Skip to main content

Intel

1699 CVEs vendor

Monthly

CVE-2016-8909 MEDIUM PATCH This Month

The intel_hda_xfer function in hw/audio/intel-hda.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and CPU consumption) via an entry. Rated medium severity (CVSS 6.0), this vulnerability is low attack complexity.

Denial Of Service Intel Qemu Debian Linux Leap +2
NVD
CVSS 3.1
6.0
EPSS
0.0%
CVE-2016-8101 HIGH PATCH This Week

The updater subsystem in Intel SSD Toolbox before 3.3.7 allows local users to gain privileges via unspecified vectors. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Intel Privilege Escalation Solid State Drive Toolbox
NVD
CVSS 3.0
7.8
EPSS
0.0%
CVE-2016-8100 MEDIUM PATCH This Month

Intel Integrated Performance Primitives (aka IPP) Cryptography before 9.0.4 makes it easier for local users to discover RSA private keys via a side-channel attack. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Intel Information Disclosure Integrated Performance Primitives
NVD
CVSS 3.0
5.5
EPSS
0.1%
CVE-2016-4723 HIGH This Week

Intel Graphics Driver in Apple OS X before 10.12 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Apple Intel Buffer Overflow RCE +1
NVD
CVSS 3.0
7.8
EPSS
0.2%
CVE-2016-5672 HIGH This Week

Intel Crosswalk before 19.49.514.5, 20.x before 20.50.533.11, 21.x before 21.51.546.0, and 22.x before 22.51.549.0 interprets a user's acceptance of one invalid X.509 certificate to mean that all. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Intel Information Disclosure Crosswalk
NVD
CVSS 3.0
8.1
EPSS
0.4%
CVE-2016-4633 HIGH This Week

Intel Graphics Driver in Apple OS X before 10.11.6 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Apple Intel Buffer Overflow RCE +2
NVD
CVSS 3.0
7.8
EPSS
0.1%
CVE-2016-1862 LOW Monitor

Intel Graphics Driver in Apple OS X before 10.11.5 allows attackers to obtain sensitive kernel memory-layout information via a crafted app, a different vulnerability than CVE-2016-1860. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Apple Information Disclosure Intel Mac Os X
NVD
CVSS 3.0
3.3
EPSS
0.2%
CVE-2016-1860 LOW Monitor

Intel Graphics Driver in Apple OS X before 10.11.5 allows attackers to obtain sensitive kernel memory-layout information via a crafted app, a different vulnerability than CVE-2016-1862. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Apple Information Disclosure Intel Mac Os X
NVD
CVSS 3.0
3.3
EPSS
0.2%
CVE-2016-1812 HIGH This Week

Buffer overflow in Intel Graphics Driver in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context via a crafted app. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Apple Buffer Overflow Intel Mac Os X
NVD
CVSS 3.0
7.8
EPSS
0.3%
CVE-2016-1744 HIGH POC This Week

The Intel driver in the Graphics Drivers subsystem in Apple OS X before 10.11.4 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Apple Intel Buffer Overflow RCE +1
NVD Exploit-DB
CVSS 3.0
7.8
EPSS
2.5%
CVE-2016-1743 HIGH POC This Week

The Intel driver in the Graphics Drivers subsystem in Apple OS X before 10.11.4 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Apple Intel Buffer Overflow RCE +1
NVD Exploit-DB
CVSS 3.0
7.8
EPSS
3.7%
CVE-2016-1956 MEDIUM This Month

Mozilla Firefox before 45.0 on Linux, when an Intel video driver is used, allows remote attackers to cause a denial of service (memory consumption or stack memory corruption) by triggering use of a. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Mozilla Buffer Overflow Intel Firefox +3
NVD
CVSS 3.0
6.5
EPSS
0.3%
CVE-2016-0702 MEDIUM PATCH This Month

The MOD_EXP_CTIME_COPY_FROM_PREBUF function in crypto/bn/bn_exp.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g does not properly consider cache-bank access times during modular. Rated medium severity (CVSS 5.1), this vulnerability is no authentication required. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

OpenSSL Intel Information Disclosure Node Js Debian Linux +1
NVD
CVSS 3.1
5.1
EPSS
0.5%
CVE-2016-2271 MEDIUM PATCH This Month

VMX in Xen 4.6.x and earlier, when using an Intel or Cyrix CPU, allows local HVM guest users to cause a denial of service (guest crash) via vectors related to a non-canonical RIP. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Canonical Intel Denial Of Service Xen
NVD
CVSS 3.0
5.5
EPSS
0.1%
CVE-2016-1493 HIGH PATCH This Week

Intel Driver Update Utility before 2.4 retrieves driver updates in cleartext, which makes it easier for man-in-the-middle attackers to execute arbitrary code via a crafted file. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required.

Intel RCE Driver Update Utility
NVD
CVSS 3.0
7.5
EPSS
0.2%
CVE-2015-8765 HIGH This Week

Intel McAfee ePolicy Orchestrator (ePO) 4.6.9 and earlier, 5.0.x, 5.1.x before 5.1.3 Hotfix 1106041, and 5.3.x before 5.3.1 Hotfix 1106041 allow remote attackers to execute arbitrary code via a. Rated high severity (CVSS 8.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Intel RCE Java Apache Epolicy Orchestrator
NVD
CVSS 3.0
8.3
EPSS
2.3%
CVE-2015-7106 HIGH POC This Week

The Intel Graphics Driver component in Apple OS X before 10.11.2 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Apple Buffer Overflow Intel Mac Os X
NVD Exploit-DB
CVSS 2.0
7.2
EPSS
0.3%
CVE-2015-7077 HIGH POC This Week

The Intel Graphics Driver component in Apple OS X before 10.11.2 allows local users to gain privileges or cause a denial of service (out-of-bounds memory access) via unspecified vectors. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Apple Buffer Overflow Intel Mac Os X
NVD Exploit-DB
CVSS 2.0
7.2
EPSS
0.3%
CVE-2015-7076 HIGH This Week

