Skip to main content

Intel

1699 CVEs vendor

Monthly

CVE-2023-28385 MEDIUM This Month

Improper authorization in the Intel(R) NUC Pro Software Suite for Windows before version 2.0.0.9 may allow a privileged user to potentially enable escalation of privilage via local access. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Microsoft Intel Authentication Bypass Next Unit Of Computing Firmware
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-28380 HIGH This Week

Uncontrolled search path for the Intel(R) AI Hackathon software before version 2.0.0 may allow an unauthenticated user to potentially enable escalation of privilege via network access. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Intel Ai Hackathon
NVD
CVSS 3.1
8.8
EPSS
0.5%
CVE-2023-27887 MEDIUM This Month

Improper initialization in BIOS firmware for some Intel(R) NUCs may allow a privileged user to potentially enable information disclosure via local access. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Intel Nuc 11 Pro Kit Nuc11Tnhi70Z Firmware Nuc 11 Pro Kit Nuc11Tnki70Z Firmware Nuc 11 Pro Kit Nuc11Tnki30Z Firmware +21
NVD
CVSS 3.1
4.4
EPSS
0.1%
CVE-2023-27515 CRITICAL PATCH Act Now

Cross-site scripting (XSS) for the Intel(R) DSA software before version 23.1.9 may allow unauthenticated user to potentially enable escalation of privilege via network access. Rated critical severity (CVSS 9.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Privilege Escalation XSS Intel Driver Support Assistant
NVD
CVSS 3.1
9.6
EPSS
0.5%
CVE-2023-27509 HIGH This Week

Improper access control in some Intel(R) ISPC software installers before version 1.19.0 may allow an authenticated user to potentially enable escalation of privileges via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Intel Authentication Bypass Ispc Software Installer
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-27506 PyPI HIGH PATCH This Week

Improper buffer restrictions in the Intel(R) Optimization for Tensorflow software before version 2.12 may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Optimization For Tensorflow
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-27505 HIGH This Week

Incorrect default permissions in some Intel(R) Advanced Link Analyzer Standard Edition software installers before version 22.1 .1 may allow an authenticated user to potentially enable escalation of. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Advanced Link Analyzer
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-27392 MEDIUM This Month

Incorrect default permissions in the Intel(R) Support android application before version v23.02.07 may allow a privileged user to potentially enable information disclosure via local access. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Information Disclosure Google Intel Support
NVD
CVSS 3.1
4.4
EPSS
0.2%
CVE-2023-27391 MEDIUM This Month

Improper access control in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.1.493 may allow a privileged user to potentially enable escalation of privilege via local. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Authentication Bypass Advisor For Oneapi Cpu Runtime For Opencl Applications +27
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-26587 HIGH This Week

Improper input validation for the Intel(R) Easy Streaming Wizard software may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Easy Streaming Wizard
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-25944 HIGH This Week

Uncontrolled search path element in some Intel(R) VCUST Tool software downloaded before February 3nd 2023 may allow an authenticated user to potentially enable escalation of privilege via local. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Vcust Tool
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-25775 CRITICAL Act Now

Improper access control in the Intel(R) Ethernet Controller RDMA driver for linux before version 1.9.30 may allow an unauthenticated user to potentially enable escalation of privilege via network. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Intel Authentication Bypass Ethernet Controller Rdma Driver For Linux
NVD
CVSS 3.1
9.8
EPSS
1.0%
CVE-2023-25773 HIGH This Week

Improper access control in the Intel(R) Unite(R) Hub software installer for Windows before version 4.2.34962 may allow an authenticated user to potentially enable escalation of privilege via local. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Microsoft Intel Authentication Bypass Unite
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-25757 HIGH This Week

Improper access control in some Intel(R) Unison(TM) software before version 10.12 may allow a privileged user to potentially enable escalation of privilege via network access. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Intel Authentication Bypass Unison
NVD
CVSS 3.1
7.2
EPSS
0.4%
CVE-2023-25182 HIGH This Week

Uncontrolled search path element in the Intel(R) Unite(R) Client software for Mac before version 4.2.11 may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Unite
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-24016 HIGH This Week

Uncontrolled search path element in some Intel(R) Quartus(R) Prime Pro and Standard edition software for linux may allow an authenticated user to potentially enable escalation of privilege via local. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Quartus Prime
NVD
CVSS 3.1
7.3
EPSS
0.2%
CVE-2023-23908 MEDIUM This Month

Improper access control in some 3rd Generation Intel(R) Xeon(R) Scalable processors may allow a privileged user to potentially enable information disclosure via local access. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Intel Authentication Bypass Microcode Debian Linux +137
NVD
CVSS 3.1
4.4
EPSS
0.3%
CVE-2023-23577 HIGH PATCH This Week

Uncontrolled search path element for some ITE Tech consumer infrared drivers before version 5.5.2.1 for Intel(R) NUC may allow an authenticated user to potentially enable escalation of privilege via. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity.

Privilege Escalation Intel Ite Tech Consumer Infrared Driver
NVD
CVSS 3.1
7.3
EPSS
0.2%
CVE-2023-22841 HIGH PATCH This Week

Unquoted search path in the software installer for the System Firmware Update Utility (SysFwUpdt) for some Intel(R) Server Boards and Intel(R) Server Systems Based on Intel(R) 621A Chipset before. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity.

Privilege Escalation Intel Server Firmware Update Utility
NVD
CVSS 3.1
7.3
EPSS
0.2%
CVE-2023-22840 MEDIUM This Month

Improper neutralization in software for the Intel(R) oneVPL GPU software before version 22.6.5 may allow an authenticated user to potentially enable denial of service via local access. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Intel Onevpl Gpu Runtime Fedora
NVD
CVSS 3.1
5.5
EPSS
0.4%
CVE-2023-22449 MEDIUM PATCH This Month

Improper input validation in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity.

Privilege Escalation Intel Nuc 13 Extreme Compute Element Nuc13Sbbi5 Firmware Nuc 13 Extreme Compute Element Nuc13Sbbi5F Firmware Nuc 13 Extreme Compute Element Nuc13Sbbi7 Firmware +152
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-22444 MEDIUM This Month

Improper initialization in some Intel(R) NUC 13 Extreme Compute Element, Intel(R) NUC 13 Extreme Kit, Intel(R) NUC 11 Performance Kit, Intel(R) NUC 11 Performance Mini PC, Intel(R) NUC Compute. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Intel Nuc 13 Extreme Compute Element Nuc13Sbbi7F Firmware Nuc 13 Extreme Compute Element Nuc13Sbbi5F Firmware Nuc 13 Extreme Compute Element Nuc13Sbbi9F Firmware +108
NVD
CVSS 3.1
4.4
EPSS
0.2%
CVE-2023-22356 MEDIUM PATCH This Month

Improper initialization in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity.

