b21-4f2e-91b3-4a467353bcc0
CWE ID: CWE-119
Type: Primary
Source: nvd@nist.gov
CWE ID: CWE-119
Type: Secondary
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00752.htmlsecure@intel.com
Patch
Vendor Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00752.htmlaf854a3a-2127-422b-91ae-364da2661108
Patch
Vendor Advisory
Hyperlink: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00752.html
Source: secure@intel.com
Resource:
Patch
Vendor Advisory
Hyperlink: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00752.html
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Patch
Vendor Advisory

Change History

0
Information is not available yet

Similar CVEs

875Records found
CVE-2022-29919
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.11% / 28.90%
||
7 Day CHG+0.01%
Published-10 May, 2023 | 13:16
Updated-27 Jan, 2025 | 18:07
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Use after free in the Intel(R) VROC software before version 7.7.6.1003 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-virtual_raid_on_cpuIntel(R) VROC software
CWE ID-CWE-416
Use After Free
CVE-2022-33898
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.07% / 20.19%
||
7 Day CHG~0.00%
Published-14 Nov, 2023 | 19:04
Updated-30 Aug, 2024 | 17:05
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Insecure inherited permissions in some Intel(R) NUC Watchdog Timer installation software before version 2.0.21.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-nuc_watchdog_timer_utilityIntel(R) NUC Watchdog Timer installation software
CWE ID-CWE-277
Insecure Inherited Permissions
CWE ID-CWE-732
Incorrect Permission Assignment for Critical Resource
CVE-2022-27638
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.07% / 20.44%
||
7 Day CHG~0.00%
Published-11 Nov, 2022 | 15:48
Updated-05 Feb, 2025 | 21:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Uncontrolled search path element in the Intel(R) Advanced Link Analyzer Pro before version 22.2 and Standard edition software before version 22.1.1 STD may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-advanced_link_analyzerIntel(R) Advanced Link Analyzer Pro and Standard edition
CWE ID-CWE-427
Uncontrolled Search Path Element
CVE-2022-28696
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.07% / 20.44%
||
7 Day CHG~0.00%
Published-18 Aug, 2022 | 19:57
Updated-05 May, 2025 | 17:18
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Uncontrolled search path in the Intel(R) Distribution for Python before version 2022.0.3 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-distribution_for_pythonIntel(R) Distribution for Python
CWE ID-CWE-427
Uncontrolled Search Path Element
CVE-2022-27808
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.3||MEDIUM
EPSS-0.05% / 16.82%
||
7 Day CHG~0.00%
Published-16 Feb, 2023 | 20:00
Updated-27 Jan, 2025 | 18:13
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Insufficient control flow management in some Intel(R) Ethernet Controller Administrative Tools drivers for Windows before version 1.5.0.2 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aMicrosoft CorporationIntel Corporation
Product-administrative_tools_for_intel_network_adapterswindowsIntel(R) Ethernet Controller Administrative Tools drivers for Windows
CVE-2022-28699
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.5||HIGH
EPSS-0.10% / 27.41%
||
7 Day CHG+0.03%
Published-10 May, 2023 | 13:16
Updated-27 Jan, 2025 | 18:09
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper input validation for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-nuc8i3cysnnuc8i7inh_firmwarenuc8i7hvk_firmwarenuc7cjyhn_firmwarenuc8cchbnuc7pjyh_firmwarenuc8cchbn_firmwarestk2mv64cc_firmwarenuc8i7inhnuc7cjyhnuc8i5inhnuc8i7hnknuc8cchkrnnuc8i7hvknuc7cjyhnnuc8i7hnk_firmwarenuc8i3cysn_firmwarenuc8cchkrn_firmwarenuc8cchkrnuc7cjyh_firmwarenuc7pjyhn_firmwarenuc7cjysamn_firmwarenuc7pjyhnuc8i5inh_firmwarenuc8cchbnnuc7cjysamnnuc7pjyhnnuc8i7hvkvaw_firmwarenuc7cjysalnuc8i7hvkvanuc8i7hvkva_firmwarenuc8cchkr_firmwarenuc8cchb_firmwarenuc8i7hnkqc_firmwarenuc7cjysal_firmwarestk2mv64ccnuc8i7hvkvawnuc8i7hnkqcIntel(R) NUC BIOS firmware
CWE ID-CWE-20
Improper Input Validation
CVE-2022-27180
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-4.2||MEDIUM
EPSS-0.06% / 19.87%
||
7 Day CHG+0.01%
Published-10 May, 2023 | 13:17
Updated-24 Jan, 2025 | 17:46
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Uncontrolled search path in the Intel(R) MacCPUID software before version 3.2 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-maccpuidIntel(R) MacCPUID software
CWE ID-CWE-427
Uncontrolled Search Path Element
CVE-2022-26844
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.05% / 14.02%
||
7 Day CHG~0.00%
Published-18 Aug, 2022 | 19:58
Updated-25 Feb, 2025 | 18:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Insufficiently protected credentials in the installation binaries for Intel(R) SEAPI in all versions may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-single_event_apiversion
CWE ID-CWE-522
Insufficiently Protected Credentials
CVE-2022-26840
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.3||HIGH
EPSS-0.06% / 17.61%
||
7 Day CHG~0.00%
Published-16 Feb, 2023 | 19:59
Updated-27 Jan, 2025 | 18:22
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper neutralization in the Intel(R) Quartus Prime Pro and Standard edition software may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-quartus_primeIntel(R) Quartus Prime Pro and Standard edition software
CVE-2022-26344
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.03% / 10.23%
||
7 Day CHG~0.00%
Published-18 Aug, 2022 | 19:58
Updated-25 Feb, 2025 | 17:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Incorrect default permissions in the installation binaries for Intel(R) SEAPI all versions may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-single_event_apiversion
CWE ID-CWE-276
Incorrect Default Permissions
CVE-2022-26837
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.5||HIGH
EPSS-0.10% / 27.56%
||
7 Day CHG~0.00%
Published-16 Feb, 2023 | 19:59
Updated-27 Jan, 2025 | 18:21
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper input validation in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-core_i5-1145gre_firmwarexeon_w-2223xeon_e-2276mxeon_w-10885m_firmwarexeon_w-1350_firmwarecore_i7-11850he_firmwarexeon_w-3245mxeon_w7-3465xcore_i7-11370h_firmwarexeon_e-2378gxeon_platinum_8362core_i7-11700fxeon_w-3225core_i7-1160g7xeon_e-2236xeon_gold_6338xeon_w-1370xeon_e-2124g_firmwarexeon_gold_6338t_firmwarexeon_e-2236_firmwarecore_i7-1185grecore_i3-1125g4_firmwarexeon_e-2126g_firmwarecore_i7-11375hcore_i7-11800h_firmwarexeon_e-2314xeon_e-2254me_firmwarexeon_w-2125xeon_w-2155_firmwarexeon_silver_4309yxeon_platinum_8352yxeon_w-1290te_firmwarexeon_e-2276me_firmwarexeon_platinum_8380h_firmwarexeon_platinum_8360hl_firmwarecore_i3-1110g4_firmwarecore_i5-11600_firmwarexeon_gold_6354_firmwarecore_i5-1140g7_firmwarexeon_w-3225_firmwarecore_i3-1110g4xeon_w7-3465x_firmwarexeon_w-2295xeon_w7-3455_firmwarexeon_gold_6326xeon_w7-2495xxeon_w-3245m_firmwarexeon_gold_5317_firmwarexeon_e-2226gxeon_w-1250p_firmwarecore_i9-11900kf_firmwarecore_i5-1155g7_firmwarexeon_silver_4316xeon_w-2255core_i7-11700xeon_gold_5318y_firmwarexeon_w-11555mlexeon_e-2276m_firmwarexeon_e-2134xeon_e-2226g_firmwarexeon_gold_6348_firmwarecore_i7-11370hxeon_gold_5318s_firmwarecore_i9-11900txeon_e-2224xeon_w3-2435xeon_e-2186m_firmwarexeon_w3-2425xeon_w-1390txeon_w-1270core_i7-1195g7_firmwarecore_i5-11600txeon_e-2378core_i7-11850hxeon_e-2144g_firmwarecore_i9-11900xeon_platinum_8380hxeon_e-2278gecore_i7-1185g7e_firmwarexeon_e-2134_firmwarexeon_w-2275_firmwarexeon_platinum_8368q_firmwarexeon_w-2245core_i7-11800hxeon_platinum_8376hxeon_gold_6312u_firmwarexeon_gold_6330xeon_w-3335_firmwarexeon_platinum_8362_firmwarexeon_silver_4310t_firmwarexeon_w-1270texeon_gold_6314ucore_i5-1155g7xeon_w-1250e_firmwarexeon_w-1250te_firmwarexeon_w5-3425core_i5-11320h_firmwarexeon_w-3335core_i9-11950hxeon_e-2386g_firmwarecore_i7-11850hecore_i5-11600xeon_w-1290txeon_w-11155mre_firmwarexeon_platinum_8353hxeon_w-11865mlexeon_gold_6348hxeon_gold_6338_firmwarexeon_w-3223_firmwarexeon_w-3345_firmwarecore_i7-11700txeon_w-11855mxeon_e-2136xeon_e-2246gxeon_w-3265mcore_i5-11400h_firmwarexeon_w-2255_firmwarexeon_w-2265xeon_silver_4309y_firmwarecore_i9-11900hxeon_gold_5320hxeon_platinum_8358p_firmwarexeon_gold_5320core_i5-11600k_firmwarexeon_platinum_8360yxeon_gold_6330h_firmwarexeon_w-10855mxeon_w-2245_firmwarecore_i5-11500h_firmwarexeon_w-1390p_firmwarexeon_w-10855m_firmwarecore_i3-11100hexeon_e-2374g_firmwarecore_i9-11900kxeon_w-3375_firmwarexeon_gold_6338txeon_w-1390t_firmwarexeon_w-11555mrecore_i7-11700k_firmwarexeon_w3-2423xeon_gold_5318sxeon_e-2386gxeon_w3-2425_firmwarexeon_e-2314_firmwarexeon_e-2254mlxeon_e-2124_firmwarexeon_w-2123_firmwarecore_i5-11500t_firmwarexeon_w-2223_firmwarecore_i7-1160g7_firmwarexeon_platinum_8356h_firmwarexeon_w-1270pcore_i7-11600h_firmwarexeon_w5-2455xxeon_w9-3495x_firmwarexeon_e-2226ge_firmwarexeon_e-2254ml_firmwarexeon_w-1290_firmwarexeon_e-2334xeon_platinum_8380hlcore_i3-1115gre_firmwarexeon_w-1290e_firmwarexeon_gold_5318nxeon_w-3265_firmwarexeon_platinum_8358pxeon_w-1250ecore_i5-11400txeon_w9-3495xxeon_e-2286mcore_i7-1180g7_firmwarexeon_w-1270te_firmwarecore_i5-11300hcore_i9-11900kfcore_i5-1145g7xeon_gold_6328h_firmwarecore_i3-1125g4xeon_w-3375xeon_w-2195xeon_gold_6328hl_firmwarexeon_e-2276gxeon_w-1290p_firmwarexeon_w-1390xeon_w-3235_firmwarexeon_gold_6342_firmwarexeon_e-2186gxeon_w-3365xeon_gold_5317xeon_platinum_8352m_firmwarexeon_platinum_8358_firmwarexeon_e-2276mlxeon_e-2244gxeon_w-3365_firmwarexeon_e-2174gxeon_gold_6348h_firmwarexeon_platinum_8356hxeon_e-2176gxeon_e-2324gcore_i9-11900k_firmwarexeon_w-2145_firmwarexeon_platinum_8360y_firmwarexeon_w7-3445_firmwarexeon_w-1250pcore_i5-11400t_firmwarecore_i3-1115g4core_i7-11700f_firmwarexeon_gold_5318h_firmwarexeon_e-2334_firmwarexeon_gold_5320tcore_i5-1140g7xeon_gold_6312uxeon_gold_5320h_firmwarexeon_w-2123xeon_w-3275mxeon_e-2278ge_firmwarexeon_e-2356gxeon_w5-3425_firmwarecore_i5-11400fxeon_silver_4314core_i5-11500_firmwarexeon_gold_5318n_firmwarexeon_platinum_8352y_firmwarecore_i5-1145grexeon_e-2286m_firmwarecore_i7-1180g7xeon_e-2378g_firmwarecore_i5-11600kfxeon_platinum_8358xeon_w-1390_firmwarecore_i7-11700kfxeon_w-11865mrexeon_w-11555mre_firmwarecore_i9-11950h_firmwarexeon_platinum_8352s_firmwarexeon_e-2234_firmwarexeon_w7-2475x_firmwarecore_i5-11260h_firmwarexeon_platinum_8354hxeon_w-3265core_i9-11900_firmwarexeon_w-3245core_i5-11400f_firmwarexeon_silver_4310_firmwarexeon_e-2224_firmwarexeon_gold_6338n_firmwarexeon_e-2186g_firmwarexeon_e-2274gxeon_w5-3435x_firmwarecore_i5-11500txeon_e-2124gcore_i7-1195g7core_i7-1185g7xeon_platinum_8351n_firmwarexeon_gold_6326_firmwarecore_i7-1165g7core_i5-11600kxeon_e-2278gelcore_i7-11390hcore_i9-11900h_firmwarexeon_w3-2435_firmwarexeon_platinum_8368xeon_e-2288gxeon_e-2234core_i7-11700kcore_i7-11700_firmwarexeon_silver_4310tcore_i5-1130g7_firmwarexeon_e-2356g_firmwarexeon_e-2124xeon_platinum_8380xeon_gold_6314u_firmwarexeon_w-1350p_firmwarecore_i3-11100he_firmwarexeon_platinum_8351nxeon_w-1250texeon_platinum_8376hl_firmwarexeon_w-1250core_i5-11500he_firmwarexeon_w-1270p_firmwarexeon_w7-2495x_firmwarexeon_w-2195_firmwarexeon_gold_6330n_firmwarexeon_w5-3435xcore_i5-1145g7_firmwarexeon_e-2136_firmwarexeon_e-2276g_firmwarexeon_platinum_8352vxeon_gold_6336yxeon_w7-3455xeon_w-1290exeon_e-2276mecore_i5-11400hxeon_w-2265_firmwarexeon_w-3275xeon_e-2274g_firmwarexeon_e-2126gxeon_w-2133_firmwarecore_i9-11900t_firmwarexeon_w-1270exeon_w-1370p_firmwarexeon_platinum_8360hlcore_i5-11400_firmwarecore_i9-11900fxeon_platinum_8380_firmwarexeon_w-11955m_firmwarexeon_w-1250_firmwarexeon_w-1290t_firmwarexeon_gold_6330_firmwarecore_i7-11600hcore_i7-11390h_firmwarexeon_w-3245_firmwarecore_i9-11980hkxeon_w-3265m_firmwarexeon_w-11555mle_firmwarexeon_w-11865mle_firmwarexeon_e-2146g_firmwarexeon_e-2388g_firmwarexeon_w-1370pxeon_gold_5320_firmwarecore_i7-1165g7_firmwarexeon_e-2336xeon_e-2388gxeon_w-2135_firmwarexeon_platinum_8380hl_firmwarexeon_w-2225_firmwarexeon_w-11155mrexeon_platinum_8360h_firmwarexeon_w9-3475x_firmwarexeon_e-2186mcore_i3-1115g4e_firmwarexeon_gold_6354xeon_gold_6336y_firmwarexeon_e-2176mxeon_platinum_8354h_firmwarecore_i5-1130g7xeon_platinum_8352mcore_i3-1120g4core_i3-1120g4_firmwarexeon_w-1270_firmwarexeon_w-2155xeon_e-2278g_firmwarexeon_w7-2475xxeon_e-2276ml_firmwarexeon_gold_6330hxeon_w-1290pxeon_e-2224gxeon_w-2135xeon_e-2286gxeon_gold_5318hxeon_w-2125_firmwarexeon_w-11155mlexeon_platinum_8376hlxeon_w-2175_firmwarexeon_silver_4316_firmwarecore_i7-1185g7_firmwarexeon_w-2145core_i5-11600kf_firmwarexeon_e-2226gecore_i5-11320hxeon_e-2244g_firmwarecore_i7-11700kf_firmwarexeon_e-2278gcore_i3-1115g4_firmwarexeon_w-1370_firmwarecore_i7-11375h_firmwarexeon_w-1270e_firmwarexeon_w-3323_firmwarexeon_gold_6346core_i3-1115grexeon_w-2235xeon_e-2378_firmwarexeon_w-3175x_firmwarecore_i5-11500hxeon_w-11955mxeon_e-2374gxeon_e-2176g_firmwarexeon_w5-2445_firmwarexeon_gold_6338ncore_i5-1135g7_firmwarexeon_w-2295_firmwarexeon_platinum_8360hcore_i5-11260hxeon_w-1390pcore_i3-1115g4ecore_i7-11850h_firmwarexeon_gold_6348xeon_gold_6330nxeon_w-1350core_i5-11600t_firmwarecore_i9-11900f_firmwarecore_i5-11300h_firmwarexeon_platinum_8368_firmwarexeon_w7-3445core_i9-11980hk_firmwarexeon_w-11155mle_firmwarecore_i7-11700t_firmwarexeon_w-1290xeon_platinum_8352v_firmwarexeon_w-3345xeon_e-2288g_firmwarexeon_platinum_8368qcore_i5-1145g7exeon_gold_5320t_firmwarexeon_w-10885mcore_i5-11500hexeon_w-3275_firmwarexeon_silver_4310xeon_e-2246g_firmwarecore_i5-1145g7e_firmwarecore_i7-1185gre_firmwarexeon_e-2176m_firmwarexeon_w-11855m_firmwarexeon_silver_4314_firmwarexeon_e-2174g_firmwarexeon_gold_6334xeon_w-2275core_i5-11500core_i5-1135g7xeon_w-1290texeon_e-2324g_firmwarexeon_w-3223xeon_e-2278gel_firmwarexeon_e-2144gxeon_w-3275m_firmwarexeon_w-1350pxeon_gold_6342xeon_w-3323xeon_w-3175xxeon_w5-2465xxeon_w-2235_firmwarexeon_w5-2455x_firmwarexeon_w5-2445xeon_platinum_8353h_firmwarexeon_platinum_8376h_firmwarexeon_e-2254mexeon_w-3235xeon_e-2336_firmwarecore_i7-1185g7exeon_w3-2423_firmwarexeon_w9-3475xxeon_platinum_8352sxeon_gold_6346_firmwarexeon_gold_5318yxeon_w-2225xeon_w-11865mre_firmwarexeon_gold_6328hxeon_e-2286g_firmwarexeon_w-2133xeon_gold_6334_firmwarecore_i5-11400xeon_gold_6328hlxeon_e-2146gxeon_e-2224g_firmwarexeon_w-2175xeon_w5-2465x_firmwareIntel(R) Processors
CWE ID-CWE-20
Improper Input Validation
CVE-2022-26374
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.07% / 20.44%
||
7 Day CHG~0.00%
Published-18 Aug, 2022 | 19:59
Updated-25 Feb, 2025 | 17:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Uncontrolled search path in the installation binaries for Intel(R) SEAPI all versions may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-single_event_apiversion
CWE ID-CWE-427
Uncontrolled Search Path Element
CVE-2022-27229
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.10% / 26.32%
||
7 Day CHG~0.00%
Published-14 Nov, 2023 | 19:04
Updated-30 Aug, 2024 | 18:25