The Intel Graphics Driver component in Apple OS X before 10.11.2 allows local users to gain privileges or cause a denial of service (NULL pointer dereference) via unspecified vectors. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Apple Denial Of Service Intel Mac Os X
NVD
CVSS 2.0
7.2
EPSS
0.0%
CVE-2015-5877 HIGH This Week

The Intel Graphics Driver component in Apple OS X before 10.11 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Apple Buffer Overflow Intel Mac Os X
NVD
CVSS 2.0
7.2
EPSS
0.1%
CVE-2015-5830 HIGH This Week

The Intel Graphics Driver component in Apple OS X before 10.11 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Apple Buffer Overflow Intel Mac Os X
NVD
CVSS 2.0
7.2
EPSS
0.1%
CVE-2015-3702 HIGH PATCH This Week

Buffer overflow in the Intel Graphics Driver in Apple OS X before 10.10.4 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-3695, CVE-2015-3696,. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Apple Buffer Overflow Intel Mac Os X
NVD
CVSS 2.0
7.2
EPSS
0.0%
CVE-2015-3701 HIGH PATCH This Week

Buffer overflow in the Intel Graphics Driver in Apple OS X before 10.10.4 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-3695, CVE-2015-3696,. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Apple Buffer Overflow Intel Mac Os X
NVD
CVSS 2.0
7.2
EPSS
0.1%
CVE-2015-3700 HIGH PATCH This Week

Buffer overflow in the Intel Graphics Driver in Apple OS X before 10.10.4 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-3695, CVE-2015-3696,. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Apple Buffer Overflow Intel Mac Os X
NVD
CVSS 2.0
7.2
EPSS
0.0%
CVE-2015-3699 HIGH PATCH This Week

Buffer overflow in the Intel Graphics Driver in Apple OS X before 10.10.4 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-3695, CVE-2015-3696,. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Apple Buffer Overflow Intel Mac Os X
NVD
CVSS 2.0
7.2
EPSS
0.1%
CVE-2015-3698 HIGH PATCH This Week

Buffer overflow in the Intel Graphics Driver in Apple OS X before 10.10.4 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-3695, CVE-2015-3696,. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Apple Buffer Overflow Intel Mac Os X
NVD
CVSS 2.0
7.2
EPSS
0.1%
CVE-2015-3697 HIGH PATCH This Week

Buffer overflow in the Intel Graphics Driver in Apple OS X before 10.10.4 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-3695, CVE-2015-3696,. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Apple Buffer Overflow Intel Mac Os X
NVD
CVSS 2.0
7.2
EPSS
0.1%
CVE-2015-3696 HIGH PATCH This Week

Buffer overflow in the Intel Graphics Driver in Apple OS X before 10.10.4 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-3695, CVE-2015-3697,. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Apple Buffer Overflow Intel Mac Os X
NVD
CVSS 2.0
7.2
EPSS
0.1%
CVE-2015-3695 HIGH PATCH This Week

Buffer overflow in the Intel Graphics Driver in Apple OS X before 10.10.4 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-3696, CVE-2015-3697,. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Apple Buffer Overflow Intel Mac Os X
NVD
CVSS 2.0
7.2
EPSS
0.1%
CVE-2015-2859 MEDIUM PATCH This Month

Intel McAfee ePolicy Orchestrator (ePO) 4.x through 4.6.9 and 5.x through 5.1.2 does not validate server names and Certification Authority names in X.509 certificates from SSL servers, which allows. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable.

Intel Information Disclosure Epolicy Orchestrator
NVD
CVSS 2.0
5.8
EPSS
0.3%
CVE-2015-4559 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in the product deployment feature in the Java core web services in Intel McAfee ePolicy Orchestrator (ePO) before 5.1.2 allows remote attackers to inject. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

XSS Intel Java Epolicy Orchestrator
NVD
CVSS 2.0
4.3
EPSS
0.3%
CVE-2014-8821 HIGH This Week

The Intel Graphics Driver in Apple OS X before 10.10.2 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2014-8819 and CVE-2014-8820. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Apple Information Disclosure Intel Mac Os X
NVD
CVSS 2.0
7.2
EPSS
0.1%
CVE-2014-8820 HIGH This Week

The Intel Graphics Driver in Apple OS X before 10.10.2 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2014-8819 and CVE-2014-8821. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Apple Information Disclosure Intel Mac Os X
NVD
CVSS 2.0
7.2
EPSS
0.0%
CVE-2014-8819 HIGH This Week

The Intel Graphics Driver in Apple OS X before 10.10.2 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2014-8820 and CVE-2014-8821. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Apple Information Disclosure Intel Mac Os X
NVD
CVSS 2.0
7.2
EPSS
0.1%
CVE-2014-3690 MEDIUM PATCH This Month

arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 3.17.2 on Intel processors does not ensure that the value in the CR4 control register remains the same after a VM entry, which. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. This Uncontrolled Resource Consumption vulnerability could allow attackers to cause denial of service by exhausting system resources.

Denial Of Service Linux Intel Linux Kernel Suse Linux Enterprise Desktop +8
NVD GitHub
CVSS 3.1
5.5
EPSS
0.0%
CVE-2014-7284 MEDIUM POC PATCH This Month

The net_get_random_once implementation in net/core/utils.c in the Linux kernel 3.13.x and 3.14.x before 3.14.5 on certain Intel processors does not perform the intended slow-path operation to. Rated medium severity (CVSS 6.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Intel Linux Information Disclosure Linux Kernel
NVD GitHub
CVSS 2.0
6.4
EPSS
1.0%
CVE-2014-4416 MEDIUM This Month

An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 does not properly validate calls, which allows attackers to execute arbitrary code. Rated medium severity (CVSS 6.9). No vendor patch available.

Apple RCE Intel Mac Os X
NVD
CVSS 2.0
6.9
EPSS
0.3%
CVE-2014-4401 MEDIUM This Month

An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 does not properly validate calls, which allows attackers to execute arbitrary code. Rated medium severity (CVSS 6.9). No vendor patch available.