Information Disclosure Intel Nuc 7 Enthusiast Nuc7I7Bnkq Firmware Nuc 7 Enthusiast Nuc7I7Bnhxg Firmware Nuc Kit Nuc7I7Dnhe Firmware +208
NVD
CVSS 3.1
4.4
EPSS
0.2%
CVE-2023-22338 MEDIUM This Month

Out-of-bounds read in some Intel(R) oneVPL GPU software before version 22.6.5 may allow an authenticated user to potentially enable information disclosure via local access. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure Intel Onevpl Gpu Runtime Fedora
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2023-22330 MEDIUM PATCH This Month

Use of uninitialized resource in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity.

Information Disclosure Intel Nuc 11 Performance Kit Nuc11Pahi3 Firmware Nuc 11 Performance Kit Nuc11Pahi30Z Firmware Nuc 11 Performance Kit Nuc11Paki3 Firmware +85
NVD
CVSS 3.1
4.4
EPSS
0.2%
CVE-2023-22276 MEDIUM This Month

Race condition in firmware for some Intel(R) Ethernet Controllers and Adapters E810 Series before version 1.7.2.4 may allow an authenticated user to potentially enable denial of service via local. Rated medium severity (CVSS 4.7). No vendor patch available.

Denial Of Service Intel Ethernet Network Controller E810 Xxvam2 Firmware Ethernet Network Controller E810 Cam1 Firmware Ethernet Network Controller E810 Cam2 Firmware
NVD
CVSS 3.1
4.7
EPSS
0.1%
CVE-2023-36862 MEDIUM This Month

A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Apple Intel macOS
NVD
CVSS 3.1
5.5
EPSS
0.2%
CVE-2023-37479 HIGH PATCH This Week

Open Enclave is a hardware-agnostic open source library for developing applications that utilize Hardware-based Trusted Execution Environments, also known as Enclaves. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Intel Openenclave
NVD GitHub
CVSS 3.1
7.5
EPSS
0.6%
CVE-2023-31199 MEDIUM PATCH This Month

Improper access control in the Intel(R) Solid State Drive Toolbox(TM) before version 3.4.5 may allow a privileged user to potentially enable escalation of privilege via local access. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity.

Privilege Escalation Intel Authentication Bypass Solid State Drive Toolbox
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-31197 HIGH This Week

Uncontrolled search path in the Intel(R) Trace Analyzer and Collector before version 2020 update 3 may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Trace Analyzer And Collector
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-30768 MEDIUM This Month

Improper access control in the Intel(R) Server Board S2600WTT belonging to the Intel(R) Server Board S2600WT Family with the BIOS version 0016 may allow a privileged user to potentially enable. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Authentication Bypass Server Board S1200V3Rpl Firmware Server Board S1200V3Rpm Firmware +62
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-30763 MEDIUM PATCH This Month

Heap-based overflow in Intel(R) SoC Watch based software before version 2021.1 may allow a privileged user to potentially enable escalation of privilege via local access. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity.

Privilege Escalation Buffer Overflow Intel Heap Overflow Battery Life Diagnostic Tool +2
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-29242 HIGH This Week

Improper access control for Intel(R) oneAPI Toolkits before version 2021.1 Beta 10 may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Authentication Bypass Oneapi Ai Analytics Toolkit Oneapi Base Toolkit +4
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-28411 MEDIUM PATCH This Month

Double free in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local access. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Information Disclosure Intel Server System D50Tnp1Mhcrlc Firmware Server System D50Tnp1Mhcpac Firmware Server System D50Tnp2Mhsvac Firmware +7
NVD
CVSS 3.1
5.5
EPSS
0.2%
CVE-2023-28410 HIGH This Week

Improper restriction of operations within the bounds of a memory buffer in some Intel(R) i915 Graphics drivers for linux before kernel version 6.2.10 may allow an authenticated user to potentially. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Buffer Overflow Linux Intel I915 Graphics
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2023-27386 HIGH This Week

Uncontrolled search path in some Intel(R) Pathfinder for RISC-V software may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Pathfinder For Risc V
NVD
CVSS 3.1
7.3
EPSS
0.2%
CVE-2023-27382 HIGH This Week

Incorrect default permissions in the Audio Service for some Intel(R) NUC P14E Laptop Element software for Windows 10 before version 1.0.0.156 may allow an authenticated user to potentially enable. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Microsoft Nuc P14E Laptop Element
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-27298 HIGH This Week

Uncontrolled search path in the WULT software maintained by Intel(R) before version 1.0.0 (commit id 592300b) may allow an unauthenticated user to potentially enable escalation of privilege via. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Intel Wake Up Latency Tracer
NVD
CVSS 3.1
8.8
EPSS
0.7%
CVE-2023-25776 MEDIUM PATCH This Month

Improper input validation in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local access. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity.

Information Disclosure Intel Server System D50Tnp1Mhcrlc Firmware Server System D50Tnp1Mhcpac Firmware Server System D50Tnp2Mhsvac Firmware +7
NVD
CVSS 3.1
4.4
EPSS
0.2%
CVE-2023-25772 MEDIUM This Month

Improper input validation in the Intel(R) Retail Edge Mobile Android application before version 3.0.301126-RELEASE may allow an authenticated user to potentially enable denial of service via local. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Google Intel Retail Edge Program
NVD
CVSS 3.1
5.5
EPSS
0.2%
CVE-2023-25771 MEDIUM PATCH This Month

Improper access control for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable denial of service via local access. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Denial Of Service Intel Authentication Bypass Nuc 8 Compute Element Cm8I3Cb4N Firmware Nuc 8 Compute Element Cm8I5Cb8N Firmware +57
NVD
CVSS 3.1
5.5
EPSS
0.1%
CVE-2023-25545 MEDIUM PATCH This Month

Improper buffer restrictions in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable escalation of privilege via local access. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity.