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Path transversal in some Intel(R) NUC Kits NUC7i3DN, NUC7i5DN, NUC7i7DN HDMI firmware update tool software before version 1.79.1.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-nuc_7_business_nuc7i3dnktcnuc_7_business_nuc7i3dnhncnuc_7_business_nuc7i5dnkpunuc_kit_nuc7i5dnhenuc_kit_nuc7i3dnhenuc_kit_nuc7i5dnkenuc_kit_nuc7i7dnhehdmi_firmwarenuc_7_business_nuc7i5dnkpcnuc_kit_nuc7i3dnkenuc_kit_nuc7i7dnkeIntel(R) NUC Kits NUC7i3DN, NUC7i5DN, NUC7i7DN HDMI firmware update tool softwarenuc_kit_nuc7i5dnhenuc_kit_nuc7i3dnhenuc_hdmi_firmware_update_toolnuc_kit_nuc7i7dnhenuc_kit_nuc7i5dnkenuc_kit_nuc7i3dnkenuc_kit_nuc7i7dnke
CWE ID-CWE-249
DEPRECATED: Often Misused: Path Manipulation
CWE ID-CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CVE-2022-27170
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-5.7||MEDIUM
EPSS-0.05% / 16.82%
||
7 Day CHG~0.00%
Published-16 Feb, 2023 | 20:00
Updated-27 Jan, 2025 | 18:16
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Protection mechanism failure in the Intel(R) Media SDK software before version 22.2.2 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-media_software_development_kitIntel(R) Media SDK software
CVE-2022-27493
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.11% / 28.89%
||
7 Day CHG~0.00%
Published-18 Aug, 2022 | 20:04
Updated-18 Feb, 2025 | 16:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper initialization in the firmware for some Intel(R) NUC Laptop Kits before version BC0076 may allow a privileged user to potentially enable an escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-lapbc510lapbc710_firmwarelapbc510_firmwarelapbc710Intel(R) NUC Laptop Kits
CWE ID-CWE-665
Improper Initialization
CVE-2024-22382
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.5||HIGH
EPSS-0.10% / 26.23%
||
7 Day CHG~0.00%
Published-16 May, 2024 | 20:46
Updated-15 Apr, 2026 | 00:35
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper input validation in PprRequestLog module in UEFI firmware for some Intel(R) Server D50DNP Family products may allow a privileged user to enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-PprRequestLog module in UEFI firmware for some Intel(R) Server D50DNP Family productsserver_system_d50tnp2mhsvac_firmware
CWE ID-CWE-20
Improper Input Validation
CVE-2022-25992
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.5||HIGH
EPSS-0.08% / 23.88%
||
7 Day CHG~0.00%
Published-16 Feb, 2023 | 19:59
Updated-27 Jan, 2025 | 18:25
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Insecure inherited permissions in the Intel(R) oneAPI Toolkits oneapi-cli before version 0.2.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-oneapi-cliIntel(R) oneAPI Toolkits oneapi-cli
CWE ID-CWE-732
Incorrect Permission Assignment for Critical Resource
CVE-2022-25966
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.06% / 17.61%
||
7 Day CHG~0.00%
Published-18 Aug, 2022 | 19:47
Updated-05 May, 2025 | 17:18
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper access control in the Intel(R) Edge Insights for Industrial software before version 2.6.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-edge_insights_for_industrialIntel(R) Edge Insights for Industrial software
CVE-2022-25999
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.07% / 20.44%
||
7 Day CHG~0.00%
Published-18 Aug, 2022 | 19:56
Updated-05 May, 2025 | 17:18
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Uncontrolled search path element in the Intel(R) Enpirion(R) Digital Power Configurator GUI software, all versions may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-enpirion_digital_power_configurator_guiversion
CWE ID-CWE-427
Uncontrolled Search Path Element
CVE-2022-25841
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.07% / 20.44%
||
7 Day CHG~0.00%
Published-18 Aug, 2022 | 19:56
Updated-05 May, 2025 | 17:18
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Uncontrolled search path elements in the Intel(R) Datacenter Group Event Android application, all versions, may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-datacenter_group_eventversion
CWE ID-CWE-427
Uncontrolled Search Path Element
CVE-2022-26024
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.05% / 14.02%
||
7 Day CHG~0.00%
Published-11 Nov, 2022 | 15:49
Updated-29 Jan, 2025 | 21:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper access control in the Intel(R) NUC HDMI Firmware Update Tool for NUC7i3DN, NUC7i5DN and NUC7i7DN before version 1.78.2.0.7 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-nuc7i5dnhe_firmwarenuc7i3dnbe_firmwarenuc7i3dnktcnuc7i7dnhe_firmwarenuc7i5dnkenuc7i3dnke_firmwarenuc7i7dnke_firmwarenuc7i3dnhnc_firmwarenuc7i5dnbenuc7i7dnbenuc7i5dnbe_firmwarenuc7i5dnhenuc7i7dnhenuc7i7dnbe_firmwarenuc7i3dnktc_firmwarenuc7i3dnkenuc7i5dnke_firmwarenuc7i3dnbenuc7i7dnkenuc7i3dnhenuc7i3dnhe_firmwarenuc7i3dnhncIntel(R) NUC HDMI Firmware Update Tool for NUC7i3DN, NUC7i5DN and NUC7i7DN
CWE ID-CWE-281
Improper Preservation of Permissions
CVE-2022-25864
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.06% / 17.38%
||
7 Day CHG~0.00%
Published-11 Aug, 2023 | 02:37
Updated-10 Oct, 2024 | 18:14
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Uncontrolled search path in some Intel(R) oneMKL software before version 2022.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-oneapi_math_kernel_libraryIntel(R) oneMKL software
CWE ID-CWE-427
Uncontrolled Search Path Element
CVE-2022-24379
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.5||HIGH
EPSS-0.07% / 20.14%
||
7 Day CHG~0.00%
Published-14 Nov, 2023 | 19:05
Updated-30 Aug, 2024 | 16:35
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper input validation in some Intel(R) Server System M70KLP Family BIOS firmware before version 01.04.0029 may allow a privileged user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-server_system_m70klp4s2uhhserver_board_m70klp2sb_firmwareserver_system_m70klp4s2uhh_firmwareserver_board_m70klp2sbIntel(R) Server System M70KLP Family BIOS firmwareintel_server_system_m70klp_family_bios_firmware
CWE ID-CWE-20
Improper Input Validation
CVE-2022-21807
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.07% / 20.44%
||
7 Day CHG~0.00%
Published-18 Aug, 2022 | 19:52
Updated-05 May, 2025 | 17:17
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Uncontrolled search path elements in the Intel(R) VTune(TM) Profiler software before version 2022.2.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-vtune_profilerIntel(R) VTune(TM) Profiler software
CWE ID-CWE-427
Uncontrolled Search Path Element
CVE-2022-21812
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.06% / 17.61%
||
7 Day CHG~0.00%
Published-18 Aug, 2022 | 19:47
Updated-05 May, 2025 | 17:17
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper access control in the Intel(R) HAXM software before version 7.7.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-hardware_accelerated_execution_managerIntel(R) HAXM software
CVE-2022-21220
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.05% / 16.66%
||
7 Day CHG~0.00%
Published-09 Feb, 2022 | 22:04
Updated-05 May, 2025 | 17:17
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper restriction of XML external entity for Intel(R) Quartus(R) Prime Pro Edition before version 21.3 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-quartus_primeIntel(R) Quartus(R) Prime Pro Edition
CWE ID-CWE-611
Improper Restriction of XML External Entity Reference
CVE-2022-21181
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.10% / 26.72%
||
7 Day CHG~0.00%
Published-18 Aug, 2022 | 00:00
Updated-05 May, 2025 | 17:17