Apple RCE Intel Mac Os X
NVD
CVSS 2.0
6.9
EPSS
0.2%
CVE-2014-4400 MEDIUM This Month

An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 does not properly validate calls, which allows attackers to execute arbitrary code. Rated medium severity (CVSS 6.9). No vendor patch available.

Apple RCE Intel Mac Os X
NVD
CVSS 2.0
6.9
EPSS
0.3%
CVE-2014-4399 MEDIUM This Month

An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 does not properly validate calls, which allows attackers to execute arbitrary code. Rated medium severity (CVSS 6.9). No vendor patch available.

Apple RCE Intel Mac Os X
NVD
CVSS 2.0
6.9
EPSS
0.3%
CVE-2014-4398 MEDIUM This Month

An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 does not properly validate calls, which allows attackers to execute arbitrary code. Rated medium severity (CVSS 6.9). No vendor patch available.

Apple RCE Intel Mac Os X
NVD
CVSS 2.0
6.9
EPSS
0.3%
CVE-2014-4397 MEDIUM This Month

An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 does not properly validate calls, which allows attackers to execute arbitrary code. Rated medium severity (CVSS 6.9). No vendor patch available.

Apple RCE Intel Mac Os X
NVD
CVSS 2.0
6.9
EPSS
0.3%
CVE-2014-4396 MEDIUM This Month

An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 does not properly validate calls, which allows attackers to execute arbitrary code. Rated medium severity (CVSS 6.9). No vendor patch available.

Apple RCE Intel Mac Os X
NVD
CVSS 2.0
6.9
EPSS
0.3%
CVE-2014-4395 MEDIUM This Month

An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 does not properly validate calls, which allows attackers to execute arbitrary code. Rated medium severity (CVSS 6.9). No vendor patch available.

Apple RCE Intel Mac Os X
NVD
CVSS 2.0
6.9
EPSS
0.2%
CVE-2014-4394 MEDIUM This Month

An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 does not properly validate calls, which allows attackers to execute arbitrary code. Rated medium severity (CVSS 6.9). No vendor patch available.

Apple RCE Intel Mac Os X
NVD
CVSS 2.0
6.9
EPSS
0.3%
CVE-2014-4393 CRITICAL Act Now

Buffer overflow in the shader compiler in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 allows remote attackers to execute arbitrary code or cause a denial of service (application. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Apple Intel Buffer Overflow RCE +1
NVD
CVSS 2.0
10.0
EPSS
6.1%
CVE-2014-5582 MEDIUM This Month

The Ingress Intel Helper (aka com.bb.ingressintel) application 1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 5.4). No vendor patch available.

Intel Google Information Disclosure Ingress Intel Helper
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-4910 MEDIUM This Month

Directory traversal vulnerability in tools/backlight_helper.c in X.Org xf86-video-intel 2.99.911 allows remote attackers to create or overwrite arbitrary files via a .. Rated medium severity (CVSS 4.6), this vulnerability is low attack complexity. No vendor patch available.

Path Traversal Intel Xf86 Video Intel
NVD
CVSS 2.0
4.6
EPSS
0.3%
CVE-2014-4699 MEDIUM POC PATCH This Month

The Linux kernel before 3.15.4 on Intel processors does not properly restrict use of a non-canonical value for the saved RIP address in the case of a system call that does not use IRET, which allows. Rated medium severity (CVSS 6.9). Public exploit code available.

Canonical Race Condition Denial Of Service Intel Linux +3
NVD Exploit-DB GitHub
CVSS 2.0
6.9
EPSS
1.1%
CVE-2014-1376 CRITICAL POC Act Now

Intel Compute in Apple OS X before 10.9.4 does not properly restrict an unspecified OpenCL API call, which allows attackers to execute arbitrary code via a crafted application. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Apple Privilege Escalation RCE Intel Mac Os X
NVD
CVSS 2.0
10.0
EPSS
1.3%
CVE-2014-1375 LOW Monitor

Intel Graphics Driver in Apple OS X before 10.9.4 allows local users to bypass the ASLR protection mechanism by leveraging read access to a kernel pointer in an IOKit object. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Apple Privilege Escalation Intel Mac Os X
NVD
CVSS 2.0
2.1
EPSS
0.1%
CVE-2014-1373 CRITICAL POC Act Now

Intel Graphics Driver in Apple OS X before 10.9.4 does not properly restrict an unspecified OpenGL API call, which allows attackers to execute arbitrary code via a crafted application. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Apple Privilege Escalation RCE Intel Mac Os X
NVD
CVSS 2.0
10.0
EPSS
1.2%
CVE-2014-3735 MEDIUM POC This Month

ir41_32.ax 4.51.16.3 for Intel Indeo Video 4.5 allows remote attackers to cause a denial of service (crash) via a crafted .avi file. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Denial Of Service Intel Buffer Overflow Indeo Video
NVD
CVSS 2.0
4.3
EPSS
0.4%
CVE-2014-1318 CRITICAL Act Now

The Intel Graphics Driver in Apple OS X through 10.9.2 does not properly validate a certain pointer, which allows attackers to execute arbitrary code via a crafted application. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Apple RCE Intel Mac Os X
NVD VulDB
CVSS 2.0
10.0
EPSS
1.3%
CVE-2014-2536 MEDIUM This Month

Directory traversal vulnerability in McAfee Cloud Identity Manager 3.0, 3.1, and 3.5.1, McAfee Cloud Single Sign On (MCSSO) before 4.0.1, and Intel Expressway Cloud Access 360-SSO 2.1 and 2.5 allows. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Path Traversal Intel Expressway Cloud Access 360 Cloud Identity Manager Cloud Single Sign On
NVD VulDB
CVSS 2.0
4.3
EPSS
0.8%
CVE-2013-7295 MEDIUM This Month

Tor before 0.2.4.20, when OpenSSL 1.x is used in conjunction with a certain HardwareAccel setting on Intel Sandy Bridge and Ivy Bridge platforms, does not properly generate random numbers for (1). Rated medium severity (CVSS 4.0), this vulnerability is remotely exploitable. No vendor patch available.