Privilege Escalation Intel Server System D50Tnp1Mhcrlc Firmware Server System D50Tnp1Mhcpac Firmware Server System D50Tnp2Mhsvac Firmware +7
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-25179 MEDIUM This Month

Uncontrolled resource consumption in the Intel(R) Unite(R) android application before Release 17 may allow an authenticated user to potentially enable denial of service via local access. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Google Intel Unite
NVD
CVSS 3.1
5.5
EPSS
0.2%
CVE-2023-25175 MEDIUM PATCH This Month

Improper input validation in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local access. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Information Disclosure Intel Server System D50Tnp1Mhcrlc Firmware Server System D50Tnp1Mhcpac Firmware Server System D50Tnp2Mhsvac Firmware +7
NVD
CVSS 3.1
5.5
EPSS
0.2%
CVE-2023-24475 MEDIUM PATCH This Month

Out of bounds read in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local access. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Intel Server System D50Tnp1Mhcrlc Firmware Server System D50Tnp1Mhcpac Firmware +8
NVD
CVSS 3.1
4.4
EPSS
0.2%
CVE-2023-23910 HIGH This Week

Out-of-bounds write for some Intel(R) Trace Analyzer and Collector software before version 2021.8.0 published Dec 2022 may allow an authenticated user to potentially escalation of privilege via local. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Memory Corruption Buffer Overflow Privilege Escalation Intel Oneapi Hpc Toolkit +1
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-23909 MEDIUM This Month

Out-of-bounds read for some Intel(R) Trace Analyzer and Collector software before version 2021.8.0 published Dec 2022 may allow an authenticated user to potentially enable information disclosure via. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure Intel Oneapi Hpc Toolkit Trace Analyzer And Collector
NVD
CVSS 3.1
5.5
EPSS
0.2%
CVE-2023-23580 HIGH This Week

Stack-based buffer overflow for some Intel(R) Trace Analyzer and Collector software before version 2021.8.0 published Dec 2022 may allow an authenticated user to potentially escalation of privilege. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Stack Overflow Buffer Overflow Privilege Escalation Intel Oneapi Hpc Toolkit +1
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-23573 MEDIUM This Month

Improper access control in the Intel(R) Unite(R) android application before Release 17 may allow a privileged user to potentially enable information disclosure via local access. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Google Intel Authentication Bypass Unite
NVD
CVSS 3.1
4.4
EPSS
0.2%
CVE-2023-23569 HIGH This Week

Stack-based buffer overflow for some Intel(R) Trace Analyzer and Collector software before version 2021.8.0 published Dec 2022 may allow an authenticated user to potentially enable escalation of. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Stack Overflow Buffer Overflow Privilege Escalation Intel Oneapi Hpc Toolkit +1
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-22661 HIGH PATCH This Week

Buffer overflow in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. This Buffer Copy without Size Check vulnerability could allow attackers to overflow a buffer to corrupt adjacent memory.

Privilege Escalation Buffer Overflow Intel Server System D50Tnp1Mhcrlc Firmware Server System D50Tnp1Mhcpac Firmware +8
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-22447 MEDIUM This Month

Insertion of sensitive information into log file in the Open CAS software for Linux maintained by Intel before version 22.6.2 may allow a privileged user to potentially enable information disclosure. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Intel Open Cache Acceleration Software
NVD
CVSS 3.1
4.4
EPSS
0.2%
CVE-2023-22443 MEDIUM PATCH This Month

Integer overflow in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable denial of service via local access. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Denial Of Service Intel Server System D50Tnp1Mhcrlc Firmware Server System D50Tnp1Mhcpac Firmware Server System D50Tnp2Mhsvac Firmware +7
NVD
CVSS 3.1
5.5
EPSS
0.2%
CVE-2023-22442 HIGH PATCH This Week

Out of bounds write in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable escalation of privilege via local access. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Memory Corruption Buffer Overflow Privilege Escalation Intel Server System D50Tnp1Mhcrlc Firmware +9
NVD
CVSS 3.1
7.1
EPSS
0.2%
CVE-2023-22440 HIGH This Week

Incorrect default permissions in the Intel(R) SCS Add-on software installer for Microsoft SCCM all versions may allow an authenticated user to potentially enable escalation of privilege via local. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Microsoft Setup And Configuration Software
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-22379 MEDIUM PATCH This Month

Improper input validation in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local access. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Information Disclosure Intel Server System D50Tnp1Mhcrlc Firmware Server System D50Tnp1Mhcpac Firmware Server System D50Tnp2Mhsvac Firmware +7
NVD
CVSS 3.1
5.5
EPSS
0.2%
CVE-2023-22355 HIGH This Week

Uncontrolled search path in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.0.251 may allow an authenticated user to potentially enable escalation of privilege via. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Advisor Cpu Runtime Distribution For Python +26
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-22312 HIGH PATCH This Week

Improper access control for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Privilege Escalation Intel Authentication Bypass Nuc 11 Performance Kit Nuc11Pahi70Z Firmware Nuc 11 Performance Kit Nuc11Pahi50Z Firmware +39
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-22297 HIGH PATCH This Week

Access of memory location after end of buffer in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Privilege Escalation Intel Server System D50Tnp1Mhcrlc Firmware Server System D50Tnp1Mhcpac Firmware Server System D50Tnp2Mhsvac Firmware +7
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-23697 LOW PATCH Monitor

Dell Command | Intel vPro Out of Band, versions before 4.4.0, contain an arbitrary folder delete vulnerability during uninstallation. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity.

Information Disclosure Intel Dell Command Intel Vpro Out Of Band
NVD
CVSS 3.1
3.3
EPSS
0.2%
CVE-2023-23696 HIGH PATCH This Week

Dell Command Intel vPro Out of Band, versions prior to 4.3.1, contain an Improper Authorization vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Dell Intel Authentication Bypass Command Intel Vpro Out Of Band
NVD
CVSS 3.1
7.8
EPSS
0.5%
CVE-2022-35407 HIGH This Week

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Intel Memory Corruption RCE Buffer Overflow Kernel
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2022-29277 HIGH This Week

Incorrect pointer checks within the the FwBlockServiceSmm driver can allow arbitrary RAM modifications During review of the FwBlockServiceSmm driver, certain instances of SpiAccessLib could be. Rated high severity (CVSS 8.8), this vulnerability is low attack complexity. No vendor patch available.

Intel Memory Corruption Amd Buffer Overflow Genoa Firmware +38
NVD
CVSS 3.1
8.8
EPSS
0.2%
CVE-2022-30283 HIGH This Week

In UsbCoreDxe, tampering with the contents of the USB working buffer using DMA while certain USB transactions are in process leads to a TOCTOU problem that could be used by an attacker to cause SMRAM. Rated high severity (CVSS 7.5). No vendor patch available.