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper input validation for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a privileged user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-dual_band_wireless-ac_8265wireless-ac_9461wireless-ac_9462wireless-ac_9560_firmwarewireless-ac_9260_firmwarewireless-ac_9260dual_band_wireless-ac_8260wireless-ac_9462_firmwaredual_band_wireless-ac_8265_firmwarekiller_ac_1550_firmwaredual_band_wireless-ac_8260_firmwarewireless-ac_9461_firmwarewireless-ac_9560killer_ac_1550Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products
CWE ID-CWE-20
Improper Input Validation
CVE-2022-21128
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.06% / 17.89%
||
7 Day CHG~0.00%
Published-12 May, 2022 | 16:35
Updated-05 May, 2025 | 17:17
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Insufficient control flow management in the Intel(R) Advisor software before version 7.6.0.37 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-advisorIntel(R) Advisor software
CVE-2022-21174
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.06% / 17.89%
||
7 Day CHG~0.00%
Published-09 Feb, 2022 | 22:04
Updated-05 May, 2025 | 17:17
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper access control in a third-party component of Intel(R) Quartus(R) Prime Pro Edition before version 21.3 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-quartus_primeIntel(R) Quartus(R) Prime Pro Edition
CVE-2022-21163
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-8.4||HIGH
EPSS-0.14% / 32.90%
||
7 Day CHG~0.00%
Published-16 Feb, 2023 | 20:00
Updated-27 Jan, 2025 | 18:14
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper access control in the Crypto API Toolkit for Intel(R) SGX before version 2.0 commit ID 91ee496 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-crypto_api_toolkit_for_intel_sgxCrypto API Toolkit for Intel(R) SGX
CVE-2022-21204
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.04% / 11.16%
||
7 Day CHG~0.00%
Published-09 Feb, 2022 | 22:04
Updated-05 May, 2025 | 17:17
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper permissions for Intel(R) Quartus(R) Prime Pro Edition before version 21.3 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-quartus_primeIntel(R) Quartus(R) Prime Pro Edition
CWE ID-CWE-276
Incorrect Default Permissions
CVE-2022-21203
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.04% / 11.16%
||
7 Day CHG~0.00%
Published-09 Feb, 2022 | 22:04
Updated-05 May, 2025 | 17:17
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper permissions in the SafeNet Sentinel driver for Intel(R) Quartus(R) Prime Standard Edition before version 21.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-quartus_primeIntel(R) Quartus(R) Prime Standard Edition
CWE ID-CWE-281
Improper Preservation of Permissions
CVE-2022-21229
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.06% / 17.61%
||
7 Day CHG-0.09%
Published-18 Aug, 2022 | 00:00
Updated-05 May, 2025 | 17:17
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper buffer restrictions for some Intel(R) NUC 9 Extreme Laptop Kit drivers before version 2.2.0.22 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-lapqc71clapqc71blapqc71acontrol_centerlapqc71dIntel(R) NUC 9 Extreme Laptop Kit drivers
CVE-2022-21148
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.06% / 17.61%
||
7 Day CHG~0.00%
Published-18 Aug, 2022 | 19:47
Updated-05 May, 2025 | 17:17
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper access control in the Intel(R) Edge Insights for Industrial software before version 2.6.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-edge_insights_for_industrialIntel(R) Edge Insights for Industrial software
CVE-2022-33963
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.08% / 23.74%
||
7 Day CHG-0.00%
Published-10 May, 2023 | 13:17
Updated-24 Jan, 2025 | 17:46
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Incorrect default permissions in the software installer for Intel(R) Unite(R) Client software for Windows before version 4.2.34870 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-unitesoftware installer for Intel(R) Unite(R) Client software for Windows
CWE ID-CWE-276
Incorrect Default Permissions
CVE-2024-21831
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.65% / 71.06%
||
7 Day CHG~0.00%
Published-16 May, 2024 | 20:47
Updated-27 Aug, 2025 | 16:49
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Uncontrolled search path in some Intel(R) Processor Diagnostic Tool software before version 4.1.9.41 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-processor_diagnostic_toolIntel(R) Processor Diagnostic Tool softwareprocessor_diagnostic_tool
CWE ID-CWE-427
Uncontrolled Search Path Element
CVE-2024-21861
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.15% / 35.62%
||
7 Day CHG~0.00%
Published-16 May, 2024 | 20:47
Updated-23 Jan, 2025 | 18:36
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Uncontrolled search path in some Intel(R) GPA Framework software before version 2023.4 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-graphics_performance_analyzers_frameworkIntel(R) GPA Framework softwaregraphics_performance_analyzer
CWE ID-CWE-427
Uncontrolled Search Path Element
CVE-2024-21772
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.09% / 24.85%
||
7 Day CHG~0.00%
Published-16 May, 2024 | 20:47
Updated-27 Aug, 2025 | 16:50
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Uncontrolled search path in some Intel(R) Advisor software before version 2024.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-oneapi_base_toolkitadvisorIntel(R) Advisor softwareoneapi_base_toolkitadvisor
CWE ID-CWE-427
Uncontrolled Search Path Element
CVE-2024-21835
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.11% / 29.48%
||
7 Day CHG~0.00%
Published-16 May, 2024 | 20:47
Updated-01 Aug, 2024 | 22:27
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Insecure inherited permissions in some Intel(R) XTU software before version 7.14.0.15 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-extreme_tuning_utilityIntel(R) XTU softwareextreme_tuning_utility
CWE ID-CWE-277
Insecure Inherited Permissions
CWE ID-CWE-732
Incorrect Permission Assignment for Critical Resource
CVE-2024-21788
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-6.7||MEDIUM
EPSS-0.08% / 24.10%
||
7 Day CHG~0.00%
Published-16 May, 2024 | 20:47
Updated-23 Jan, 2025 | 18:35
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Uncontrolled search path in some Intel(R) GPA software before version 2023.4 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-graphics_performance_analyzersIntel(R) GPA softwaregraphics_performance_analyzer
CWE ID-CWE-427
Uncontrolled Search Path Element
CVE-2024-21871
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.3||HIGH
EPSS-0.07% / 21.43%
||
7 Day CHG~0.00%
Published-16 Sep, 2024 | 16:38
Updated-15 Apr, 2026 | 00:35
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper input validation in UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-UEFI firmware for some Intel(R) Processorsxeon_d-2799_firmware
CWE ID-CWE-20
Improper Input Validation
CVE-2024-21784
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-5.4||MEDIUM
EPSS-0.06% / 19.68%
||
7 Day CHG~0.00%
Published-14 Aug, 2024 | 13:45
Updated-27 Aug, 2025 | 20:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Uncontrolled search path for some Intel(R) IPP Cryptography software before version 2021.11 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-integrated_performance_primitives_cryptographyoneapi_base_toolkitIntel(R) IPP Cryptography softwareipp_cryptography
CWE ID-CWE-427
Uncontrolled Search Path Element
CVE-2024-1598
Matching Score-8
Assigner-Phoenix Technologies, Inc.