OpenSSL Intel Authentication Bypass Tor
NVD
CVSS 2.0
4.0
EPSS
0.2%
CVE-2013-6400 MEDIUM This Month

Xen 4.2.x and 4.3.x, when using Intel VT-d and a PCI device has been assigned, does not clear the flag that suppresses IOMMU TLB flushes when unspecified errors occur, which causes the TLB entries to. Rated medium severity (CVSS 6.8). No vendor patch available.

Privilege Escalation Intel Denial Of Service Xen
NVD
CVSS 2.0
6.8
EPSS
0.4%
CVE-2013-6375 HIGH This Week

Xen 4.2.x and 4.3.x, when using Intel VT-d for PCI passthrough, does not properly flush the TLB after clearing a present translation table entry, which allows local guest administrators to cause a. Rated high severity (CVSS 7.9). No vendor patch available.

Privilege Escalation Intel Denial Of Service Xen Opensuse
NVD
CVSS 2.0
7.9
EPSS
0.6%
CVE-2013-5740 MEDIUM This Month

Unspecified vulnerability in the Intel Trusted Execution Technology (TXT) SINIT Authenticated Code Modules (ACM) before 1.2, as used by the Intel QM77, QS77, Q77 Express, C216, Q67 Express, C202,. Rated medium severity (CVSS 6.9). No vendor patch available.

Intel Authentication Bypass C202 Chipset C204 Chipset C206 Chipset +7
NVD
CVSS 2.0
6.9
EPSS
0.1%
CVE-2013-3495 MEDIUM This Month

The Intel VT-d Interrupt Remapping engine in Xen 3.3.x through 4.3.x allows local guests to cause a denial of service (kernel panic) via a malformed Message Signaled Interrupt (MSI) from a PCI device. Rated medium severity (CVSS 4.7). No vendor patch available.

Privilege Escalation Intel Denial Of Service Opensuse Xen
NVD
CVSS 2.0
4.7
EPSS
0.1%
CVE-2013-2076 MEDIUM This Month

Xen 4.0.x, 4.1.x, and 4.2.x, when running on AMD64 processors, only save/restore the FOP, FIP, and FDP x87 registers in FXSAVE/FXRSTOR when an exception is pending, which allows one domain to. Rated medium severity (CVSS 4.3). No vendor patch available.

Intel Information Disclosure Xen
NVD
CVSS 2.0
4.3
EPSS
0.1%
CVE-2013-4219 HIGH This Week

Multiple integer overflows in the Intel WiMAX Network Service through 1.5.2 for Intel Wireless WiMAX Connection 2400 devices allow remote attackers to cause a denial of service (component crash) or. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Buffer Overflow Intel Denial Of Service RCE Wimax Network Service
NVD
CVSS 2.0
7.5
EPSS
1.6%
CVE-2013-4218 LOW Monitor

The InitMethodAndPassword function in InfraStack/OSAgnostic/WiMax/Agents/Supplicant/Source/SupplicantAgent.c in the Intel WiMAX Network Service through 1.5.2 for Intel Wireless WiMAX Connection 2400. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Intel Information Disclosure Wimax Network Service
NVD
CVSS 2.0
2.1
EPSS
0.1%
CVE-2013-4217 LOW Monitor

The OSAL_Crypt_SetEncryptedPassword function in InfraStack/OSDependent/Linux/OSAL/Services/wimax_osal_crypt_services.c in the OSAL crypt module in the Intel WiMAX Network Service through 1.5.2 for. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Intel Information Disclosure Wimax Network Service
NVD
CVSS 2.0
2.1
EPSS
0.1%
CVE-2013-4216 LOW Monitor

The Trace_OpenLogFile function in InfraStack/OSDependent/Linux/InfraStackModules/TraceModule/TraceModule.c in the Trace module in the Intel WiMAX Network Service through 1.5.2 for Intel Wireless. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Denial Of Service Wimax Network Service
NVD
CVSS 2.0
2.1
EPSS
0.0%
CVE-2013-1872 MEDIUM This Month

The Intel drivers in Mesa 8.0.x and 9.0.x allow context-dependent attackers to cause a denial of service (reachable assertion and crash) and possibly execute arbitrary code via vectors involving 3d. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

Buffer Overflow Intel Denial Of Service RCE Mesa +3
NVD
CVSS 2.0
6.8
EPSS
1.1%
CVE-2013-1952 LOW Monitor

Xen 4.x, when using Intel VT-d for a bus mastering capable PCI device, does not properly check the source when accessing a bridge device's interrupt remapping table entries for MSI interrupts, which. Rated low severity (CVSS 1.9). No vendor patch available.

Intel Denial Of Service Xen
NVD
CVSS 2.0
1.9
EPSS
0.1%
CVE-2013-1917 LOW Monitor

Xen 3.1 through 4.x, when running 64-bit hosts on Intel CPUs, does not clear the NT flag when using an IRET after a SYSENTER instruction, which allows PV guest users to cause a denial of service. Rated low severity (CVSS 1.9). No vendor patch available.

Intel Denial Of Service Xen
NVD
CVSS 2.0
1.9
EPSS
0.1%
CVE-2012-5634 MEDIUM This Month

Xen 4.2.x, 4.1.x, and 4.0, when using Intel VT-d for PCI passthrough, does not properly configure VT-d when supporting a device that is behind a legacy PCI Bridge, which allows local guests to cause. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. No vendor patch available.

Intel Denial Of Service Xen
NVD
CVSS 2.0
6.1
EPSS
0.4%
CVE-2012-5965 CRITICAL POC PATCH THREAT Act Now

Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices). Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 71.7%.

Buffer Overflow Intel RCE Portable Sdk For Upnp
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
71.7%
Threat
5.7
CVE-2012-5964 CRITICAL POC PATCH THREAT Act Now

Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices). Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 72.3%.

Buffer Overflow Intel RCE Portable Sdk For Upnp
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
72.3%
Threat
5.7
CVE-2012-5963 CRITICAL POC PATCH THREAT Act Now

Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices). Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 72.3%.

Buffer Overflow Intel RCE Portable Sdk For Upnp
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
72.3%
Threat
5.7
CVE-2012-5962 CRITICAL POC PATCH THREAT Act Now

Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices). Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 70.1%.

Buffer Overflow Intel RCE Portable Sdk For Upnp
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
70.1%
Threat
5.6
CVE-2012-5961 CRITICAL POC PATCH THREAT Act Now

Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices). Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 72.3%.

Buffer Overflow Intel RCE Libupnp
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
72.3%
Threat
5.7
CVE-2012-5960 CRITICAL POC PATCH THREAT Act Now

Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices). Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 56.0%.

Buffer Overflow Intel RCE Portable Sdk For Upnp
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
56.0%
Threat
5.2
CVE-2012-5959 CRITICAL POC PATCH THREAT Act Now

Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices). Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 82.4%.

Buffer Overflow Intel RCE Portable Sdk For Upnp
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
82.4%
Threat
6.0
CVE-2012-5958 CRITICAL POC PATCH THREAT Act Now

Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices). Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 88.6%.

Buffer Overflow Intel RCE Libupnp
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
88.6%
Threat
6.2
CVE-2012-5131 HIGH This Week

Google Chrome before 23.0.1271.91 on Mac OS X does not properly mitigate improper rendering behavior in the Intel GPU driver, which allows remote attackers to cause a denial of service or possibly. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Intel Denial Of Service Google Chrome
NVD
CVSS 2.0
7.5
EPSS
0.9%
CVE-2012-0217 HIGH POC THREAT Act Now

The x86-64 kernel system-call functionality in Xen 4.1.2 and earlier, as used in Citrix XenServer 6.0.2 and earlier and other products; Oracle Solaris 11 and earlier; illumos before r13724; Joyent. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. Public exploit code available and EPSS exploitation probability 88.0%.

Citrix Intel Buffer Overflow Oracle Canonical +12
NVD Exploit-DB
CVSS 2.0
7.2
EPSS
88.0%
Threat
5.6
EPSS 0% CVSS 6.0
MEDIUM PATCH This Month

The intel_hda_xfer function in hw/audio/intel-hda.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and CPU consumption) via an entry. Rated medium severity (CVSS 6.0), this vulnerability is low attack complexity.

Denial Of Service Intel Qemu +4
NVD
EPSS 0% CVSS 7.8
HIGH PATCH This Week

The updater subsystem in Intel SSD Toolbox before 3.3.7 allows local users to gain privileges via unspecified vectors. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Intel Privilege Escalation Solid State Drive Toolbox
NVD
EPSS 0% CVSS 5.5
MEDIUM PATCH This Month

Intel Integrated Performance Primitives (aka IPP) Cryptography before 9.0.4 makes it easier for local users to discover RSA private keys via a side-channel attack. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Intel Information Disclosure Integrated Performance Primitives
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Intel Graphics Driver in Apple OS X before 10.12 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Apple Intel +3
NVD
EPSS 0% CVSS 8.1
HIGH This Week

Intel Crosswalk before 19.49.514.5, 20.x before 20.50.533.11, 21.x before 21.51.546.0, and 22.x before 22.51.549.0 interprets a user's acceptance of one invalid X.509 certificate to mean that all. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Intel Information Disclosure Crosswalk
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Intel Graphics Driver in Apple OS X before 10.11.6 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Apple Intel +4
NVD
EPSS 0% CVSS 3.3
LOW Monitor

Intel Graphics Driver in Apple OS X before 10.11.5 allows attackers to obtain sensitive kernel memory-layout information via a crafted app, a different vulnerability than CVE-2016-1860. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Apple Information Disclosure Intel +1
NVD
EPSS 0% CVSS 3.3
LOW Monitor

Intel Graphics Driver in Apple OS X before 10.11.5 allows attackers to obtain sensitive kernel memory-layout information via a crafted app, a different vulnerability than CVE-2016-1862. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Apple Information Disclosure Intel +1
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Buffer overflow in Intel Graphics Driver in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context via a crafted app. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Apple Buffer Overflow +2
NVD
EPSS 3% CVSS 7.8
HIGH POC This Week

The Intel driver in the Graphics Drivers subsystem in Apple OS X before 10.11.4 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Apple Intel +3
NVD Exploit-DB
EPSS 4% CVSS 7.8
HIGH POC This Week

The Intel driver in the Graphics Drivers subsystem in Apple OS X before 10.11.4 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Apple Intel +3
NVD Exploit-DB
EPSS 0% CVSS 6.5
MEDIUM This Month

Mozilla Firefox before 45.0 on Linux, when an Intel video driver is used, allows remote attackers to cause a denial of service (memory consumption or stack memory corruption) by triggering use of a. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Mozilla Buffer Overflow +5
NVD
EPSS 0% CVSS 5.1
MEDIUM PATCH This Month

The MOD_EXP_CTIME_COPY_FROM_PREBUF function in crypto/bn/bn_exp.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g does not properly consider cache-bank access times during modular. Rated medium severity (CVSS 5.1), this vulnerability is no authentication required. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

OpenSSL Intel Information Disclosure +3
NVD
EPSS 0% CVSS 5.5
MEDIUM PATCH This Month

VMX in Xen 4.6.x and earlier, when using an Intel or Cyrix CPU, allows local HVM guest users to cause a denial of service (guest crash) via vectors related to a non-canonical RIP. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Canonical Intel Denial Of Service +1
NVD
EPSS 0% CVSS 7.5
HIGH PATCH This Week

Intel Driver Update Utility before 2.4 retrieves driver updates in cleartext, which makes it easier for man-in-the-middle attackers to execute arbitrary code via a crafted file. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required.