Intel Privilege Escalation Kernel
NVD
CVSS 3.1
7.5
EPSS
0.1%
CVE-2022-33985 HIGH This Week

DMA transactions which are targeted at input buffers used for the NvmExpressDxe software SMI handler could cause SMRAM corruption through a TOCTOU attack. Rated high severity (CVSS 7.0). No vendor patch available.

Intel Information Disclosure Kernel
NVD
CVSS 3.1
7.0
EPSS
0.1%
CVE-2022-33984 HIGH This Week

DMA transactions which are targeted at input buffers used for the SdMmcDevice software SMI handler could cause SMRAM corruption through a TOCTOU attack. Rated high severity (CVSS 7.0). No vendor patch available.

Intel Information Disclosure Kernel
NVD
CVSS 3.1
7.0
EPSS
0.2%
CVE-2022-33983 HIGH This Week

DMA transactions which are targeted at input buffers used for the NvmExpressLegacy software SMI handler could cause SMRAM corruption through a TOCTOU attack. Rated high severity (CVSS 7.0). No vendor patch available.

Intel Information Disclosure Kernel
NVD
CVSS 3.1
7.0
EPSS
0.2%
CVE-2022-33909 HIGH This Week

DMA transactions which are targeted at input buffers used for the HddPassword software SMI handler could cause SMRAM corruption through a TOCTOU attack. Rated high severity (CVSS 7.0). No vendor patch available.

Intel Information Disclosure Kernel
NVD
CVSS 3.1
7.0
EPSS
0.1%
CVE-2022-33908 HIGH This Week

DMA transactions which are targeted at input buffers used for the SdHostDriver software SMI handler could cause SMRAM corruption through a TOCTOU attack. Rated high severity (CVSS 7.0). No vendor patch available.

Intel Information Disclosure Kernel
NVD
CVSS 3.1
7.0
EPSS
0.1%
CVE-2022-33906 MEDIUM This Month

DMA transactions which are targeted at input buffers used for the FwBlockServiceSmm software SMI handler could cause SMRAM corruption through a TOCTOU attack. Rated medium severity (CVSS 6.4). No vendor patch available.

Intel Information Disclosure Kernel
NVD
CVSS 3.1
6.4
EPSS
0.2%
CVE-2022-33905 HIGH This Week

DMA transactions which are targeted at input buffers used for the AhciBusDxe software SMI handler could cause SMRAM corruption (a TOCTOU attack). Rated high severity (CVSS 7.0). No vendor patch available.

Intel Information Disclosure Kernel
NVD
CVSS 3.1
7.0
EPSS
0.1%
CVE-2022-31243 MEDIUM This Month

Update description and links DMA transactions which are targeted at input buffers used for the software SMI handler used by the FvbServicesRuntimeDxe driver could cause SMRAM corruption through a. Rated medium severity (CVSS 6.4). No vendor patch available.

Intel Information Disclosure Kernel
NVD
CVSS 3.1
6.4
EPSS
0.2%
CVE-2022-33907 MEDIUM This Month

DMA transactions which are targeted at input buffers used for the software SMI handler used by the IdeBusDxe driver could cause SMRAM corruption through a TOCTOU attack... Rated medium severity (CVSS 6.4). No vendor patch available.

Intel Information Disclosure Kernel
NVD
CVSS 3.1
6.4
EPSS
0.2%
CVE-2022-38099 HIGH This Week

Improper input validation in BIOS firmware for some Intel(R) NUC 11 Compute Elements before version EBTGL357.0065 may allow a privileged user to potentially enable escalation of privilege via local. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Intel Privilege Escalation Nuc 11 Compute Element Cm11Ebi38W Firmware Nuc 11 Compute Element Cm11Ebc4W Firmware Nuc 11 Compute Element Cm11Ebi58W Firmware +5
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2022-37345 HIGH PATCH This Week

Improper authentication in BIOS firmware[A1] for some Intel(R) NUC Kits before version RY0386 may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Intel Authentication Bypass Privilege Escalation Nuc Kit Nuc5I3Ryh Firmware Nuc Kit Nuc5I7Ryh Firmware +6
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2022-37334 HIGH PATCH This Week

Improper initialization in BIOS firmware for some Intel(R) NUC 11 Pro Kits and Intel(R) NUC 11 Pro Boards before version TNTGL357.0064 may allow an authenticated user to potentially enable escalation. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Intel Privilege Escalation Nuc 11 Pro Kit Nuc11Tnhi70Z Firmware Nuc 11 Pro Kit Nuc11Tnki70Z Firmware Nuc 11 Pro Kit Nuc11Tnki30Z Firmware +8
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2022-36789 HIGH This Week

Improper access control in BIOS firmware for some Intel(R) NUC 10 Performance Kits and Intel(R) NUC 10 Performance Mini PCs before version FNCML357.0053 may allow a privileged user to potentially. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Intel Authentication Bypass Privilege Escalation Nuc 10 Performance Kit Nuc10I7Fnhn Firmware Nuc 10 Performance Kit Nuc10I5Fnkn Firmware +24
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2022-36400 HIGH This Week

Path traversal in the installer software for some Intel(r) NUC Kit Wireless Adapter drivers for Windows 10 before version 22.40 may allow an authenticated user to potentially enable escalation of. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Path Traversal Microsoft Privilege Escalation Intel Nuc Kit Wireless Adapter Driver Installer
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2022-36384 HIGH This Week

Unquoted search path in the installer software for some Intel(r) NUC Kit Wireless Adapter drivers for Windows 10 before version 22.40 may allow an authenticated user to potentially enable escalation. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity. No vendor patch available.

Intel Microsoft Privilege Escalation Nuc Kit Wireless Adapter Driver Installer
NVD
CVSS 3.1
7.3
EPSS
0.2%
CVE-2022-36380 HIGH This Week

Uncontrolled search path in the installer software for some Intel(r) NUC Kit Wireless Adapter drivers for Windows 10 before version 22.40 may allow an authenticated user to potentially enable. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity. No vendor patch available.