ShareView Details
Matching Score-8
Assigner-Phoenix Technologies, Inc.
CVSS Score-7.5||HIGH
EPSS-0.11% / 28.64%
||
7 Day CHG~0.00%
Published-14 May, 2024 | 14:56
Updated-25 Sep, 2025 | 21:20
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Potential buffer overflow when handling UEFI variables

Potential buffer overflow in unsafe UEFI variable handling in Phoenix SecureCore™ for Intel Gemini Lake.This issue affects: SecureCore™ for Intel Gemini Lake: from 4.1.0.1 before 4.1.0.567.

Action-Not Available
Vendor-phoenixtechPhoenixphoenixIntel Corporation
Product-securecore_technologyceleron_n4020SecureCore™ for Intel Gemini Lakesecurecore_technology
CWE ID-CWE-121
Stack-based Buffer Overflow
CVE-2021-0196
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.06% / 17.89%
||
7 Day CHG~0.00%
Published-11 Aug, 2021 | 12:48
Updated-03 Aug, 2024 | 15:32
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper access control in kernel mode driver for some Intel(R) NUC 9 Extreme Laptop Kits before version 2.2.0.20 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-lapqc71alapqc71dlapqc71c_firmwarelapqc71clapqc71d_firmwarelapqc71blapqc71a_firmwarelapqc71b_firmwareIntel(R) NUC 9 Extreme Laptop Kits
CVE-2021-0190
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.12% / 31.18%
||
7 Day CHG~0.00%
Published-12 May, 2022 | 16:36
Updated-05 May, 2025 | 17:16
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Uncaught exception in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable aescalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-xeon_e5-2650l_v4xeon_e5-1607_v4_firmwarexeon_e5-2689_v4xeon_e5-1650_v4_firmwarexeon_e5-2630l_v4xeon_e5-2699_v4_firmwarexeon_e5-4640_v4_firmwarexeon_e5-2637_v4_firmwarexeon_e5-2660_v4_firmwarexeon_e5-4669_v4_firmwarexeon_e5-4667_v4xeon_e5-2603_v4_firmwarexeon_e5-2697a_v4xeon_e5-4628l_v4xeon_e5-2687w_v4xeon_e5-2637_v4core_i9-10980xe_firmwarexeon_e5-1650_v4xeon_e5-1620_v4xeon_e5-4669_v4xeon_e5-2689_v4_firmwarexeon_e5-2630_v4_firmwarexeon_e5-2609_v4_firmwarexeon_e5-4610a_v4xeon_e5-2623_v4xeon_e5-2699r_v4_firmwarexeon_e5-2679_v4xeon_e5-4640_v4xeon_e5-2628l_v4xeon_e5-2650_v4xeon_e5-2650_v4_firmwarexeon_e5-4660_v4_firmwarexeon_e5-2630l_v4_firmwarexeon_e5-2687w_v4_firmwarecore_i9-10980xexeon_e5-2690_v4_firmwarexeon_e5-2608l_v4xeon_e5-4650_v4xeon_e5-2697_v4xeon_e5-2660_v4xeon_e5-4610_v4xeon_e5-2680_v4_firmwarexeon_e5-2658_v4_firmwarexeon_e5-4627_v4_firmwarexeon_e5-2658_v4xeon_e5-2679_v4_firmwarexeon_e5-1630_v4_firmwarexeon_e5-2648l_v4_firmwarexeon_e5-4650_v4_firmwarexeon_e5-2667_v4xeon_e5-1680_v4_firmwarexeon_e5-2695_v4_firmwarexeon_e5-4620_v4_firmwarecore_i9-10900x_firmwarexeon_e5-4655_v4_firmwarexeon_e5-2608l_v4_firmwarexeon_e5-4627_v4xeon_e5-2630_v4xeon_e5-1603_v4_firmwarexeon_e5-1630_v4xeon_e5-4610_v4_firmwarexeon_e5-2620_v4core_i9-10920x_firmwarexeon_e5-2609_v4core_i9-10940xxeon_e5-1660_v4xeon_e5-4628l_v4_firmwarexeon_e5-1680_v4xeon_e5-2698_v4_firmwarexeon_e5-2683_v4_firmwarexeon_e5-2618l_v4_firmwarecore_i9-10900xxeon_e5-1607_v4xeon_e5-2643_v4_firmwarexeon_e5-2695_v4xeon_e5-2623_v4_firmwarexeon_e5-2690_v4xeon_e5-2650l_v4_firmwarexeon_e5-2699r_v4core_i9-10940x_firmwarecore_i9-10920xxeon_e5-2699a_v4_firmwarexeon_e5-2640_v4_firmwarexeon_e5-2667_v4_firmwarexeon_e5-2699a_v4xeon_e5-2618l_v4xeon_e5-4667_v4_firmwarexeon_e5-1660_v4_firmwarexeon_e5-2648l_v4xeon_e5-4620_v4xeon_e5-4610a_v4_firmwarexeon_e5-2643_v4xeon_e5-2683_v4xeon_e5-2699_v4xeon_e5-2628l_v4_firmwarexeon_e5-2603_v4xeon_e5-4660_v4xeon_e5-2697_v4_firmwarexeon_e5-2698_v4xeon_e5-1620_v4_firmwarexeon_e5-1603_v4xeon_e5-2620_v4_firmwarexeon_e5-2640_v4xeon_e5-2680_v4xeon_e5-4655_v4xeon_e5-2697a_v4_firmwareIntel(R) Processors
CWE ID-CWE-755
Improper Handling of Exceptional Conditions
CVE-2021-0185
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.5||HIGH
EPSS-0.06% / 18.05%
||
7 Day CHG~0.00%
Published-10 Nov, 2022 | 22:00
Updated-05 Feb, 2025 | 21:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper input validation in the firmware for some Intel(R) Server Board M10JNP Family before version 7.216 may allow a privileged user to potentially enable an escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-m10jnp2sb_firmwarem10jnp2sbIntel(R) Server Board M10JNP Family
CWE ID-CWE-20
Improper Input Validation
CVE-2021-0062
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.06% / 17.89%
||
7 Day CHG~0.00%
Published-11 Aug, 2021 | 12:47
Updated-03 Aug, 2024 | 15:25
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper input validation in some Intel(R) Graphics Drivers before version 27.20.100.8935 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aMicrosoft CorporationIntel Corporation
Product-windowsgraphics_driversIntel(R) Graphics Drivers
CWE ID-CWE-20
Improper Input Validation
CVE-2021-0159
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.08% / 23.69%
||
7 Day CHG~0.00%
Published-12 May, 2022 | 16:36
Updated-05 May, 2025 | 17:16