Intel RCE Driver Update Utility
NVD
EPSS 2% CVSS 8.3
HIGH This Week

Intel McAfee ePolicy Orchestrator (ePO) 4.6.9 and earlier, 5.0.x, 5.1.x before 5.1.3 Hotfix 1106041, and 5.3.x before 5.3.1 Hotfix 1106041 allow remote attackers to execute arbitrary code via a. Rated high severity (CVSS 8.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Intel RCE Java +2
NVD
EPSS 0% CVSS 7.2
HIGH POC This Week

The Intel Graphics Driver component in Apple OS X before 10.11.2 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Apple Buffer Overflow +2
NVD Exploit-DB
EPSS 0% CVSS 7.2
HIGH POC This Week

The Intel Graphics Driver component in Apple OS X before 10.11.2 allows local users to gain privileges or cause a denial of service (out-of-bounds memory access) via unspecified vectors. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Apple Buffer Overflow +2
NVD Exploit-DB
EPSS 0% CVSS 7.2
HIGH This Week

The Intel Graphics Driver component in Apple OS X before 10.11.2 allows local users to gain privileges or cause a denial of service (NULL pointer dereference) via unspecified vectors. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Apple Denial Of Service Intel +1
NVD
EPSS 0% CVSS 7.2
HIGH This Week

The Intel Graphics Driver component in Apple OS X before 10.11 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Apple Buffer Overflow +2
NVD
EPSS 0% CVSS 7.2
HIGH This Week

The Intel Graphics Driver component in Apple OS X before 10.11 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Apple Buffer Overflow +2
NVD
EPSS 0% CVSS 7.2
HIGH PATCH This Week

Buffer overflow in the Intel Graphics Driver in Apple OS X before 10.10.4 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-3695, CVE-2015-3696,. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Apple Buffer Overflow Intel +1
NVD
EPSS 0% CVSS 7.2
HIGH PATCH This Week

Buffer overflow in the Intel Graphics Driver in Apple OS X before 10.10.4 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-3695, CVE-2015-3696,. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Apple Buffer Overflow Intel +1
NVD
EPSS 0% CVSS 7.2
HIGH PATCH This Week

Buffer overflow in the Intel Graphics Driver in Apple OS X before 10.10.4 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-3695, CVE-2015-3696,. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Apple Buffer Overflow Intel +1
NVD
EPSS 0% CVSS 7.2
HIGH PATCH This Week

Buffer overflow in the Intel Graphics Driver in Apple OS X before 10.10.4 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-3695, CVE-2015-3696,. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Apple Buffer Overflow Intel +1
NVD
EPSS 0% CVSS 7.2
HIGH PATCH This Week

Buffer overflow in the Intel Graphics Driver in Apple OS X before 10.10.4 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-3695, CVE-2015-3696,. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Apple Buffer Overflow Intel +1
NVD
EPSS 0% CVSS 7.2
HIGH PATCH This Week

Buffer overflow in the Intel Graphics Driver in Apple OS X before 10.10.4 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-3695, CVE-2015-3696,. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Apple Buffer Overflow Intel +1
NVD
EPSS 0% CVSS 7.2
HIGH PATCH This Week

Buffer overflow in the Intel Graphics Driver in Apple OS X before 10.10.4 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-3695, CVE-2015-3697,. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Apple Buffer Overflow Intel +1
NVD
EPSS 0% CVSS 7.2
HIGH PATCH This Week

Buffer overflow in the Intel Graphics Driver in Apple OS X before 10.10.4 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-3696, CVE-2015-3697,. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Apple Buffer Overflow Intel +1
NVD
EPSS 0% CVSS 5.8
MEDIUM PATCH This Month

Intel McAfee ePolicy Orchestrator (ePO) 4.x through 4.6.9 and 5.x through 5.1.2 does not validate server names and Certification Authority names in X.509 certificates from SSL servers, which allows. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable.

Intel Information Disclosure Epolicy Orchestrator
NVD
EPSS 0% CVSS 4.3
MEDIUM This Month

Cross-site scripting (XSS) vulnerability in the product deployment feature in the Java core web services in Intel McAfee ePolicy Orchestrator (ePO) before 5.1.2 allows remote attackers to inject. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

XSS Intel Java +1
NVD
EPSS 0% CVSS 7.2
HIGH This Week

The Intel Graphics Driver in Apple OS X before 10.10.2 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2014-8819 and CVE-2014-8820. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Apple Information Disclosure Intel +1
NVD
EPSS 0% CVSS 7.2
HIGH This Week

The Intel Graphics Driver in Apple OS X before 10.10.2 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2014-8819 and CVE-2014-8821. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Apple Information Disclosure Intel +1
NVD
EPSS 0% CVSS 7.2
HIGH This Week

The Intel Graphics Driver in Apple OS X before 10.10.2 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2014-8820 and CVE-2014-8821. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Apple Information Disclosure Intel +1
NVD
EPSS 0% CVSS 5.5
MEDIUM PATCH This Month

arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 3.17.2 on Intel processors does not ensure that the value in the CR4 control register remains the same after a VM entry, which. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. This Uncontrolled Resource Consumption vulnerability could allow attackers to cause denial of service by exhausting system resources.

Denial Of Service Linux Intel +10
NVD GitHub
EPSS 1% CVSS 6.4
MEDIUM POC PATCH This Month

The net_get_random_once implementation in net/core/utils.c in the Linux kernel 3.13.x and 3.14.x before 3.14.5 on certain Intel processors does not perform the intended slow-path operation to. Rated medium severity (CVSS 6.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Intel Linux Information Disclosure +1
NVD GitHub
EPSS 0% CVSS 6.9
MEDIUM This Month

An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 does not properly validate calls, which allows attackers to execute arbitrary code. Rated medium severity (CVSS 6.9). No vendor patch available.

Apple RCE Intel +1
NVD
EPSS 0% CVSS 6.9
MEDIUM This Month

An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 does not properly validate calls, which allows attackers to execute arbitrary code. Rated medium severity (CVSS 6.9). No vendor patch available.

Apple RCE Intel +1
NVD
EPSS 0% CVSS 6.9
MEDIUM This Month

An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 does not properly validate calls, which allows attackers to execute arbitrary code. Rated medium severity (CVSS 6.9). No vendor patch available.