Intel Microsoft Privilege Escalation Nuc Kit Wireless Adapter Driver Installer
NVD
CVSS 3.1
7.3
EPSS
0.2%
CVE-2022-36377 HIGH This Week

Insecure inherited permissions in some Intel(R) Wireless Adapter Driver installation software for Intel(R) NUC Kits & Mini PCs before version 22.190.0.3 for Windows may allow an authenticated user to. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Intel Microsoft Privilege Escalation Nuc Kit Wireless Adapter Driver Installer
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2022-36370 HIGH PATCH This Week

Improper authentication in BIOS firmware for some Intel(R) NUC Boards and Intel(R) NUC Kits before version MYi30060 may allow a privileged user to potentially enable escalation of privilege via local. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Intel Authentication Bypass Privilege Escalation Nuc Kit Nuc5I3Myhe Firmware Nuc Board Nuc5I3Mybe Firmware
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2022-36367 MEDIUM This Month

Incorrect default permissions in the Intel(R) Support Android application before version v22.02.28 may allow a privileged user to potentially enable information disclosure via local access. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. No vendor patch available.

Intel Information Disclosure Google Privilege Escalation Support
NVD
CVSS 3.1
4.4
EPSS
0.2%
CVE-2022-36349 MEDIUM PATCH This Month

Insecure default variable initialization in BIOS firmware for some Intel(R) NUC Boards and Intel(R) NUC Kits before version MYi30060 may allow an authenticated user to potentially enable denial of. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Intel Denial Of Service Nuc Board Nuc5I3Mybe Firmware Nuc Kit Nuc5I3Myhe Firmware
NVD
CVSS 3.1
5.5
EPSS
0.2%
CVE-2022-35276 MEDIUM PATCH This Month

Improper access control in BIOS firmware for some Intel(R) NUC 8 Compute Elements before version CBWHL357.0096 may allow a privileged user to potentially enable escalation of privilege via local. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity.

Intel Authentication Bypass Privilege Escalation Nuc 8 Compute Element Cm8I7Cb Firmware Nuc 8 Compute Element Cm8I3Cb Firmware +3
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2022-34152 MEDIUM PATCH This Month

Improper input validation in BIOS firmware for some Intel(R) NUC Boards, Intel(R) NUC Kits before version TY0070 may allow a privileged user to potentially enable escalation of privilege via local. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity.

Intel Privilege Escalation Nuc Board De3815Tybe Firmware Nuc Kit De3815Tykhe Firmware
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2022-33973 LOW Monitor

Improper access control in the Intel(R) WAPI Security software for Windows 10/11 before version 22.2150.0.1 may allow an authenticated user to potentially enable information disclosure via local. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Intel Information Disclosure Microsoft Wlan Authentication And Privacy Infrastructure
NVD
CVSS 3.1
3.3
EPSS
0.2%
CVE-2022-33942 HIGH This Week

Protection mechanism failure in the Intel(R) DCM software before version 5.0 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Intel Privilege Escalation Data Center Manager
NVD
CVSS 3.1
8.8
EPSS
0.5%
CVE-2022-33176 MEDIUM PATCH This Month

Improper input validation in BIOS firmware for some Intel(R) NUC 11 Performance kits and Intel(R) NUC 11 Performance Mini PCs before version PATGL357.0042 may allow a privileged user to potentially. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity.

Intel Privilege Escalation Nuc 11 Performance Kit Nuc11Pahi30Z Firmware Nuc 11 Performance Kit Nuc11Pahi50Z Firmware Nuc 11 Performance Kit Nuc11Pahi70Z Firmware +8
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2022-32569 MEDIUM PATCH This Month

Improper buffer restrictions in BIOS firmware for some Intel(R) NUC M15 Laptop Kits before version BCTGL357.0074 may allow a privileged user to potentially enable escalation of privilege via local. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Intel Privilege Escalation Buffer Overflow Nuc M15 Laptop Kit Lapbc510 Firmware Nuc M15 Laptop Kit Lapbc710 Firmware
NVD
CVSS 3.1
6.7
EPSS
0.2%
EPSS 0% CVSS 6.7
MEDIUM This Month

Improper authorization in the Intel(R) NUC Pro Software Suite for Windows before version 2.0.0.9 may allow a privileged user to potentially enable escalation of privilage via local access. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Microsoft Intel Authentication Bypass +1
NVD
EPSS 1% CVSS 8.8
HIGH This Week

Uncontrolled search path for the Intel(R) AI Hackathon software before version 2.0.0 may allow an unauthenticated user to potentially enable escalation of privilege via network access. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Intel Ai Hackathon
NVD
EPSS 0% CVSS 4.4
MEDIUM This Month

Improper initialization in BIOS firmware for some Intel(R) NUCs may allow a privileged user to potentially enable information disclosure via local access. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Intel Nuc 11 Pro Kit Nuc11Tnhi70Z Firmware +23
NVD
EPSS 0% CVSS 9.6
CRITICAL PATCH Act Now

Cross-site scripting (XSS) for the Intel(R) DSA software before version 23.1.9 may allow unauthenticated user to potentially enable escalation of privilege via network access. Rated critical severity (CVSS 9.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Privilege Escalation XSS Intel +1
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Improper access control in some Intel(R) ISPC software installers before version 1.19.0 may allow an authenticated user to potentially enable escalation of privileges via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Intel Authentication Bypass Ispc Software Installer
NVD
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Improper buffer restrictions in the Intel(R) Optimization for Tensorflow software before version 2.12 may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Optimization For Tensorflow
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Incorrect default permissions in some Intel(R) Advanced Link Analyzer Standard Edition software installers before version 22.1 .1 may allow an authenticated user to potentially enable escalation of. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Advanced Link Analyzer
NVD
EPSS 0% CVSS 4.4
MEDIUM This Month

Incorrect default permissions in the Intel(R) Support android application before version v23.02.07 may allow a privileged user to potentially enable information disclosure via local access. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Information Disclosure Google +2
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Improper access control in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.1.493 may allow a privileged user to potentially enable escalation of privilege via local. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Authentication Bypass +29
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Improper input validation for the Intel(R) Easy Streaming Wizard software may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Easy Streaming Wizard
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Uncontrolled search path element in some Intel(R) VCUST Tool software downloaded before February 3nd 2023 may allow an authenticated user to potentially enable escalation of privilege via local. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Vcust Tool
NVD
EPSS 1% CVSS 9.8
CRITICAL Act Now

Improper access control in the Intel(R) Ethernet Controller RDMA driver for linux before version 1.9.30 may allow an unauthenticated user to potentially enable escalation of privilege via network. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Intel Authentication Bypass +1
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Improper access control in the Intel(R) Unite(R) Hub software installer for Windows before version 4.2.34962 may allow an authenticated user to potentially enable escalation of privilege via local. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Microsoft Intel +2
NVD
EPSS 0% CVSS 7.2
HIGH This Week