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Improper input validation in the BIOS authenticated code module for some Intel(R) Processors may allow a privileged user to potentially enable aescalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-xeon_gold_5215xeon_platinum_8260yxeon_platinum_8352vxeon_platinum_8352y_firmwarexeon_platinum_8260y_firmwarexeon_gold_5218txeon_platinum_8358xeon_platinum_8353hxeon_platinum_8360yxeon_platinum_8280_firmwarexeon_gold_5218nxeon_gold_5317_firmwarexeon_silver_4209t_firmwarexeon_gold_6336yxeon_gold_6250lxeon_gold_6209uxeon_silver_4314_firmwarexeon_platinum_8253xeon_gold_6252nxeon_silver_4214yxeon_platinum_8270_firmwarexeon_gold_6230txeon_platinum_8376h_firmwarexeon_silver_4210rxeon_platinum_8280xeon_gold_6238l_firmwarexeon_gold_5220t_firmwarexeon_gold_6252xeon_gold_5220rxeon_silver_4309y_firmwarexeon_gold_6246xeon_gold_6226r_firmwarexeon_silver_4214rxeon_silver_4210r_firmwarexeon_gold_6328hl_firmwarexeon_gold_6256_firmwarexeon_platinum_9221xeon_gold_6230rxeon_gold_6346_firmwarexeon_platinum_8360hlxeon_platinum_9222_firmwarexeon_gold_5315y_firmwarexeon_silver_4310txeon_silver_4208xeon_gold_5318hxeon_gold_6210u_firmwarexeon_platinum_8380_firmwarexeon_gold_5320_firmwarexeon_silver_4314xeon_silver_4210t_firmwarexeon_gold_5218t_firmwarexeon_gold_5215lxeon_silver_4316_firmwarexeon_platinum_8352sxeon_gold_5217_firmwarexeon_gold_6330n_firmwarexeon_platinum_8253_firmwarexeon_gold_6238xeon_platinum_8368_firmwarexeon_platinum_8376hxeon_gold_6240lxeon_gold_6248xeon_gold_6258rxeon_gold_6312u_firmwarexeon_gold_6240l_firmwarexeon_platinum_8256xeon_platinum_9282xeon_silver_4215_firmwarexeon_gold_6254_firmwarexeon_gold_5220_firmwarexeon_gold_6334_firmwarexeon_gold_6338nxeon_gold_6328hlxeon_gold_6252_firmwarexeon_gold_6230n_firmwarexeon_gold_6330xeon_bronze_3206rxeon_gold_6346xeon_silver_4208_firmwarexeon_gold_6240xeon_gold_5220xeon_platinum_8256_firmwarexeon_gold_5218r_firmwarexeon_gold_6348h_firmwarexeon_platinum_8268xeon_silver_4214y_firmwarexeon_gold_6240rxeon_gold_6238_firmwarexeon_gold_6330hxeon_silver_4209txeon_gold_6338xeon_gold_5315yxeon_platinum_8368q_firmwarexeon_silver_4215rxeon_gold_6212uxeon_platinum_8380xeon_silver_4215xeon_platinum_8368xeon_gold_6230nxeon_platinum_8280l_firmwarexeon_gold_6338txeon_platinum_8352mxeon_gold_6208uxeon_gold_6242_firmwarexeon_gold_6326_firmwarexeon_gold_6230r_firmwarexeon_gold_6242xeon_platinum_8360y_firmwarexeon_gold_6246_firmwarexeon_platinum_8260_firmwarexeon_platinum_8376hl_firmwarexeon_platinum_8360hxeon_gold_6230t_firmwarexeon_gold_6250_firmwarexeon_gold_5218_firmwarexeon_silver_4210txeon_gold_5320txeon_gold_6244_firmwarexeon_gold_6342xeon_gold_6330h_firmwarexeon_platinum_8276_firmwarexeon_platinum_8276xeon_silver_4316xeon_gold_6240_firmwarexeon_gold_5220txeon_gold_6336y_firmwarexeon_gold_6244xeon_gold_6242rxeon_gold_6330nxeon_platinum_9242_firmwarexeon_gold_6226rxeon_gold_6258r_firmwarexeon_bronze_3204xeon_gold_6230_firmwarexeon_gold_5218b_firmwarexeon_gold_5218bxeon_gold_6348hxeon_platinum_8354hxeon_gold_6248_firmwarexeon_gold_6328hxeon_platinum_8360hl_firmwarexeon_silver_4214r_firmwarexeon_gold_5318s_firmwarexeon_gold_6254xeon_gold_5218rxeon_gold_6334xeon_gold_6342_firmwarexeon_gold_6326xeon_gold_5320xeon_gold_6240yxeon_gold_6238lxeon_gold_5320h_firmwarexeon_gold_5218n_firmwarexeon_gold_6328h_firmwarexeon_platinum_8362_firmwarexeon_gold_5318h_firmwarexeon_gold_6348xeon_gold_6246r_firmwarexeon_gold_6354xeon_gold_6246rxeon_gold_6234_firmwarexeon_gold_5320hxeon_gold_6312uxeon_gold_5220r_firmwarexeon_gold_5222xeon_platinum_8380hlxeon_gold_6256xeon_platinum_8260l_firmwarexeon_gold_6338n_firmwarexeon_gold_6248rxeon_silver_4214xeon_gold_5318nxeon_platinum_9222xeon_platinum_8358_firmwarexeon_gold_5220sxeon_platinum_8260xeon_platinum_8280lxeon_silver_4309yxeon_platinum_8356hxeon_gold_6338t_firmwarexeon_gold_6314uxeon_gold_5320t_firmwarexeon_gold_5318y_firmwarexeon_gold_5222_firmwarexeon_platinum_9242xeon_silver_4216xeon_platinum_8358p_firmwarexeon_platinum_8362xeon_platinum_8276lxeon_platinum_8352v_firmwarexeon_platinum_8351n_firmwarexeon_gold_5318n_firmwarexeon_gold_6238txeon_gold_6314u_firmwarexeon_platinum_9221_firmwarexeon_silver_4310t_firmwarexeon_platinum_8368qxeon_gold_6240r_firmwarexeon_gold_5318yxeon_gold_6212u_firmwarexeon_gold_6208u_firmwarexeon_silver_4310xeon_gold_6209u_firmwarexeon_platinum_8352m_firmwarexeon_platinum_8356h_firmwarexeon_platinum_9282_firmwarexeon_platinum_8276l_firmwarexeon_gold_6250xeon_platinum_8260lxeon_platinum_8270xeon_gold_6248r_firmwarexeon_platinum_8380hxeon_gold_6262v_firmwarexeon_gold_6226xeon_gold_5318sxeon_silver_4214_firmwarexeon_platinum_8268_firmwarexeon_gold_6348_firmwarexeon_gold_6226_firmwarexeon_silver_4210xeon_gold_6250l_firmwarexeon_gold_6234xeon_silver_4310_firmwarexeon_platinum_8360h_firmwarexeon_gold_6252n_firmwarexeon_gold_6262vxeon_gold_6240y_firmwarexeon_platinum_8354h_firmwarexeon_gold_5215_firmwarexeon_gold_5220s_firmwarexeon_platinum_8358pxeon_gold_6330_firmwarexeon_silver_4210_firmwarexeon_platinum_8380hl_firmwarexeon_gold_5218xeon_gold_6338_firmwarexeon_gold_6238rxeon_bronze_3204_firmwarexeon_gold_6222v_firmwarexeon_gold_6238r_firmwarexeon_bronze_3206r_firmwarexeon_platinum_8352yxeon_silver_4215r_firmwarexeon_gold_5317xeon_gold_6242r_firmwarexeon_gold_5217xeon_platinum_8376hlxeon_gold_6210uxeon_gold_6222vxeon_silver_4216_firmwarexeon_platinum_8352s_firmwarexeon_platinum_8380h_firmwarexeon_gold_5215l_firmwarexeon_gold_6238t_firmwarexeon_platinum_8353h_firmwarexeon_platinum_8351nxeon_gold_6354_firmwarexeon_gold_6230Intel(R) Processors
CWE ID-CWE-20
Improper Input Validation
CVE-2021-0109
Matching Score-8
Assigner-Intel Corporation
ShareView Details
Matching Score-8
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.04% / 11.16%
||
7 Day CHG~0.00%
Published-17 Feb, 2021 | 13:36
Updated-03 Aug, 2024 | 15:32
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Insecure inherited permissions for the Intel(R) SOC driver package for STK1A32SC before version 604 may allow an authenticated user to potentially enable escalation of privilege via local access.

Action-Not Available
Vendor-n/aIntel Corporation
Product-compute_stick_stk1a32sccompute_stick_stk1a32sc_firmwareIntel(R) SOC driver package for STK1A32SC
CWE ID-CWE-732
Incorrect Permission Assignment for Critical Resource
CVE-2024-0762
Matching Score-8
Assigner-Phoenix Technologies, Inc.
ShareView Details
Matching Score-8
Assigner-Phoenix Technologies, Inc.
CVSS Score-7.5||HIGH
EPSS-0.39% / 59.93%
||
7 Day CHG~0.00%
Published-14 May, 2024 | 14:56
Updated-29 Sep, 2025 | 16:59
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Potential buffer overflow when handling UEFI variables

Potential buffer overflow in unsafe UEFI variable handling in Phoenix SecureCore™ for select Intel platforms This issue affects: Phoenix SecureCore™ for Intel Kaby Lake: from 4.0.1.1 before 4.0.1.998; Phoenix SecureCore™ for Intel Coffee Lake: from 4.1.0.1 before 4.1.0.562; Phoenix SecureCore™ for Intel Ice Lake: from 4.2.0.1 before 4.2.0.323; Phoenix SecureCore™ for Intel Comet Lake: from 4.2.1.1 before 4.2.1.287; Phoenix SecureCore™ for Intel Tiger Lake: from 4.3.0.1 before 4.3.0.236; Phoenix SecureCore™ for Intel Jasper Lake: from 4.3.1.1 before 4.3.1.184; Phoenix SecureCore™ for Intel Alder Lake: from 4.4.0.1 before 4.4.0.269; Phoenix SecureCore™ for Intel Raptor Lake: from 4.5.0.1 before 4.5.0.218; Phoenix SecureCore™ for Intel Meteor Lake: from 4.5.1.1 before 4.5.1.15.

Action-Not Available
Vendor-phoenixtechPhoenixphoenixIntel Corporation
Product-core_i5-1240pcore_i5-14400fcore_i5-14500core_i7-12650hxatom_x7213ecore_i3-10105tcore_i7-8709gcore_i3-1000g4core_i5-9500core_i5-12500hlcore_i3-1115g4ecore_i5-14500hxcore_i9-14900tcore_5-220ucore_i7-1255ulcore_i3-7100xeon_gold_6338tcore_i3-8100core_i7-12800hcore_i5-8400tcore_i7-9850hxeon_platinum_8352vcore_i5-9400txeon_e-2274gcore_i7-9750hfxeon_w-10855mceleron_g6900tcore_i7-9700tcore_i5-9500txeon_gold_6338nxeon_e3-1505lcore_i5-1145grecore_i5-1235ucore_i3-1210ucore_i3-12300hlxeon_silver_4316xeon_e-2186gcore_i3-1215ulcore_i7-9750hceleron_g5900tcore_i5-12450hxceleron_g4930txeon_platinum_8368qcore_ultra_5_135hlcore_i7-8650ucore_i5-8305gcore_i3-8300tcore_i3-9350kcore_i7-8086kcore_i5-13600hcore_i7-1355uxeon_e-2144gcore_i3-1000ng4core_i5-10500hpentium_gold_g5500core_i9-14901exeon_e-2488core_i9-13950hxcore_i5-13400core_ultra_5_135ucore_m3-7y32core_i9-9900kfcore_i7-13700hxxeon_gold_5320core_i9-14901kecore_ultra_7_165uxeon_platinum_8358pentium_gold_g4600tcore_i5-12400fsecurecore_technologyxeon_gold_5318yxeon_gold_6348core_i9-12900kcore_i9-9900kscore_i3-9320core_i7-13850hxcore_i3-13100fcore_ultra_7_165hcore_i3-10105xeon_gold_6354core_i5-1245ulcore_i7-7820hqxeon_e-2224gcore_i5-9400fcore_i5-13600kfxeon_gold_6336ycore_i3-n305xeon_e-2276mcore_i5-7300uxeon_e-2124gceleron_n4500xeon_platinum_8352score_i7-12650hcore_i5-8257ucore_i7-8557uxeon_e3-1280core_i7-1185g7epentium_gold_g5400txeon_w-10885mcore_i3-7101tecore_i3-7167ucore_i3-14100core_i5-7360ucore_i5-8400core_i7-7700tcore_i5-1030g7core_i3-12100core_i9-12900fcore_i5-9600kxeon_gold_6334core_i7-1265ulxeon_e-2288gcore_i7-7700core_i5-10210ucore_i7-7740xcore_i7-13700kfpentium_gold_g5420tcore_i5-7y57core_i5-8500tcore_i9-12900hkcore_i7-7560ucore_i3-8130uceleron_g4900tcore_i5-11500hcore_i3-1000g1core_i3-9100core_i7-12800hlxeon_e3-1245core_7-250hcore_i5-8500core_ultra_5_135hcore_i5-8600tcore_3-100ucore_i7-13700eceleron_3965upentium_gold_g5400core_i5-14501ecore_i9-12950hxcore_i3-12300pentium_gold_g5420core_i7-14650hxcore_i3-1005g1core_ultra_9_185hcore_i5-9500fcore_i7-14790fcore_i7-1165g7core_i5-14501texeon_e3-1225celeron_g4950core_i5-12450hcore_i5-7500tcore_m3-6y30xeon_e-2276gcore_i7-7660ucore_i5-7267ucore_i7-1160g7xeon_e-2104gcore_i5-1340pxeon_platinum_8362core_i3-8350kxeon_w-1270pn97xeon_silver_4310core_i3-1215ucore_ultra_5_125ulxeon_gold_6330core_i5-1334ucore_i5-13500core_i3-12100tpentium_gold_g5500tcore_i5-1145g7core_i9-13900core_i7-1255ucore_i9-13900hkxeon_platinum_8351ncore_i7-8700kcore_i7-8559uxeon_w-3365atom_x7211ecore_i7-13620hcore_i5-9300hcore_i3-7350kcore_i7-8550ucore_i7-1195g7core_i5-12400celeron_3965yxeon_platinum_8360ypentium_6405uceleron_g3950core_i5-1035g1core_i7-1068ng7core_i3-8100hcore_i7-8809gcore_i7-14700kfcore_i3-7100ucore_i5-7400tcore_i5-14401ecore_i3-13100core_i5-1345uatom_x7425ecore_3-n355core_i5-8300hcore_i9-13900hxeon_e-2456core_i3-8100fceleron_3867ucore_i5-14401tecore_i5-10505celeron_6305core_i5-1350pcore_i5-13505hcore_i3-10305tcore_7-150ucore_m3-7y30core_i3-7020ucore_i9-11900kbcore_3-n350core_i7-10870hxeon_e-2278gpentium_gold_g5620core_i7-8700core_i3-1125g4xeon_w-3345core_i5-7600kxeon_platinum_8380core_i5-13600core_i5-13500tcore_i9-14900pentium_gold_4415ucore_i7-12700kfn200core_i3-9300tcore_i5-14600kfcore_i5-9600celeron_7300core_i7-13700kpentium_8505xeon_e3-1270core_i5-1155g7core_i5-11320hcore_i7-10710uceleron_n5105core_i5-1135g7core_i5-7400celeron_g5920pentium_gold_g5600xeon_e-2226gxeon_e-2224xeon_gold_6346celeron_7305core_i5-14500tcore_i3-12100fxeon_e-2414core_i5-8250ucore_i5-9600kfcore_i5-14400tcore_ultra_5_125hlcore_i3-7130ucore_i9-13900tecore_i7-13700tecore_i7-8569ucore_i7-1185g7core_i7-12700tcore_i5-14490fpentium_gold_g6405txeon_e-2244gcore_i5-10300hcore_i7-1180g7core_i5-12400tcore_i5-7y54core_i7-10810ucore_ultra_7_155ulxeon_silver_4310tcore_i5-13500hxxeon_silver_4314core_i5-1335ucore_i7-13800hxeon_e3-1285celeron_n5095pentium_silver_n6000xeon_gold_6326core_i5-12490fcore_i5-1030g4core_i5-9600tn95core_i5-8279uxeon_e-2176mcore_i7-13700tcore_i3-7300core_i9-13900kscore_i5-12600tcore_i7-7700hqcore_i5-12600kcore_i7-8700bcore_i7-1280pcore_i5-1035g7xeon_gold_6312ucore_ultra_7_155hcore_i7-7700kcore_i5-8600kcore_i9-11980hkcore_i7-12700hcore_i7-7600ucore_i5-11300hxeon_11855mpentium_gold_g6605core_i5-7600tcore_i3-8109ucore_i3-1315ucore_i3-1110g4core_i7-14700fcore_ultra_7_165hlcore_ultra_5_125ucore_i7-7500uxeon_e-2246gcore_i9-12900hxcore_i9-11900hpentium_gold_g7400celeron_g5925pentium_gold_4415ycore_i7-13705hpentium_gold_4417uxeon_w-3375core_i3-7100txeon_e-2434xeon_e-2286mcore_i3-7300tcore_i5-14600kcore_i3-14100tpentium_silver_n6005n250core_ultra_7_165ulcore_i9-9900celeron_g3930tcore_i5-7500xeon_w-1290pcore_i5-13600tcore_i5-13400fcore_i7-1260uceleron_g4920core_i9-12900tcore_i9-12900kfcore_i5-1038ng7core_i5-13400tcore_i7-14701exeon_w-1250core_i5-1240uceleron_g5900core_ultra_3_105ulxeon_w-1250pcore_i5-8400hcore_i9-12900hcore_i7-11370hcore_i9-8950hkceleron_g6900core_i5-7300hqcore_i7-9700core_i5-1130g7xeon_silver_4309ycore_i3-n300core_i7-1250uxeon_e-2286gcore_i9-14900hxcore_i5-10310un100celeron_g5905core_5-210hcore_i9-9980hkcore_i5-1245ucore_i7-11600hceleron_g4930core_i9-14900kfceleron_n4505xeon_e-2436core_i3-9100fcore_i7-13700fxeon_e-2124core_i5-14600core_i5-1230uxeon_w-1290celeron_7305lxeon_platinum_8358pcore_i5-14400core_i7-10850hcore_i5-12600pentium_8500core_5-220hpentium_6805core_i5-13490fcore_i7-7y75core_i3-7100hcore_i3-10305core_i3-10325core_i7-14701tecore_i7-12850hxxeon_gold_6338xeon_e-2174gcore_i7-11800hu300xeon_w-1270core_i5-13500hcore_i9-13900exeon_e-2186mceleron_n5100core_i5-13420hcore_i3-8100tcore_i7-10750hcore_i7-10875hpentium_gold_7505core_i9-11950hpentium_gold_g6505tpentium_gold_g6505core_i5-12600hlcore_i7-12800hxcore_ultra_5_115ucore_i7-7920hqcore_i7-14700hxcore_i7-13790fcore_i5-8400bcore_i5-1250pcore_i9-9900kcore_i5-10200hcore_i7-1265ucore_i9-10885hcore_ultra_5_134ucore_i5-12500txeon_e-2136core_i7-11390hxeon_e3-1230core_i9-14900kscore_i3-7101ecore_i5-9400xeon_gold_5318spentium_gold_g7400txeon_e3-1505mceleron_g3930core_i5-11500bcore_i5-12500hxeon_e3-1275core_i5-12600hxeon_gold_5318ncore_i5-12600kfcore_9-270h300core_i9-12900kscore_i7-8706gcore_i3-1220pcore_i7-13650hxceleron_3865uceleron_g4900core_i7-9700fcore_i3-9100tcore_i3-9300core_i9-10980hkpentium_gold_g6405core_i7-11850hcore_i7-10610ucore_i7-1360pxeon_gold_6314ucore_i9-9880hcore_i9-14900kxeon_e3-1240core_i7-1185grecore_i5-9400hxeon_e-2126gpentium_gold_4410yxeon_e-2176gxeon_gold_5320tcore_i7-1365ucore_i5-9300hfxeon_e-2236core_i7-9700kfxeon_e-2468xeon_e3-1535mcore_i5-8260ucore_i5-1140g7core_i7-1270p300txeon_w-3335xeon_11955mcore_5-120ucore_7-240hcore_ultra_5_125hxeon_gold_5315ycore_i7-13700core_i5-14450hxcore_i5-12500core_i7-1260pcore_i9-13900fcore_i7-8705gcore_i9-12900n150xeon_e-2486pentium_gold_g5600tceleron_6305ecore_i9-13905hcore_i5-10400hcore_i3-14100fxeon_platinum_8368core_i3-1115g4core_i7-7820hkcore_i5-8600core_ultra_7_164ucore_i3-1305ucore_i5-13600kcore_i9-13900kcore_i3-10110ucore_i9-9900tcore_i3-8300core_i3-11100bcore_i7-1060ng7core_i3-8100bcore_i5-7600core_i9-13900kfcore_i7-9700kcore_i9-14900fcore_i5-8500bn50core_i7-11375hpentium_gold_g4600core_i7-8700tcore_i7-8750hxeon_gold_5317core_i5-1145g7exeon_gold_6330ncore_i9-13980hxcore_i3-13100tcore_i7-1370pcore_i5-13450hxcore_i7-11700bcore_i5-7640xpentium_gold_g4620core_i7-14700tcore_i9-14901tecore_i7-7567ucore_i5-12600hxcore_i5-7440hqcore_i7-1060g7core_i5-7287uceleron_g5905tcore_i5-8350uxeon_platinum_8352ycore_i5-8259uxeon_e-2478xeon_e-2234core_i7-12700fcore_7-250ucore_i7-10510ucore_ultra_5_135ulcore_ultra_7_155ucore_i3-7320core_i7-8500ycore_ultra_7_155hlcore_i7-12700hlxeon_e3-1220core_i5-13600hxcore_i5-1235ulcore_i5-1035g4core_i3-9350kfcore_i9-13900tcore_i3-10105fcore_i7-14700core_i5-7260ucore_i7-8850hxeon_w-3323core_i5-8269ucore_i7-14700kcore_i3-1115grecore_i7-12700kcore_i7-1065g7core_i5-7200ucore_i5-1030ng7core_i7-13700hxeon_gold_6342core_i3-12300tcore_i9-13900hxxeon_w-1290tcore_i5-14600txeon_e-2146gxeon_e-2134core_i7-12700SecureCore™ for Intel Comet LakeSecureCore™ for Intel Alder LakeSecureCore™ for Intel Meteor LakeSecureCore™ for Intel Tiger LakeSecureCore™ for Intel Jasper LakeSecureCore™ for Intel Kaby LakeSecureCore™ for Intel Coffee LakeSecureCore™ for Intel Raptor LakeSecureCore™ for Intel Ice Lakesecurecore_technology
CWE ID-CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
  • Previous
  • 1
  • 2
  • 3
  • 4
  • ...
  • 17
  • 18
  • Next
Details not found