Apple RCE Intel +1
NVD
EPSS 0% CVSS 6.9
MEDIUM This Month

An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 does not properly validate calls, which allows attackers to execute arbitrary code. Rated medium severity (CVSS 6.9). No vendor patch available.

Apple RCE Intel +1
NVD
EPSS 0% CVSS 6.9
MEDIUM This Month

An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 does not properly validate calls, which allows attackers to execute arbitrary code. Rated medium severity (CVSS 6.9). No vendor patch available.

Apple RCE Intel +1
NVD
EPSS 0% CVSS 6.9
MEDIUM This Month

An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 does not properly validate calls, which allows attackers to execute arbitrary code. Rated medium severity (CVSS 6.9). No vendor patch available.

Apple RCE Intel +1
NVD
EPSS 0% CVSS 6.9
MEDIUM This Month

An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 does not properly validate calls, which allows attackers to execute arbitrary code. Rated medium severity (CVSS 6.9). No vendor patch available.

Apple RCE Intel +1
NVD
EPSS 0% CVSS 6.9
MEDIUM This Month

An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 does not properly validate calls, which allows attackers to execute arbitrary code. Rated medium severity (CVSS 6.9). No vendor patch available.

Apple RCE Intel +1
NVD
EPSS 0% CVSS 6.9
MEDIUM This Month

An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 does not properly validate calls, which allows attackers to execute arbitrary code. Rated medium severity (CVSS 6.9). No vendor patch available.

Apple RCE Intel +1
NVD
EPSS 6% CVSS 10.0
CRITICAL Act Now

Buffer overflow in the shader compiler in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 allows remote attackers to execute arbitrary code or cause a denial of service (application. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Apple Intel +3
NVD
EPSS 0% CVSS 5.4
MEDIUM This Month

The Ingress Intel Helper (aka com.bb.ingressintel) application 1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 5.4). No vendor patch available.

Intel Google Information Disclosure +1
NVD
EPSS 0% CVSS 4.6
MEDIUM This Month

Directory traversal vulnerability in tools/backlight_helper.c in X.Org xf86-video-intel 2.99.911 allows remote attackers to create or overwrite arbitrary files via a .. Rated medium severity (CVSS 4.6), this vulnerability is low attack complexity. No vendor patch available.

Path Traversal Intel Xf86 Video Intel
NVD
EPSS 1% CVSS 6.9
MEDIUM POC PATCH This Month

The Linux kernel before 3.15.4 on Intel processors does not properly restrict use of a non-canonical value for the saved RIP address in the case of a system call that does not use IRET, which allows. Rated medium severity (CVSS 6.9). Public exploit code available.

Canonical Race Condition Denial Of Service +5
NVD Exploit-DB GitHub
EPSS 1% CVSS 10.0
CRITICAL POC Act Now

Intel Compute in Apple OS X before 10.9.4 does not properly restrict an unspecified OpenCL API call, which allows attackers to execute arbitrary code via a crafted application. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Apple Privilege Escalation RCE +2
NVD
EPSS 0% CVSS 2.1
LOW Monitor

Intel Graphics Driver in Apple OS X before 10.9.4 allows local users to bypass the ASLR protection mechanism by leveraging read access to a kernel pointer in an IOKit object. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Apple Privilege Escalation Intel +1
NVD
EPSS 1% CVSS 10.0
CRITICAL POC Act Now

Intel Graphics Driver in Apple OS X before 10.9.4 does not properly restrict an unspecified OpenGL API call, which allows attackers to execute arbitrary code via a crafted application. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Apple Privilege Escalation RCE +2
NVD
EPSS 0% CVSS 4.3
MEDIUM POC This Month

ir41_32.ax 4.51.16.3 for Intel Indeo Video 4.5 allows remote attackers to cause a denial of service (crash) via a crafted .avi file. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Denial Of Service Intel Buffer Overflow +1
NVD
EPSS 1% CVSS 10.0
CRITICAL Act Now

The Intel Graphics Driver in Apple OS X through 10.9.2 does not properly validate a certain pointer, which allows attackers to execute arbitrary code via a crafted application. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Apple RCE Intel +1
NVD VulDB
EPSS 1% CVSS 4.3
MEDIUM This Month

Directory traversal vulnerability in McAfee Cloud Identity Manager 3.0, 3.1, and 3.5.1, McAfee Cloud Single Sign On (MCSSO) before 4.0.1, and Intel Expressway Cloud Access 360-SSO 2.1 and 2.5 allows. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Path Traversal Intel Expressway Cloud Access 360 +2
NVD VulDB
EPSS 0% CVSS 4.0
MEDIUM This Month

Tor before 0.2.4.20, when OpenSSL 1.x is used in conjunction with a certain HardwareAccel setting on Intel Sandy Bridge and Ivy Bridge platforms, does not properly generate random numbers for (1). Rated medium severity (CVSS 4.0), this vulnerability is remotely exploitable. No vendor patch available.

OpenSSL Intel Authentication Bypass +1
NVD
EPSS 0% CVSS 6.8
MEDIUM This Month

Xen 4.2.x and 4.3.x, when using Intel VT-d and a PCI device has been assigned, does not clear the flag that suppresses IOMMU TLB flushes when unspecified errors occur, which causes the TLB entries to. Rated medium severity (CVSS 6.8). No vendor patch available.

Privilege Escalation Intel Denial Of Service +1
NVD
EPSS 1% CVSS 7.9
HIGH This Week

Xen 4.2.x and 4.3.x, when using Intel VT-d for PCI passthrough, does not properly flush the TLB after clearing a present translation table entry, which allows local guest administrators to cause a. Rated high severity (CVSS 7.9). No vendor patch available.

Privilege Escalation Intel Denial Of Service +2
NVD
EPSS 0% CVSS 6.9
MEDIUM This Month

Unspecified vulnerability in the Intel Trusted Execution Technology (TXT) SINIT Authenticated Code Modules (ACM) before 1.2, as used by the Intel QM77, QS77, Q77 Express, C216, Q67 Express, C202,. Rated medium severity (CVSS 6.9). No vendor patch available.

Intel Authentication Bypass C202 Chipset +9
NVD
EPSS 0% CVSS 4.7
MEDIUM This Month

The Intel VT-d Interrupt Remapping engine in Xen 3.3.x through 4.3.x allows local guests to cause a denial of service (kernel panic) via a malformed Message Signaled Interrupt (MSI) from a PCI device. Rated medium severity (CVSS 4.7). No vendor patch available.

Privilege Escalation Intel Denial Of Service +2
NVD
EPSS 0% CVSS 4.3
MEDIUM This Month

Xen 4.0.x, 4.1.x, and 4.2.x, when running on AMD64 processors, only save/restore the FOP, FIP, and FDP x87 registers in FXSAVE/FXRSTOR when an exception is pending, which allows one domain to. Rated medium severity (CVSS 4.3). No vendor patch available.

Intel Information Disclosure Xen
NVD
EPSS 2% CVSS 7.5
HIGH This Week

Multiple integer overflows in the Intel WiMAX Network Service through 1.5.2 for Intel Wireless WiMAX Connection 2400 devices allow remote attackers to cause a denial of service (component crash) or. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Buffer Overflow Intel Denial Of Service +2
NVD
EPSS 0% CVSS 2.1
LOW Monitor

The InitMethodAndPassword function in InfraStack/OSAgnostic/WiMax/Agents/Supplicant/Source/SupplicantAgent.c in the Intel WiMAX Network Service through 1.5.2 for Intel Wireless WiMAX Connection 2400. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Intel Information Disclosure Wimax Network Service
NVD
EPSS 0% CVSS 2.1
LOW Monitor

The OSAL_Crypt_SetEncryptedPassword function in InfraStack/OSDependent/Linux/OSAL/Services/wimax_osal_crypt_services.c in the OSAL crypt module in the Intel WiMAX Network Service through 1.5.2 for. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Intel Information Disclosure Wimax Network Service
NVD
EPSS 0% CVSS 2.1
LOW Monitor

The Trace_OpenLogFile function in InfraStack/OSDependent/Linux/InfraStackModules/TraceModule/TraceModule.c in the Trace module in the Intel WiMAX Network Service through 1.5.2 for Intel Wireless. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Denial Of Service +1
NVD
EPSS 1% CVSS 6.8
MEDIUM This Month

The Intel drivers in Mesa 8.0.x and 9.0.x allow context-dependent attackers to cause a denial of service (reachable assertion and crash) and possibly execute arbitrary code via vectors involving 3d. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

Buffer Overflow Intel Denial Of Service +5
NVD
EPSS 0% CVSS 1.9
LOW Monitor

Xen 4.x, when using Intel VT-d for a bus mastering capable PCI device, does not properly check the source when accessing a bridge device's interrupt remapping table entries for MSI interrupts, which. Rated low severity (CVSS 1.9). No vendor patch available.

Intel Denial Of Service Xen
NVD
EPSS 0% CVSS 1.9
LOW Monitor

Xen 3.1 through 4.x, when running 64-bit hosts on Intel CPUs, does not clear the NT flag when using an IRET after a SYSENTER instruction, which allows PV guest users to cause a denial of service. Rated low severity (CVSS 1.9). No vendor patch available.

Intel Denial Of Service Xen
NVD
EPSS 0% CVSS 6.1
MEDIUM This Month

Xen 4.2.x, 4.1.x, and 4.0, when using Intel VT-d for PCI passthrough, does not properly configure VT-d when supporting a device that is behind a legacy PCI Bridge, which allows local guests to cause. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. No vendor patch available.

Intel Denial Of Service Xen
NVD
EPSS 72% 5.7 CVSS 10.0
CRITICAL POC PATCH THREAT Act Now

Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices). Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 71.7%.

Buffer Overflow Intel RCE +1
NVD Exploit-DB
EPSS 72% 5.7 CVSS 10.0
CRITICAL POC PATCH THREAT Act Now

Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices). Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 72.3%.

Buffer Overflow Intel RCE +1
NVD Exploit-DB
EPSS 72% 5.7 CVSS 10.0
CRITICAL POC PATCH THREAT Act Now

Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices). Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 72.3%.

Buffer Overflow Intel RCE +1
NVD Exploit-DB
EPSS 70% 5.6 CVSS 10.0
CRITICAL POC PATCH THREAT Act Now

Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices). Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 70.1%.

Buffer Overflow Intel RCE +1
NVD Exploit-DB
EPSS 72% 5.7 CVSS 10.0
CRITICAL POC PATCH THREAT Act Now

Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices). Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 72.3%.

Buffer Overflow Intel RCE +1
NVD Exploit-DB
EPSS 56% 5.2 CVSS 10.0
CRITICAL POC PATCH THREAT Act Now

Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices). Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 56.0%.

Buffer Overflow Intel RCE +1
NVD Exploit-DB
EPSS 82% 6.0 CVSS 10.0
CRITICAL POC PATCH THREAT Act Now

Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices). Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 82.4%.

Buffer Overflow Intel RCE +1
NVD Exploit-DB
EPSS 89% 6.2 CVSS 10.0
CRITICAL POC PATCH THREAT Act Now

Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices). Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 88.6%.

Buffer Overflow Intel RCE +1
NVD Exploit-DB
EPSS 1% CVSS 7.5
HIGH This Week

Google Chrome before 23.0.1271.91 on Mac OS X does not properly mitigate improper rendering behavior in the Intel GPU driver, which allows remote attackers to cause a denial of service or possibly. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Intel Denial Of Service Google +1
NVD
EPSS 88% 5.6 CVSS 7.2
HIGH POC THREAT Act Now

The x86-64 kernel system-call functionality in Xen 4.1.2 and earlier, as used in Citrix XenServer 6.0.2 and earlier and other products; Oracle Solaris 11 and earlier; illumos before r13724; Joyent. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. Public exploit code available and EPSS exploitation probability 88.0%.

Citrix Intel Buffer Overflow +14
NVD Exploit-DB
Prev Page 19 of 19

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy