CVE-2023-24587 | ByteOS Network

Vulnerability Details :

CVE-2023-24587

Assigner-intel

Assigner Org ID-6dda929c-bb53-4a77-a76d-48e79601a1ce

Published At-14 Nov, 2023 | 19:04

Updated At-11 Oct, 2024 | 18:07

Insufficient control flow management in firmware for some Intel(R) Optane(TM) SSD products may allow a privileged user to potentially enable denial of service via local access.

EPSS History

Score

Latest Score

-

N/A

Percentile

Latest Percentile

-

N/A

▼Common Vulnerabilities and Exposures (CVE)

Assigner:intel

Assigner Org ID:6dda929c-bb53-4a77-a76d-48e79601a1ce

Published At:14 Nov, 2023 | 19:04

Updated At:11 Oct, 2024 | 18:07

▼CVE Numbering Authority (CNA)

Insufficient control flow management in firmware for some Intel(R) Optane(TM) SSD products may allow a privileged user to potentially enable denial of service via local access.

Affected Products

Vendor

Product

Intel(R) Optane(TM) SSD products

Default Status

unaffected

Versions

Affected

See references

Problem Types

Type	CWE ID	Description
N/A	N/A	denial of service
CWE	CWE-691	Insufficient control flow management

Type: N/A

CWE ID: N/A

Description: denial of service

Type: CWE

CWE ID: CWE-691

Description: Insufficient control flow management

Metrics

Version	Base score	Base severity	Vector
3.1	6.9	MEDIUM	CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:N/I:H/A:H

Version: 3.1

Base score: 6.9

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:N/I:H/A:H

References

Hyperlink	Resource
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00758.html	N/A

Hyperlink: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00758.html

Resource: N/A

▼Authorized Data Publishers (ADP)

1. CVE Program Container

References

Hyperlink	Resource
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00758.html	x_transferred

Hyperlink: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00758.html

Resource:

x_transferred

2. CISA ADP Vulnrichment

Metrics Other Info

▼National Vulnerability Database (NVD)

Source:secure@intel.com

Published At:14 Nov, 2023 | 19:15

Updated At:28 Nov, 2023 | 17:01

Insufficient control flow management in firmware for some Intel(R) Optane(TM) SSD products may allow a privileged user to potentially enable denial of service via local access.

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	4.4	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
Secondary	3.1	6.9	MEDIUM	CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:N/I:H/A:H

Type: Primary

Version: 3.1

Base score: 4.4

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

Type: Secondary

Version: 3.1

Base score: 6.9

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:N/I:H/A:H

CPE Matches

Intel Corporation

>>optane_memory_h20_with_solid_state_storage>>-

cpe:2.3:h:intel:optane_memory_h20_with_solid_state_storage:-:*:*:*:*:*:*:*

Intel Corporation

>>optane_memory_h20_with_solid_state_storage_firmware>>Versions before u4110553-g004(exclusive)

cpe:2.3:o:intel:optane_memory_h20_with_solid_state_storage_firmware:*:*:*:*:*:*:*:*

Intel Corporation

>>optane_ssd_900p>>-

cpe:2.3:h:intel:optane_ssd_900p:-:*:*:*:*:*:*:*

Intel Corporation

>>optane_ssd_900p_firmware>>Versions before e2010650(exclusive)

cpe:2.3:o:intel:optane_ssd_900p_firmware:*:*:*:*:*:*:*:*

Intel Corporation

>>optane_ssd_dc_p4800x>>-

cpe:2.3:h:intel:optane_ssd_dc_p4800x:-:*:*:*:*:*:*:*

Intel Corporation

>>optane_ssd_dc_p4800x_firmware>>Versions before e2010650(exclusive)

cpe:2.3:o:intel:optane_ssd_dc_p4800x_firmware:*:*:*:*:*:*:*:*

Intel Corporation

>>optane_ssd_dc_p4801x>>-

cpe:2.3:h:intel:optane_ssd_dc_p4801x:-:*:*:*:*:*:*:*

Intel Corporation

>>optane_ssd_dc_p4801x_firmware>>Versions before e2010650(exclusive)

cpe:2.3:o:intel:optane_ssd_dc_p4801x_firmware:*:*:*:*:*:*:*:*

Intel Corporation

>>optane_ssd_905p>>-

cpe:2.3:h:intel:optane_ssd_905p:-:*:*:*:*:*:*:*

Intel Corporation

>>optane_ssd_905p_firmware>>Versions before e2010650(exclusive)

cpe:2.3:o:intel:optane_ssd_905p_firmware:*:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
NVD-CWE-noinfo	Primary	nvd@nist.gov
CWE-691	Secondary	secure@intel.com

CWE ID: NVD-CWE-noinfo

Type: Primary

Source: nvd@nist.gov

CWE ID: CWE-691

Type: Secondary

Source: secure@intel.com

References

Hyperlink	Source	Resource
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00758.html	secure@intel.com	Vendor Advisory

Hyperlink: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00758.html

Source: secure@intel.com

Resource:

Vendor Advisory

Similar CVEs

65Records found

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-1.9||LOW

EPSS-0.04% / 11.09%

||

7 Day CHG~0.00%

Published-14 Nov, 2023 | 19:04

Updated-03 Aug, 2024 | 12:49

Improper access control for some Intel Unison software may allow a privileged user to potentially enable denial of service via local access.

Vendor-n/a Intel Corporation

Product-unison Intel Unison software

CWE ID-CWE-284

Improper Access Control

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-7.2||HIGH

EPSS-0.03% / 7.23%

||

7 Day CHG~0.00%

Published-11 Aug, 2023 | 02:36

Updated-13 Feb, 2025 | 16:32

Improper Input validation in firmware for some Intel(R) Converged Security and Management Engine before versions 15.0.45, and 16.1.27 may allow a privileged user to potentially enable denial of service via local access.

Vendor-n/a Intel Corporation

Product-celeron_n3010 atom_x6212re celeron_j1750 atom_x6211e celeron_n2840 atom_x6214re pentium_j6426 celeron_n2808 pentium_j2850 celeron_j4025 celeron_n2910 pentium_j4205 celeron_n2930 h570 pentium_n3510 celeron_j6413 c256 celeron_n3350 hm570 celeron_n3050 celeron_j1850 celeron_n6210 pentium_n3700 w680 celeron_n2920 atom_x6413e celeron_n3000 celeron_n2807 pentium_n3520 atom_x6425e celeron_n2815 pentium_j3710 pentium_j2900 q570 qm580 celeron_j3060 h510 c252 q670e celeron_n3160 celeron_n6211 converged_security_management_engine_firmware celeron_n2940 h670 rm590e celeron_n5105 pentium_n3530 celeron_j3455 pentium_n3540 z690 celeron_n4000 celeron_j3455e celeron_n2830 pentium_n4200e celeron_n4500 atom_x6425re celeron_n2820 wm690 pentium_n6415 atom_x6427fe celeron_n3450 qm580e celeron_n5100 h610 celeron_n4020 celeron_j4105 pentium_n3710 celeron_j3160 celeron_j6412 celeron_n3150 b560 celeron_n2810 celeron_n4100 celeron_j1800 atom_x6200fe celeron_n2805 atom_x6416re celeron_n2806 celeron_j1900 celeron_n3060 z590 r680e q670 celeron_n4505 h610e wm590 celeron_j4005 b660 hm670 celeron_j3355 pentium_n4200 celeron_n4120 celeron_n3350e w580 celeron_j3355e atom_x6414re celeron_j4125 hm570e Intel(R) Converged Security and Management Engine

CWE ID-CWE-20

Improper Input Validation

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-6||MEDIUM

EPSS-0.08% / 22.74%

||

7 Day CHG~0.00%

Published-16 Feb, 2023 | 20:00

Updated-27 Jan, 2025 | 18:21

Improper condition check in some Intel(R) SPS firmware before version SPS_E3_06.00.03.300.0 may allow a privileged user to potentially enable denial of service via local access.

Vendor-n/a Intel Corporation

Product-server_platform_services Intel(R) SPS firmware

CWE ID-CWE-754

Improper Check for Unusual or Exceptional Conditions

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-4.4||MEDIUM

EPSS-0.07% / 22.49%

||

7 Day CHG~0.00%

Published-18 Aug, 2022 | 19:34

Updated-05 May, 2025 | 17:17

Improper access control in the firmware for some Intel(R) 700 and 722 Series Ethernet Controllers and Adapters before versions 8.5 and 1.5.5 may allow a privileged user to potentially enable denial of service via local access.

Vendor-n/a Intel Corporation

Product-ethernet_network_adapter_x722da4fh ethernet_controller_v710_firmware ethernet_network_adapter_x722da2_firmware ethernet_controller_x710 ethernet_network_adapter_x722da2 ethernet_controller_x710_firmware ethernet_controller_xxv710_firmware ethernet_controller_v710 ethernet_network_adapter_x722da4fh_firmware ethernet_network_adapter_x722da4g1p5_firmware ethernet_network_adapter_x722da4g1p5 ethernet_controller_xl710_firmware ethernet_controller_xl710 ethernet_controller_xxv710 Intel(R) 700 and 722 Series Ethernet Controllers and Adapters

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-4.4||MEDIUM

EPSS-0.07% / 20.41%

||

7 Day CHG~0.00%

Published-16 May, 2024 | 20:47

Updated-15 Apr, 2026 | 00:35

Improper input validation in firmware for some Intel(R) FPGA products before version 2.9.1 may allow denial of service.

Vendor-n/a Intel Corporation

Product-Intel(R) FPGA products agilex_7_fpga_f-series_023_firmware agilex_7_fpga_f-series_006_firmware agilex_7_fpga_f-series_008_firmware agilex_7_fpga_f-series_019_firmware agilex_7_fpga_i-series_023_firmware agilex_7_fpga_i-series_022_firmware agilex_7_fpga_i-series_019_firmware agilex_7_fpga_i-series_035_firmware agilex_7_fpga_i-series_040_firmware agilex_7_fpga_f-series_022_firmware agilex_7_fpga_i-series_041_firmware agilex_7_fpga_f-series_012_firmware agilex_7_fpga_f-series_027_firmware agilex_7_fpga_i-series_027_firmware agilex_7_fpga_f-series_014_firmware agilex_7_fpga_m-series_039_firmware

CWE ID-CWE-20

Improper Input Validation

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-4.4||MEDIUM

EPSS-0.18% / 39.70%

||

7 Day CHG~0.00%

Published-09 Jun, 2021 | 18:50

Updated-04 Aug, 2024 | 11:56

Out of bounds write in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable denial of service via local access.

Vendor-n/a NetApp, Inc.Intel Corporation Siemens AG

Product-xeon_platinum_8153 xeon_e3-1230_v5 xeon_e3-1558l_v5 xeon_w-3245m xeon_e5-4610_v4 xeon_e7-8894_v4 xeon_gold_6146 xeon_e5-2660_v3 core_i7-1068ng7 e-series_bios core_i7-1160g7 xeon_e5-1680_v3 xeon_d-1527 xeon_e5-2697_v4 xeon_gold_5115 xeon_platinum_8170 xeon_gold_6136 xeon_w-2125 core_i9-10940x xeon_e5-4610_v3 xeon_e5-4650_v4 xeon_e7-8880_v4 xeon_gold_6138 xeon_e5-1660_v4 simatic_ipc547g_firmware xeon_e7-8891_v4 xeon_platinum_8164 xeon_e-2226g xeon_e3-1280_v5 xeon_gold_6234 xeon_e5-2699r_v4 xeon_w-2255 xeon_d-1518 core_i7-11700 core_i7-6822eq core_i7-6700te xeon_e3-1501l_v6 xeon_gold_6262v core_i7-11370h xeon_e5-2683_v4 xeon_platinum_8168 core_i7-7600u xeon_e5-2608l_v4 xeon_e5-2640_v3 xeon_e-2224 xeon_gold_5218 xeon_e5-1620_v4 core_i7-11850h xeon_d-1567 xeon_e5-2630l_v3 xeon_e3-1505l_v6 xeon_e-2278ge xeon_e5-1607_v3 xeon_e5-4640_v4 xeon_gold_5117 xeon_gold_5122 xeon_w-2245 xeon_d-1587 xeon_e5-2699_v3 xeon_d-2191 xeon_gold_6248r core_i7-7820hk xeon_e5-2689_v4 xeon_e7-8870_v4 xeon_w-1290t core_i5-l16g7 xeon_gold_6240 core_i7-6970hq xeon_gold_6262 xeon_platinum_8156 xeon_e-2136 core_i7-10510u core_i7-1060g7 xeon_w-2265 xeon_e5-2667_v4 xeon_platinum_8274 xeon_w-10855m xeon_gold_6126f xeon_d-1539 xeon_e3-1535m_v5 xeon_e5-1680_v4 core_i7-7700 xeon_gold_5220r xeon_d-2146nt xeon_e3-1268l_v5 xeon_platinum_8160f xeon_e5-2658_v3 xeon_e5-4660_v4 core_i7-8750h xeon_e3-1501m_v6 xeon_gold_6250l xeon_gold_6210u xeon_d-2187nt xeon_platinum_8160m core_i7-10700f xeon_d-2166nt xeon_e3-1270_v6 xeon_e-2286m xeon_e3-1505m_v5 core_i7-10750h xeon_silver_4216 xeon_gold_6230 xeon_platinum_8253 xeon_e5-2630l_v4 xeon_w-2195 xeon_e5-4667_v4 xeon_e5-2628l_v4 xeon_e-2276g xeon_e5-2685_v3 xeon_w-1390 xeon_e-2186g xeon_d-2183it xeon_silver_4116t xeon_e-2174g xeon_e5-2630_v4 xeon_d-1622 core_i7-8809g xeon_e5-4667_v3 xeon_platinum_8160h core_i7-8700b xeon_e5-2643_v3 xeon_d-2145nt xeon_d-1581 xeon_e5-1650_v4 xeon_gold_6238 xeon_e5-2630_v3 xeon_w-1250p xeon_silver_4208 xeon_e3-1585_v5 xeon_w-2104 xeon_e5-2623_v4 core_i7-6560u xeon_w-2123 xeon_gold_5220s xeon_w-3275m xeon_platinum_9282 xeon_e5-2683_v3 core_i7-10700e xeon_silver_4108 xeon_gold_6130t xeon_silver_4210 core_i7-11700kf cloud_backup core_i7-10870h xeon_e7-8867_v4 xeon_bronze_3106 xeon_w-2102 xeon_e-2274g core_i7-10700k xeon_e-2278gel xeon_d-1540 xeon_e3-1280_v6 hci_compute_node_bios xeon_e5-2698_v4 xeon_platinum_8160t core_i7-11700k xeon_d-1528 xeon_silver_4214r core_i7-6500u xeon_e5-2697_v3 xeon_e5-4627_v4 xeon_e-2124 core_i7-10710u xeon_d-2141i core_i7-10700kf xeon_d-1541 xeon_e5-2660_v4 xeon_e7-4830_v4 xeon_w-1250te xeon_platinum_8268 xeon_platinum_8176m xeon_e-2276me core_i7-8565u xeon_gold_5222 xeon_e5-2687w_v4 xeon_e5-1603_v3 core_i7-7560u xeon_gold_5117f xeon_e3-1535m_v6 xeon_d-1548 xeon_d-1649n xeon_d-1529 xeon_platinum_9221 xeon_e3-1220_v5 xeon_platinum_8160 xeon_e5-2428l_v3 core_i7-6700hq xeon_e7-4809_v4 xeon_e5-4648_v3 xeon_gold_6122 xeon_silver_4123 xeon_gold_6148f xeon_gold_6132 bios xeon_e5-2618l_v4 xeon_w-2155 xeon_gold_6137 core_i7-7500u core_i7-8550u xeon_e-2224g xeon_w-2135 xeon_d-1623n xeon_w-2145 xeon_e-2226ge core_i7-6650u xeon_gold_6142 core_i7-10610u core_i7-8500y core_i7-7567u xeon_silver_4214 xeon_w-1390p xeon_d-2161i xeon_silver_4210r xeon_d-1632 core_i7-7820hq xeon_e3-1585l_v5 xeon_e5-2620_v3 xeon_e5-2670_v3 xeon_gold_5218b xeon_e5-2648l_v3 xeon_gold_6142m xeon_e5-2609_v3 xeon_e3-1275_v5 xeon_e5-2438l_v3 xeon_e3-1240_v5 xeon_e5-2650_v3 xeon_gold_6222 core_i7-6567u xeon_e5-2648l_v4 xeon_e5-4620_v4 xeon_e7-8855_v4 xeon_d-1513n xeon_d-1537 xeon_e3-1515m_v5 xeon_w-1290te xeon_e3-1225_v5 xeon_gold_6209u xeon_silver_4112 xeon_d-1559 xeon_w-3223 xeon_gold_5120t xeon_w-3175x xeon_gold_6134 xeon_gold_6162 xeon_e5-2628l_v3 xeon_e-2254me xeon_w-3235 core_i7-7y75 xeon_e5-4669_v3 xeon_w-2225 xeon_gold_6130h xeon_w-2133 core_i7-6700 xeon_d-1557 xeon_e5-4627_v3 xeon_e7-4850_v4 xeon_gold_6148 xeon_e3-1505m_v6 xeon_gold_6144 xeon_gold_6140m xeon_gold_5220t xeon_platinum_8276l xeon_w-2223 xeon_e5-2679_v4 core_i7-7700k core_i7-8705g xeon_e-2276m core_i7-8665u xeon_gold_6129 xeon_platinum_9222 xeon_gold_6230t core_i7-7660u core_i7-6600u core_i7-8706g xeon_gold_6126t core_i7-11700f xeon_platinum_8165 xeon_w-3225 xeon_gold_6135 xeon_e3-1565l_v5 xeon_e-2236 xeon_w-1370 core_i7-10850h xeon_e5-1603_v4 core_i7-1185gre xeon_e5-2408l_v3 core_i7-11375h xeon_e3-1240_v6 xeon_d-1573n core_i7-8700 core_i7-7700t core_i7-10700t xeon_e5-1630_v4 xeon_e5-4660_v3 xeon_gold_6246 core_i7-8086k xeon_w-2295 core_i7-6770hq core_i7-8700k xeon_e5-2603_v3 fas_bios xeon_e-2134 xeon_e5-2667_v3 xeon_gold_5215 xeon_e5-4655_v3 xeon_d-2143it xeon_d-2163it xeon_e5-2699_v4 xeon_e3-1285_v6 xeon_w-1390t xeon_w-1270 xeon_e3-1225_v6 xeon_platinum_8284 xeon_silver_4109t core_i7-10510y xeon_e3-1240l_v5 xeon_e5-2690_v3 xeon_e5-4655_v4 xeon_gold_5215l xeon_silver_4215r xeon_e5-2658_v4 xeon_gold_6138f core_i7-11800h xeon_e5-1630_v3 xeon_silver_4210t xeon_e5-2680_v3 xeon_gold_6212u xeon_e3-1205_v6 core_i7-7700hq xeon_w-1270te xeon_silver_4114 xeon_e5-2698_v3 core_i7-6498du xeon_e3-1245_v5 core_i7-6870hq xeon_gold_6258r xeon_bronze_3104 xeon_d-1571 xeon_gold_6240l xeon_gold_6238l xeon_e5-2637_v3 xeon_e5-1620_v3 xeon_gold_6250 xeon_d-2173it core_i7-11700t xeon_w-11855m xeon_d-2123it xeon_gold_5219y xeon_e-2246g xeon_w-3265m xeon_d-1627 xeon_e5-2637_v4 xeon_e5-2687w_v3 xeon_d-1602 xeon_e7-8890_v4 xeon_e5-2680_v4 xeon_gold_5218t xeon_e5-2697a_v4 xeon_gold_6150 xeon_gold_6140 xeon_e5-2690_v4 xeon_e5-2609_v4 core_i7-7920hq xeon_platinum_8174 xeon_d-1612 xeon_e-2254ml xeon_e3-1545m_v5 core_i7-10700 core_i9-10920x xeon_e3-1578l_v5 core_i7-6660u xeon_e3-1270_v5 xeon_gold_6126 xeon_e3-1260l_v5 xeon_w-1250e xeon_e5-2643_v4 xeon_d-1563n xeon_e5-2699a_v4 core_i7-10875h xeon_e-2276ml xeon_e-2244g xeon_e-2176g xeon_gold_6142f core_i3-l13g4 core_i7-8709g xeon_e5-4650_v3 xeon_e5-2650l_v4 xeon_gold_6130 xeon_e-2104g xeon_platinum_8260 core_i7-8557u simatic_ipc547g core_i7-8700t xeon_platinum_9242 core_i7-6820hq xeon_platinum_8280l xeon_silver_4110 core_i7-8650u xeon_bronze_3204 xeon_gold_5119t core_i7-1180g7 core_i7-6700t core_i7-6920hq xeon_gold_6246r xeon_e3-1230_v6 xeon_gold_5217 xeon_gold_6230n xeon_gold_6143 xeon_w-3265 xeon_gold_5218n xeon_e5-2620_v4 xeon_gold_6138t xeon_w-3245 xeon_gold_5120 core_i7-1185g7 core_i7-1195g7 xeon_e-2124g core_i7-1165g7 xeon_e5-2618l_v3 xeon_d-1523n xeon_e5-2608l_v3 core_i7-10700te xeon_e-2288g xeon_d-1653n xeon_gold_5220 xeon_e-2234 xeon_d-1577 xeon_d-1637 xeon_gold_6254 xeon_gold_6269y xeon_silver_4114t core_i7-6700k xeon_gold_6240y xeon_e5-4669_v4 aff_bios xeon_gold_6154 xeon_w-1250 xeon_e5-2640_v4 hci_storage_node_bios xeon_gold_6208u xeon_e7-8893_v4 xeon_w-1290e xeon_e5-1650_v3 xeon_w-3275 core_i7-11700b xeon_d-1553n xeon_e-2126g xeon_silver_4209t xeon_e5-4620_v3 xeon_silver_4116 xeon_w-1270e xeon_d-1633n core_i7-7820eq xeon_gold_6252n xeon_e7-4820_v4 xeon_gold_6244 xeon_e5-2695_v3 xeon_gold_6248 xeon_e3-1220_v6 xeon_w-1370p xeon_platinum_8280 xeon_e-2186m xeon_e5-1660_v3 xeon_d-1520 xeon_e-2176m core_i7-6785r core_i7-6820hk xeon_platinum_8256 xeon_gold_6152 core_i7-1060ng7 xeon_e5-2623_v3 xeon_platinum_8158 xeon_e5-2658a_v3 xeon_e5-2418l_v3 xeon_w-1290p xeon_e-2286g xeon_gold_6222v xeon_platinum_8176 xeon_gold_6242 xeon_e3-1275_v6 xeon_d-1531 core_i7-10810u xeon_e3-1575m_v5 xeon_e-2278g xeon_e5-2650_v4 xeon_platinum_8260y xeon_e3-1505l_v5 xeon_platinum_8270 xeon_d-1533n xeon_gold_6242r xeon_e3-1245_v6 xeon_gold_6128 xeon_silver_4215 xeon_d-2142it xeon_platinum_8180m core_i7-8850h xeon_gold_5118 xeon_w-2235 xeon_e5-2695_v4 xeon_gold_6130f xeon_w-11955m core_i7-6820eq xeon_gold_6134m core_i9-10900x xeon_platinum_8276 xeon_gold_6238t xeon_e3-1235l_v5 xeon_silver_4214y xeon_e5-2603_v4 core_i9-10980xe xeon_e5-4628l_v4 xeon_e7-8860_v4 xeon_w-1350 xeon_silver_4106h xeon_gold_6138p core_i7-8665ue xeon_w-1290 xeon_platinum_8176f xeon_d-1524n solidfire_bios xeon_gold_6240r xeon_w-10885m xeon_w-2275 xeon_d-1543n xeon_gold_6226 xeon_e-2144g xeon_gold_6256 xeon_d-1521 xeon_w-1350p xeon_gold_6230r core_i7-8569u xeon_gold_6252 xeon_e5-4640_v3 core_i7-1185g7e xeon_gold_5218r xeon_gold_6226r xeon_bronze_3206r xeon_e5-1607_v4 core_i7-1065g7 xeon_platinum_8260l xeon_e5-1428l_v3 core_i7-8559u xeon_platinum_8170m xeon_e-2146g xeon_platinum_8180 xeon_d-2177nt xeon_e5-2650l_v3 xeon_w-2175 Intel(R) Processors

CWE ID-CWE-787

Out-of-bounds Write

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-4.4||MEDIUM

EPSS-0.06% / 17.14%

||

7 Day CHG~0.00%

Published-17 Feb, 2021 | 13:58

Updated-04 Aug, 2024 | 06:02

Improper access control in firmware for the Intel(R) Ethernet I210 Controller series of network adapters before version 3.30 may allow a privileged user to potentially enable denial of service via local access.

Vendor-n/a Intel Corporation

Product-ethernet_controller_i210-at ethernet_controller_i210-cs ethernet_controller_i210-cl ethernet_controller_i210-is ethernet_controller_i210-it ethernet_controller_i210_firmware Intel(R) Ethernet I210 Controller series of network adapters

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-6||MEDIUM

EPSS-0.06% / 17.14%

||

7 Day CHG~0.00%

Published-16 Feb, 2023 | 20:00

Updated-27 Jan, 2025 | 18:13

Out-of-bounds write in firmware for some Intel(R) Ethernet Network Controllers and Adapters E810 Series before version 1.7.0.8 and some Intel(R) Ethernet 700 Series Controllers and Adapters before version 9.101 may allow a privileged user to potentially enable denial of service via local access.

Vendor-n/a Intel Corporation

Product-ethernet_network_controller_e810-cam1 ethernet_network_controller_e810-cam1_firmware ethernet_controller_xl710-am2_firmware ethernet_controller_x710-am2 ethernet_controller_x710-bm2_firmware ethernet_converged_network_adapter_x710-da2_firmware ethernet_controller_x710-am2_firmware ethernet_controller_xxv710-am1 ethernet_converged_network_adapter_xl710-da2_firmware ethernet_controller_xl710-am1 ethernet_controller_xl710-bm2 ethernet_converged_network_adapter_x710-da2 ethernet_converged_network_adapter_x710-da4 ethernet_controller_xxv710-am2_firmware ethernet_controller_xl710-am1_firmware ethernet_controller_x710-bm2 ethernet_converged_network_adapter_xl710-da1_firmware ethernet_controller_xl710-bm1 ethernet_network_controller_e810-cam2_firmware ethernet_controller_xl710-bm1_firmware ethernet_network_controller_e810-xxvam2 ethernet_controller_xxv710-am2 ethernet_network_controller_e810-cam2 ethernet_converged_network_adapter_x710-da4_firmware ethernet_controller_xxv710-am1_firmware ethernet_network_controller_e810-xxvam2_firmware ethernet_converged_network_adapter_xl710-da2 ethernet_converged_network_adapter_xl710-da1 ethernet_controller_xl710-am2 ethernet_controller_xl710-bm2_firmware Intel(R) Ethernet Network Controllers and Adapters E810 Series and some Intel(R) Ethernet 700 Series Controllers and Adapters

CWE ID-CWE-787

Out-of-bounds Write

Matching Score-8

Assigner-Intel Corporation

Matching Score-8

Assigner-Intel Corporation

CVSS Score-6||MEDIUM

EPSS-0.02% / 4.69%

||

7 Day CHG~0.00%

Published-10 Feb, 2026 | 16:25

Updated-17 Mar, 2026 | 15:43

Uncaught exception in the firmware for some 100GbE Intel(R) Ethernet Controller E810 before version cvl fw 1.7.8.x within Ring 0: Bare Metal OS may allow a denial of service. System software adversary with a privileged user combined with a low complexity attack may enable denial of service. This result may potentially occur via local access when attack requirements are not present without special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (none), integrity (none) and availability (high) of the vulnerable system, resulting in subsequent system confidentiality (none), integrity (none) and availability (none) impacts.

Vendor-n/a Intel Corporation

Product-ethernet_network_adapter_e810-xxvda2 ethernet_network_adapter_e810-xxvda4 ethernet_network_adapter_e810-xxvda4_for_ocp_3.0 ethernet_network_adapter_e810-xxvda4t ethernet_network_adapter_e810-xxvda2_for_ocp_3.0 ethernet_network_adapter_e810-2cqda2 ethernet_controller ethernet_network_adapter_e810-cqda2 ethernet_network_adapter_e810-cqda1 ethernet_network_adapter_e810-cqda2t ethernet_network_adapter_e810-cqda1_for_ocp_3.0 ethernet_network_adapter_e810-cqda2_for_ocp_3.0 100GbE Intel(R) Ethernet Controller E810

CWE ID-CWE-248

Uncaught Exception

Matching Score-6

Assigner-Intel Corporation

Matching Score-6

Assigner-Intel Corporation

CVSS Score-5.5||MEDIUM

EPSS-0.07% / 20.41%

||

7 Day CHG+0.01%

Published-11 Aug, 2023 | 02:37

Updated-02 Oct, 2024 | 13:24

Insufficient control flow management in the Hyperscan Library maintained by Intel(R) before version 5.4.1 may allow an authenticated user to potentially enable denial of service via local access.

Vendor-n/a Intel Corporation

Product-hyperscan_library Hyperscan Library maintained by Intel(R)

CWE ID-CWE-691

Insufficient Control Flow Management

CWE ID-CWE-670

Always-Incorrect Control Flow Implementation

Matching Score-6

Assigner-Intel Corporation

Matching Score-6

Assigner-Intel Corporation

CVSS Score-3.3||LOW

EPSS-0.10% / 26.23%

||

7 Day CHG~0.00%

Published-14 Nov, 2023 | 19:04

Updated-30 Aug, 2024 | 16:07

Insufficient control flow management for some Intel Unison software may allow an authenticated user to potentially enable information disclosure via local access.

Vendor-n/a Intel Corporation Apple Inc.Google LLC Microsoft Corporation

Product-android windows unison_software iphone_os Intel Unison software

CWE ID-CWE-691

Insufficient Control Flow Management

Matching Score-6

Assigner-Intel Corporation

Matching Score-6

Assigner-Intel Corporation

CVSS Score-4.7||MEDIUM

EPSS-0.20% / 42.30%

||

7 Day CHG+0.06%

Published-10 May, 2023 | 13:16

Updated-27 Jan, 2025 | 18:07

Insufficient control flow management in the Intel(R) IPP Cryptography software before version 2021.6 may allow an unauthenticated user to potentially enable information disclosure via local access.

Vendor-n/a Intel Corporation

Product-integrated_performance_primitives_cryptography Intel(R) IPP Cryptography software

CWE ID-CWE-691

Insufficient Control Flow Management

Matching Score-6

Assigner-Intel Corporation

Matching Score-6

Assigner-Intel Corporation

CVSS Score-4.7||MEDIUM

EPSS-0.10% / 27.28%

||

7 Day CHG~0.00%

Published-10 May, 2023 | 13:16

Updated-27 Jan, 2025 | 18:07

Insufficient control flow management for the Intel(R) IPP Cryptography software before version 2021.6 may allow an authenticated user to potentially enable information disclosure via local access.

Vendor-n/a Intel Corporation

Product-integrated_performance_primitives_cryptography Intel(R) IPP Cryptography software

CWE ID-CWE-691

Insufficient Control Flow Management

Matching Score-6

Assigner-Intel Corporation

Matching Score-6

Assigner-Intel Corporation

CVSS Score-7.2||HIGH

EPSS-0.04% / 11.89%

||

7 Day CHG~0.00%

Published-16 May, 2024 | 20:47

Updated-09 Jan, 2026 | 19:50

Insufficient control flow management in some Intel(R) Ethernet Adapters and Intel(R) Ethernet Controller I225 Manageability firmware may allow a privileged user to potentially enable escalation of privilege via local access.

Vendor-n/a Intel Corporation

Product-ethernet_controller_i225-lm_firmware ethernet_controller_i225-v_firmware ethernet_controller_i225-it ethernet_adapter_complete_driver ethernet_controller_i225-lm ethernet_controller_i225-it_firmware ethernet_controller_i225-v Intel(R) Ethernet Adapters and Intel(R) Ethernet Controller I225 Manageability firmware

CWE ID-CWE-691

Insufficient Control Flow Management

Matching Score-6

Assigner-Intel Corporation

Matching Score-6

Assigner-Intel Corporation

CVSS Score-6.9||MEDIUM

EPSS-0.08% / 24.09%

||

7 Day CHG~0.00%

Published-13 Nov, 2024 | 21:08

Updated-15 Nov, 2024 | 14:00

Insufficient control flow management in some Intel(R) VROC software before version 8.6.0.3001 may allow an authenticated user to potentially enable escalation of privilege via local access.

Vendor-n/a Intel Corporation

Product-Intel(R) VROC software vroc_software

CWE ID-CWE-691

Insufficient Control Flow Management