Improper access control in some Intel(R) Unison(TM) software before version 10.12 may allow a privileged user to potentially enable escalation of privilege via network access. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Intel Authentication Bypass +1
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Uncontrolled search path element in the Intel(R) Unite(R) Client software for Mac before version 4.2.11 may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Unite
NVD
EPSS 0% CVSS 7.3
HIGH This Week

Uncontrolled search path element in some Intel(R) Quartus(R) Prime Pro and Standard edition software for linux may allow an authenticated user to potentially enable escalation of privilege via local. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Quartus Prime
NVD
EPSS 0% CVSS 4.4
MEDIUM This Month

Improper access control in some 3rd Generation Intel(R) Xeon(R) Scalable processors may allow a privileged user to potentially enable information disclosure via local access. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Intel Authentication Bypass +139
NVD
EPSS 0% CVSS 7.3
HIGH PATCH This Week

Uncontrolled search path element for some ITE Tech consumer infrared drivers before version 5.5.2.1 for Intel(R) NUC may allow an authenticated user to potentially enable escalation of privilege via. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity.

Privilege Escalation Intel Ite Tech Consumer Infrared Driver
NVD
EPSS 0% CVSS 7.3
HIGH PATCH This Week

Unquoted search path in the software installer for the System Firmware Update Utility (SysFwUpdt) for some Intel(R) Server Boards and Intel(R) Server Systems Based on Intel(R) 621A Chipset before. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity.

Privilege Escalation Intel Server Firmware Update Utility
NVD
EPSS 0% CVSS 5.5
MEDIUM This Month

Improper neutralization in software for the Intel(R) oneVPL GPU software before version 22.6.5 may allow an authenticated user to potentially enable denial of service via local access. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Intel Onevpl Gpu Runtime +1
NVD
EPSS 0% CVSS 6.7
MEDIUM PATCH This Month

Improper input validation in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity.

Privilege Escalation Intel Nuc 13 Extreme Compute Element Nuc13Sbbi5 Firmware +154
NVD
EPSS 0% CVSS 4.4
MEDIUM This Month

Improper initialization in some Intel(R) NUC 13 Extreme Compute Element, Intel(R) NUC 13 Extreme Kit, Intel(R) NUC 11 Performance Kit, Intel(R) NUC 11 Performance Mini PC, Intel(R) NUC Compute. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Intel Nuc 13 Extreme Compute Element Nuc13Sbbi7F Firmware +110
NVD
EPSS 0% CVSS 4.4
MEDIUM PATCH This Month

Improper initialization in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity.

Information Disclosure Intel Nuc 7 Enthusiast Nuc7I7Bnkq Firmware +210
NVD
EPSS 0% CVSS 5.5
MEDIUM This Month

Out-of-bounds read in some Intel(R) oneVPL GPU software before version 22.6.5 may allow an authenticated user to potentially enable information disclosure via local access. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure Intel +2
NVD
EPSS 0% CVSS 4.4
MEDIUM PATCH This Month

Use of uninitialized resource in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity.

Information Disclosure Intel Nuc 11 Performance Kit Nuc11Pahi3 Firmware +87
NVD
EPSS 0% CVSS 4.7
MEDIUM This Month

Race condition in firmware for some Intel(R) Ethernet Controllers and Adapters E810 Series before version 1.7.2.4 may allow an authenticated user to potentially enable denial of service via local. Rated medium severity (CVSS 4.7). No vendor patch available.

Denial Of Service Intel Ethernet Network Controller E810 Xxvam2 Firmware +2
NVD
EPSS 0% CVSS 5.5
MEDIUM This Month

A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Apple Intel +1
NVD
EPSS 1% CVSS 7.5
HIGH PATCH This Week

Open Enclave is a hardware-agnostic open source library for developing applications that utilize Hardware-based Trusted Execution Environments, also known as Enclaves. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Intel Openenclave
NVD GitHub
EPSS 0% CVSS 6.7
MEDIUM PATCH This Month

Improper access control in the Intel(R) Solid State Drive Toolbox(TM) before version 3.4.5 may allow a privileged user to potentially enable escalation of privilege via local access. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity.

Privilege Escalation Intel Authentication Bypass +1
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Uncontrolled search path in the Intel(R) Trace Analyzer and Collector before version 2020 update 3 may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Trace Analyzer And Collector
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Improper access control in the Intel(R) Server Board S2600WTT belonging to the Intel(R) Server Board S2600WT Family with the BIOS version 0016 may allow a privileged user to potentially enable. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Authentication Bypass +64
NVD
EPSS 0% CVSS 6.7
MEDIUM PATCH This Month

Heap-based overflow in Intel(R) SoC Watch based software before version 2021.1 may allow a privileged user to potentially enable escalation of privilege via local access. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity.

Privilege Escalation Buffer Overflow Intel +4
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Improper access control for Intel(R) oneAPI Toolkits before version 2021.1 Beta 10 may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Authentication Bypass +6
NVD
EPSS 0% CVSS 5.5
MEDIUM PATCH This Month

Double free in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local access. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Information Disclosure Intel Server System D50Tnp1Mhcrlc Firmware +9
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Improper restriction of operations within the bounds of a memory buffer in some Intel(R) i915 Graphics drivers for linux before kernel version 6.2.10 may allow an authenticated user to potentially. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Buffer Overflow Linux +2
NVD
EPSS 0% CVSS 7.3
HIGH This Week

Uncontrolled search path in some Intel(R) Pathfinder for RISC-V software may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Pathfinder For Risc V
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Incorrect default permissions in the Audio Service for some Intel(R) NUC P14E Laptop Element software for Windows 10 before version 1.0.0.156 may allow an authenticated user to potentially enable. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Microsoft +1
NVD
EPSS 1% CVSS 8.8
HIGH This Week

Uncontrolled search path in the WULT software maintained by Intel(R) before version 1.0.0 (commit id 592300b) may allow an unauthenticated user to potentially enable escalation of privilege via. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Intel Wake Up Latency Tracer
NVD
EPSS 0% CVSS 4.4
MEDIUM PATCH This Month

Improper input validation in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local access. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity.

Information Disclosure Intel Server System D50Tnp1Mhcrlc Firmware +9
NVD
EPSS 0% CVSS 5.5
MEDIUM This Month

Improper input validation in the Intel(R) Retail Edge Mobile Android application before version 3.0.301126-RELEASE may allow an authenticated user to potentially enable denial of service via local. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Google Intel +1
NVD
EPSS 0% CVSS 5.5
MEDIUM PATCH This Month

Improper access control for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable denial of service via local access. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Denial Of Service Intel Authentication Bypass +59
NVD
EPSS 0% CVSS 6.7
MEDIUM PATCH This Month

Improper buffer restrictions in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable escalation of privilege via local access. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity.

Privilege Escalation Intel Server System D50Tnp1Mhcrlc Firmware +9
NVD
EPSS 0% CVSS 5.5
MEDIUM This Month

Uncontrolled resource consumption in the Intel(R) Unite(R) android application before Release 17 may allow an authenticated user to potentially enable denial of service via local access. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Google Intel +1
NVD
EPSS 0% CVSS 5.5
MEDIUM PATCH This Month

Improper input validation in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local access. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Information Disclosure Intel Server System D50Tnp1Mhcrlc Firmware +9
NVD
EPSS 0% CVSS 4.4
MEDIUM PATCH This Month

Out of bounds read in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local access. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Intel +10
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Out-of-bounds write for some Intel(R) Trace Analyzer and Collector software before version 2021.8.0 published Dec 2022 may allow an authenticated user to potentially escalation of privilege via local. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Memory Corruption Buffer Overflow Privilege Escalation +3
NVD
EPSS 0% CVSS 5.5
MEDIUM This Month

Out-of-bounds read for some Intel(R) Trace Analyzer and Collector software before version 2021.8.0 published Dec 2022 may allow an authenticated user to potentially enable information disclosure via. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure Intel +2
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Stack-based buffer overflow for some Intel(R) Trace Analyzer and Collector software before version 2021.8.0 published Dec 2022 may allow an authenticated user to potentially escalation of privilege. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Stack Overflow Buffer Overflow Privilege Escalation +3
NVD
EPSS 0% CVSS 4.4
MEDIUM This Month

Improper access control in the Intel(R) Unite(R) android application before Release 17 may allow a privileged user to potentially enable information disclosure via local access. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Google Intel +2
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Stack-based buffer overflow for some Intel(R) Trace Analyzer and Collector software before version 2021.8.0 published Dec 2022 may allow an authenticated user to potentially enable escalation of. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Stack Overflow Buffer Overflow Privilege Escalation +3
NVD
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Buffer overflow in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. This Buffer Copy without Size Check vulnerability could allow attackers to overflow a buffer to corrupt adjacent memory.

Privilege Escalation Buffer Overflow Intel +10
NVD
EPSS 0% CVSS 4.4
MEDIUM This Month

Insertion of sensitive information into log file in the Open CAS software for Linux maintained by Intel before version 22.6.2 may allow a privileged user to potentially enable information disclosure. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Intel Open Cache Acceleration Software
NVD
EPSS 0% CVSS 5.5
MEDIUM PATCH This Month

Integer overflow in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable denial of service via local access. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Denial Of Service Intel Server System D50Tnp1Mhcrlc Firmware +9
NVD
EPSS 0% CVSS 7.1
HIGH PATCH This Week

Out of bounds write in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable escalation of privilege via local access. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Memory Corruption Buffer Overflow Privilege Escalation +11
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Incorrect default permissions in the Intel(R) SCS Add-on software installer for Microsoft SCCM all versions may allow an authenticated user to potentially enable escalation of privilege via local. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Microsoft +1
NVD
EPSS 0% CVSS 5.5
MEDIUM PATCH This Month

Improper input validation in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local access. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Information Disclosure Intel Server System D50Tnp1Mhcrlc Firmware +9
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Uncontrolled search path in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.0.251 may allow an authenticated user to potentially enable escalation of privilege via. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Advisor +28
NVD
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Improper access control for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Privilege Escalation Intel Authentication Bypass +41
NVD
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Access of memory location after end of buffer in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Privilege Escalation Intel Server System D50Tnp1Mhcrlc Firmware +9
NVD
EPSS 0% CVSS 3.3
LOW PATCH Monitor

Dell Command | Intel vPro Out of Band, versions before 4.4.0, contain an arbitrary folder delete vulnerability during uninstallation. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity.

Information Disclosure Intel Dell +1
NVD
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Dell Command Intel vPro Out of Band, versions prior to 4.3.1, contain an Improper Authorization vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Dell Intel Authentication Bypass +1
NVD
EPSS 0% CVSS 7.8
HIGH This Week

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Intel Memory Corruption RCE +2
NVD
EPSS 0% CVSS 8.8
HIGH This Week

Incorrect pointer checks within the the FwBlockServiceSmm driver can allow arbitrary RAM modifications During review of the FwBlockServiceSmm driver, certain instances of SpiAccessLib could be. Rated high severity (CVSS 8.8), this vulnerability is low attack complexity. No vendor patch available.

Intel Memory Corruption Amd +40
NVD
EPSS 0% CVSS 7.5
HIGH This Week

In UsbCoreDxe, tampering with the contents of the USB working buffer using DMA while certain USB transactions are in process leads to a TOCTOU problem that could be used by an attacker to cause SMRAM. Rated high severity (CVSS 7.5). No vendor patch available.

Intel Privilege Escalation Kernel
NVD
EPSS 0% CVSS 7.0
HIGH This Week

DMA transactions which are targeted at input buffers used for the NvmExpressDxe software SMI handler could cause SMRAM corruption through a TOCTOU attack. Rated high severity (CVSS 7.0). No vendor patch available.

Intel Information Disclosure Kernel
NVD
EPSS 0% CVSS 7.0
HIGH This Week

DMA transactions which are targeted at input buffers used for the SdMmcDevice software SMI handler could cause SMRAM corruption through a TOCTOU attack. Rated high severity (CVSS 7.0). No vendor patch available.

Intel Information Disclosure Kernel
NVD
EPSS 0% CVSS 7.0
HIGH This Week

DMA transactions which are targeted at input buffers used for the NvmExpressLegacy software SMI handler could cause SMRAM corruption through a TOCTOU attack. Rated high severity (CVSS 7.0). No vendor patch available.

Intel Information Disclosure Kernel
NVD
EPSS 0% CVSS 7.0
HIGH This Week

DMA transactions which are targeted at input buffers used for the HddPassword software SMI handler could cause SMRAM corruption through a TOCTOU attack. Rated high severity (CVSS 7.0). No vendor patch available.

Intel Information Disclosure Kernel
NVD
EPSS 0% CVSS 7.0
HIGH This Week

DMA transactions which are targeted at input buffers used for the SdHostDriver software SMI handler could cause SMRAM corruption through a TOCTOU attack. Rated high severity (CVSS 7.0). No vendor patch available.

Intel Information Disclosure Kernel
NVD
EPSS 0% CVSS 6.4
MEDIUM This Month

DMA transactions which are targeted at input buffers used for the FwBlockServiceSmm software SMI handler could cause SMRAM corruption through a TOCTOU attack. Rated medium severity (CVSS 6.4). No vendor patch available.

Intel Information Disclosure Kernel
NVD
EPSS 0% CVSS 7.0
HIGH This Week

DMA transactions which are targeted at input buffers used for the AhciBusDxe software SMI handler could cause SMRAM corruption (a TOCTOU attack). Rated high severity (CVSS 7.0). No vendor patch available.

Intel Information Disclosure Kernel
NVD
EPSS 0% CVSS 6.4
MEDIUM This Month

Update description and links DMA transactions which are targeted at input buffers used for the software SMI handler used by the FvbServicesRuntimeDxe driver could cause SMRAM corruption through a. Rated medium severity (CVSS 6.4). No vendor patch available.

Intel Information Disclosure Kernel
NVD
EPSS 0% CVSS 6.4
MEDIUM This Month

DMA transactions which are targeted at input buffers used for the software SMI handler used by the IdeBusDxe driver could cause SMRAM corruption through a TOCTOU attack... Rated medium severity (CVSS 6.4). No vendor patch available.

Intel Information Disclosure Kernel
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Improper input validation in BIOS firmware for some Intel(R) NUC 11 Compute Elements before version EBTGL357.0065 may allow a privileged user to potentially enable escalation of privilege via local. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Intel Privilege Escalation Nuc 11 Compute Element Cm11Ebi38W Firmware +7
NVD
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Improper authentication in BIOS firmware[A1] for some Intel(R) NUC Kits before version RY0386 may allow an authenticated user to potentially enable escalation of privilege via local access. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Intel Authentication Bypass Privilege Escalation +8
NVD
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Improper initialization in BIOS firmware for some Intel(R) NUC 11 Pro Kits and Intel(R) NUC 11 Pro Boards before version TNTGL357.0064 may allow an authenticated user to potentially enable escalation. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Intel Privilege Escalation Nuc 11 Pro Kit Nuc11Tnhi70Z Firmware +10
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Improper access control in BIOS firmware for some Intel(R) NUC 10 Performance Kits and Intel(R) NUC 10 Performance Mini PCs before version FNCML357.0053 may allow a privileged user to potentially. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Intel Authentication Bypass Privilege Escalation +26
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Path traversal in the installer software for some Intel(r) NUC Kit Wireless Adapter drivers for Windows 10 before version 22.40 may allow an authenticated user to potentially enable escalation of. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Path Traversal Microsoft Privilege Escalation +2
NVD
EPSS 0% CVSS 7.3
HIGH This Week

Unquoted search path in the installer software for some Intel(r) NUC Kit Wireless Adapter drivers for Windows 10 before version 22.40 may allow an authenticated user to potentially enable escalation. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity. No vendor patch available.

Intel Microsoft Privilege Escalation +1
NVD
EPSS 0% CVSS 7.3
HIGH This Week

Uncontrolled search path in the installer software for some Intel(r) NUC Kit Wireless Adapter drivers for Windows 10 before version 22.40 may allow an authenticated user to potentially enable. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity. No vendor patch available.

Intel Microsoft Privilege Escalation +1
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Insecure inherited permissions in some Intel(R) Wireless Adapter Driver installation software for Intel(R) NUC Kits & Mini PCs before version 22.190.0.3 for Windows may allow an authenticated user to. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Intel Microsoft Privilege Escalation +1
NVD
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Improper authentication in BIOS firmware for some Intel(R) NUC Boards and Intel(R) NUC Kits before version MYi30060 may allow a privileged user to potentially enable escalation of privilege via local. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Intel Authentication Bypass Privilege Escalation +2
NVD
EPSS 0% CVSS 4.4
MEDIUM This Month

Incorrect default permissions in the Intel(R) Support Android application before version v22.02.28 may allow a privileged user to potentially enable information disclosure via local access. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. No vendor patch available.

Intel Information Disclosure Google +2
NVD
EPSS 0% CVSS 5.5
MEDIUM PATCH This Month

Insecure default variable initialization in BIOS firmware for some Intel(R) NUC Boards and Intel(R) NUC Kits before version MYi30060 may allow an authenticated user to potentially enable denial of. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Intel Denial Of Service Nuc Board Nuc5I3Mybe Firmware +1
NVD
EPSS 0% CVSS 6.7
MEDIUM PATCH This Month

Improper access control in BIOS firmware for some Intel(R) NUC 8 Compute Elements before version CBWHL357.0096 may allow a privileged user to potentially enable escalation of privilege via local. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity.

Intel Authentication Bypass Privilege Escalation +5
NVD
EPSS 0% CVSS 6.7
MEDIUM PATCH This Month

Improper input validation in BIOS firmware for some Intel(R) NUC Boards, Intel(R) NUC Kits before version TY0070 may allow a privileged user to potentially enable escalation of privilege via local. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity.

Intel Privilege Escalation Nuc Board De3815Tybe Firmware +1
NVD
EPSS 0% CVSS 3.3
LOW Monitor

Improper access control in the Intel(R) WAPI Security software for Windows 10/11 before version 22.2150.0.1 may allow an authenticated user to potentially enable information disclosure via local. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Intel Information Disclosure Microsoft +1
NVD
EPSS 1% CVSS 8.8
HIGH This Week

Protection mechanism failure in the Intel(R) DCM software before version 5.0 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Intel Privilege Escalation Data Center Manager
NVD
EPSS 0% CVSS 6.7
MEDIUM PATCH This Month

Improper input validation in BIOS firmware for some Intel(R) NUC 11 Performance kits and Intel(R) NUC 11 Performance Mini PCs before version PATGL357.0042 may allow a privileged user to potentially. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity.

Intel Privilege Escalation Nuc 11 Performance Kit Nuc11Pahi30Z Firmware +10
NVD
EPSS 0% CVSS 6.7
MEDIUM PATCH This Month

Improper buffer restrictions in BIOS firmware for some Intel(R) NUC M15 Laptop Kits before version BCTGL357.0074 may allow a privileged user to potentially enable escalation of privilege via local. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Intel Privilege Escalation Buffer Overflow +2
NVD
Prev Page 9 of 19 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy