Skip to main content
CVE-2023-47629 HIGH This Week

DataHub is an open-source metadata platform. Rated high severity (CVSS 8.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Datahub
NVD GitHub
CVSS 3.1
8.0
EPSS
0.5%
CVE-2023-31403 HIGH This Week

SAP Business One installation - version 10.0, does not perform proper authentication and authorization checks for SMB shared folder. Rated high severity (CVSS 8.0), this vulnerability is low attack complexity. No vendor patch available.

SAP Authentication Bypass Business One
NVD
CVSS 3.1
8.0
EPSS
0.4%
CVE-2023-39537 HIGH This Week

AMI AptioV contains a vulnerability in BIOS where an Attacker may use an improper input validation via the local network. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Aptio V
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-39536 HIGH This Week

AMI AptioV contains a vulnerability in BIOS where an Attacker may use an improper input validation via the local network. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Aptio V
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-39535 HIGH This Week

AMI AptioV contains a vulnerability in BIOS where an Attacker may use an improper input validation via the local network. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Aptio V
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-39230 HIGH This Week

Insecure inherited permissions in some Intel Rapid Storage Technology software before version 16.8.5.1014.9 may allow an authenticated user to potentially enable escalation of privilege via local. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Rapid Storage Technology
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-38570 HIGH This Week

Access of memory location after end of buffer for some Intel Unison software may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Unison Software
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-38411 HIGH This Week

Improper access control in the Intel Smart Campus android application before version 9.4 may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Google Intel Authentication Bypass Smart Campus
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-34997 HIGH This Week

Insecure inherited permissions in the installer for some Intel Server Configuration Utility software before version 16.0.9 may allow an authenticated user to potentially enable escalation of. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Server Configuration Utility
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-34430 HIGH This Week

Uncontrolled search path in some Intel Battery Life Diagnostic Tool software before version 2.2.1 may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Battery Life Diagnostic Tool
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-34350 HIGH This Week

Uncontrolled search path element in some Intel(R) XTU software before version 7.12.0.15 may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Extreme Tuning Utility
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-34314 HIGH This Week

Insecure inherited permissions in some Intel(R) Simics Simulator software before version 1.7.2 may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Simics Simulator
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-33878 HIGH PATCH This Week

Path transversal in some Intel(R) NUC P14E Laptop Element Audio Install Package software before version 156 for Windows may allow an authenticated user to potentially enable escalation of privilege. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Privilege Escalation Intel Microsoft Audio Install Package
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-32661 HIGH PATCH This Week

Improper authentication in some Intel(R) NUC Kits NUC7PJYH and NUC7CJYH Realtek* SD Card Reader Driver installation software before version 10.0.19041.29098 may allow an authenticated user to. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Privilege Escalation Intel Authentication Bypass Realtek Sd Card Reader Driver
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-32638 HIGH This Week

Incorrect default permissions in some Intel Arc RGB Controller software before version 1.06 may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Arc Rgb Controller
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-32204 HIGH PATCH This Week

Improper access control in some Intel(R) OFU software before version 14.1.31 may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Privilege Escalation Intel Authentication Bypass One Boot Flash Update
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-29504 HIGH This Week

Uncontrolled search path element in some Intel(R) RealSense(TM) Dynamic Calibration software before version 2.13.1.0 may allow an authenticated user to potentially enable escalation of privilege via. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Intel Realsense D400 Series Dynamic Calibration Tool
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-29161 HIGH PATCH This Week

Uncontrolled search path in some Intel(R) OFU software before version 14.1.31 may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Privilege Escalation Intel One Boot Flash Update
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-29157 HIGH PATCH This Week

Improper access control in some Intel(R) OFU software before version 14.1.31 may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Privilege Escalation Intel Authentication Bypass One Boot Flash Update
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-28741 HIGH This Week

Buffer overflow in some Intel(R) QAT drivers for Windows - HW Version 1.0 before version 1.10 may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Buffer Overflow Intel Microsoft Quickassist Technology Library +1
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-28740 HIGH This Week

Uncontrolled search path element in some Intel(R) QAT drivers for Windows - HW Version 2.0 before version 2.0.4 may allow an authenticated user to potentially enable escalation of privilege via local. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Microsoft Quickassist Technology Library Quickassist Technology
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-28737 HIGH This Week

Improper initialization in some Intel(R) Aptio* V UEFI Firmware Integrator Tools may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Aptio V Uefi Firmware Integrator Tools
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-28401 HIGH This Week

Out-of-bounds write in some Intel(R) Arc(TM) & Iris(R) Xe Graphics - WHQL - Windows drivers before version 31.0.101.4255 may allow authenticated user to potentially enable escalation of privilege via. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Privilege Escalation Microsoft Memory Corruption Intel +2
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-28397 HIGH This Week

Improper access control in some Intel(R) Aptio* V UEFI Firmware Integrator Tools may allow an authenticated to potentially enable escalation of privileges via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Intel Authentication Bypass Aptio V Uefi Firmware Integrator Tools
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-28388 HIGH This Week

Uncontrolled search path element in some Intel(R) Chipset Device Software before version 10.1.19444.8378 may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Chipset Device Software
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-28378 HIGH This Week

Improper authorization in some Intel(R) QAT drivers for Windows - HW Version 2.0 before version 2.0.4 may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Microsoft Intel Authentication Bypass Quickassist Technology Library +1
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-28377 HIGH This Week

Improper authentication in some Intel(R) NUC Kit NUC11PH USB firmware installation software before version 1.1 for Windows may allow an authenticated user to potentially enable escalation of. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Microsoft Intel Authentication Bypass Usb Firmware
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-27519 HIGH This Week

Improper input validation in firmware for some Intel(R) Optane(TM) SSD products may allow a privileged user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Optane Memory H20 With Solid State Storage Firmware Optane Ssd 900P Firmware Optane Ssd Dc P4800X Firmware +2
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-27513 HIGH PATCH This Week

Uncontrolled search path element in some Intel(R) Server Information Retrieval Utility software before version 16.0.9 may allow an authenticated user to potentially enable escalation of privilege via. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Privilege Escalation Intel Server Information Retrieval Utility
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-27305 HIGH This Week

Incorrect default permissions in some Intel(R) Arc(TM) Control software before version 1.73.5335.2 may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Iris Xe Graphics Arc A Graphics
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-25075 HIGH PATCH This Week

Unquoted search path in the installer for some Intel Server Configuration Utility software before version 16.0.9 may allow an authenticated user to potentially enable escalation of privilege via. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Privilege Escalation Intel Server Configuration Utility
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-24592 HIGH PATCH This Week

Path traversal in the some Intel(R) oneAPI Toolkits and Component software before version 2023.1 may allow authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Privilege Escalation Path Traversal Intel Advisor Inspector +3
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2023-23583 HIGH This Week

Sequence of processor instructions leads to unexpected behavior for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege and/or information. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Information Disclosure Denial Of Service Intel Core I3 10100Y Firmware +222
NVD
CVSS 3.1
7.8
EPSS
1.7%
CVE-2023-22292 HIGH This Week

Uncaught exception for some Intel Unison software may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Unison Software
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-20565 HIGH This Week

Insufficient protections in System Management Mode (SMM) code may allow an attacker to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Ryzen 3 5100 Firmware Ryzen 3 5300G Firmware Ryzen 3 5300Ge Firmware Ryzen 5 5500 Firmware +67
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-20563 HIGH This Week

Insufficient protections in System Management Mode (SMM) code may allow an attacker to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Ryzen 3 5100 Firmware Ryzen 3 5300G Firmware Ryzen 3 5300Ge Firmware Ryzen 5 5500 Firmware +67
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-41840 HIGH This Week

A untrusted search path vulnerability in Fortinet FortiClientWindows 7.0.9 allows an attacker to perform a DLL Hijack attack via a malicious OpenSSL engine library in the search path. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Fortinet OpenSSL Information Disclosure Forticlient
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2023-36719 HIGH PATCH This Week

Microsoft Speech Application Programming Interface (SAPI) Elevation of Privilege Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Information Disclosure Microsoft Windows 10 1507 Windows 10 1607 Windows 10 1809 +11
NVD
CVSS 3.1
7.8
EPSS
0.6%
CVE-2023-36705 HIGH PATCH This Week

Windows Installer Elevation of Privilege Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Information Disclosure Microsoft Windows 10 1507 Windows 10 1607 Windows 10 1809 +11
NVD
CVSS 3.1
7.8
EPSS
0.7%
CVE-2023-36422 HIGH PATCH This Week

Microsoft Windows Defender Elevation of Privilege Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Information Disclosure Microsoft Windows Defender
NVD
CVSS 3.1
7.8
EPSS
0.8%
CVE-2023-36408 HIGH PATCH This Week

Windows Hyper-V Elevation of Privilege Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Buffer Overflow Microsoft Heap Overflow Windows 10 1607 Windows 10 1809 +9
NVD
CVSS 3.1
7.8
EPSS
0.6%
CVE-2023-36407 HIGH PATCH This Week

Windows Hyper-V Elevation of Privilege Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Information Disclosure Microsoft Windows 11 21H2 Windows 11 22h2 Windows 11 23h2 +2
NVD
CVSS 3.1
7.8
EPSS
1.7%
CVE-2023-36396 HIGH PATCH This Week

Windows Compressed Folder Remote Code Execution Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

RCE Microsoft Windows 11 22h2 Windows 11 23h2
NVD
CVSS 3.1
7.8
EPSS
1.7%
CVE-2023-36393 HIGH PATCH This Week

Windows User Interface Application Core Remote Code Execution Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

RCE Microsoft Windows 10 1507 Windows 10 1607 Windows 10 1809 +10
NVD
CVSS 3.1
7.8
EPSS
1.0%
CVE-2023-36047 HIGH PATCH This Week

Windows Authentication Elevation of Privilege Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Information Disclosure Microsoft Windows 10 1809 Windows 10 21h2 Windows 10 22h2 +5
NVD
CVSS 3.1
7.8
EPSS
1.1%
CVE-2023-36045 HIGH PATCH This Week

Microsoft Office Graphics Remote Code Execution Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

RCE Microsoft 365 Apps Office Office Long Term Servicing Channel
NVD
CVSS 3.1
7.8
EPSS
1.0%
CVE-2023-36037 HIGH PATCH This Week

Microsoft Excel Security Feature Bypass Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

Authentication Bypass Microsoft 365 Apps Excel Office +1
NVD
CVSS 3.1
7.8
EPSS
1.2%
CVE-2023-36036 HIGH KEV PATCH THREAT This Week

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Buffer Overflow Microsoft Heap Overflow Windows 10 1507 Windows 10 1607 +11
NVD
CVSS 3.1
7.8
EPSS
16.7%
CVE-2023-36033 HIGH KEV PATCH THREAT This Week

Windows DWM Core Library Elevation of Privilege Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Information Disclosure Microsoft Windows 10 1809 Windows 10 21h2 Windows 10 22h2 +6
NVD
CVSS 3.1
7.8
EPSS
12.0%
CVE-2023-6111 HIGH PATCH This Week

A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. This Use After Free vulnerability could allow attackers to access freed memory to execute arbitrary code or crash the application.

Use After Free Privilege Escalation Linux Memory Corruption Linux Kernel
NVD
CVSS 3.1
7.8
EPSS
0.3%
Prev Page 2 of 3 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy