Filtered by vendor Intel
Subscribe
Total
1512 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2018-12158 | 1 Intel | 1 Next Unit Of Computing Firmware | 2024-02-04 | 5.6 MEDIUM | 6.0 MEDIUM |
| Insufficient input validation in BIOS update utility in Intel NUC FW kits downloaded before May 24, 2018 may allow a privileged user to potentially trigger a denial of service or information disclosure via local access. | |||||
| CVE-2018-12131 | 1 Intel | 3 Client Nvme, Datacenter Nvme, Rapid Storage Technology | 2024-02-04 | 4.6 MEDIUM | 7.8 HIGH |
| Permissions in the driver pack installers for Intel NVMe before version 4.0.0.1007 and Intel RSTe before version 4.7.0.2083 may allow an authenticated user to potentially escalate privilege via local access. | |||||
| CVE-2019-0104 | 1 Intel | 1 Data Center Manager | 2024-02-04 | 2.1 LOW | 5.5 MEDIUM |
| Insufficient file protection in uninstall routine for Intel(R) Data Center Manager SDK before version 5.0.2 may allow an authenticated user to potentially enable information disclosure via local access. | |||||
| CVE-2018-12152 | 1 Intel | 1 Graphics Driver | 2024-02-04 | 4.6 MEDIUM | 7.8 HIGH |
| Pointer corruption in Unified Shader Compiler in Intel Graphics Drivers before 10.18.x.5056 (aka 15.33.x.5056), 10.18.x.5057 (aka 15.36.x.5057) and 20.19.x.5058 (aka 15.40.x.5058) may allow an unauthenticated remote user to potentially execute arbitrary WebGL code via local access. | |||||
| CVE-2018-12151 | 1 Intel | 1 Extreme Tuning Utility | 2024-02-04 | 2.1 LOW | 5.5 MEDIUM |
| Buffer overflow in installer for Intel Extreme Tuning Utility before 6.4.1.21 may allow an authenticated user to potentially cause a buffer overflow potentially leading to a denial of service via local access. | |||||
| CVE-2018-3686 | 1 Intel | 1 Sa-00086 Detection Tool | 2024-02-04 | 4.6 MEDIUM | 6.7 MEDIUM |
| Code injection vulnerability in INTEL-SA-00086 Detection Tool before version 1.2.7.0 may allow a privileged user to potentially execute arbitrary code via local access. | |||||
| CVE-2018-3615 | 1 Intel | 30 Core I3, Core I5, Core I7 and 27 more | 2024-02-04 | 5.4 MEDIUM | 6.4 MEDIUM |
| Systems with microprocessors utilizing speculative execution and Intel software guard extensions (Intel SGX) may allow unauthorized disclosure of information residing in the L1 data cache from an enclave to an attacker with local user access via a side-channel analysis. | |||||
| CVE-2018-3655 | 1 Intel | 3 Converged Security Management Engine Firmware, Server Platform Services Firmware, Trusted Execution Engine Firmware | 2024-02-04 | 3.6 LOW | 7.3 HIGH |
| A vulnerability in a subsystem in Intel CSME before version 11.21.55, Intel Server Platform Services before version 4.0 and Intel Trusted Execution Engine Firmware before version 3.1.55 may allow an unauthenticated user to potentially modify or disclose information via physical access. | |||||
| CVE-2018-12193 | 1 Intel | 1 Quickassist Technology | 2024-02-04 | 2.1 LOW | 5.5 MEDIUM |
| Insufficient access control in driver stack for Intel QuickAssist Technology for Linux before version 4.2 may allow an unprivileged user to potentially disclose information via local access. | |||||
| CVE-2019-0102 | 1 Intel | 1 Data Center Manager | 2024-02-04 | 5.8 MEDIUM | 8.8 HIGH |
| Insufficient session authentication in web server for Intel(R) Data Center Manager SDK before version 5.0.2 may allow an unauthenticated user to potentially enable escalation of privilege via network access. | |||||
| CVE-2019-0105 | 1 Intel | 1 Data Center Manager | 2024-02-04 | 4.6 MEDIUM | 7.8 HIGH |
| Insufficient file permissions checking in install routine for Intel(R) Data Center Manager SDK before version 5.0.2 may allow authenticated user to potentially enable escalation of privilege via local access. | |||||
| CVE-2018-3704 | 1 Intel | 2 Parallel Studio, Parallel Studio Xe | 2024-02-04 | 4.6 MEDIUM | 7.8 HIGH |
| Improper directory permissions in the installer for the Intel Parallel Studio before 2019 Gold may allow authenticated users to potentially enable an escalation of privilege via local access. | |||||
| CVE-2018-3699 | 1 Intel | 1 Raid Web Console 3 | 2024-02-04 | 4.3 MEDIUM | 6.1 MEDIUM |
| Cross-site scripting in the Intel RAID Web Console v3 for Windows may allow an unauthenticated user to elevate privilege via remote access. | |||||
| CVE-2018-3671 | 1 Intel | 1 Saffron Memorybase | 2024-02-04 | 2.7 LOW | 5.7 MEDIUM |
| Escalation of privilege in Intel Saffron admin application before 11.4 allows an authenticated user to access unauthorized information. | |||||
| CVE-2018-3687 | 1 Intel | 1 Quartus Ii Programmer And Tools | 2024-02-04 | 4.6 MEDIUM | 7.8 HIGH |
| Unquoted service paths in Intel Quartus II Programmer and Tools in versions 11.0 - 15.0 allow a local attacker to potentially execute arbitrary code. | |||||
| CVE-2018-3688 | 1 Intel | 1 Quartus Prime Programmer And Tools | 2024-02-04 | 4.6 MEDIUM | 7.8 HIGH |
| Unquoted service paths in Intel Quartus Prime Programmer and Tools in versions 15.1 - 18.0 allow a local attacker to potentially execute arbitrary code. | |||||
| CVE-2017-5704 | 1 Intel | 3 Core I3, Core I5, Core I7 | 2024-02-04 | 2.1 LOW | 6.7 MEDIUM |
| Platform sample code firmware included with 4th Gen Intel Core Processor, 5th Gen Intel Core Processor, 6th Gen Intel Core Processor, and 7th Gen Intel Core Processor potentially exposes password information in memory to a local attacker with administrative privileges. | |||||
| CVE-2018-3634 | 1 Intel | 1 Online Connect Access | 2024-02-04 | 4.9 MEDIUM | 5.5 MEDIUM |
| Parameter corruption in NDIS filter driver in Intel Online Connect Access 1.9.22.0 allows an attacker to cause a denial of service via local access. | |||||
| CVE-2017-5736 | 1 Intel | 1 Software Guard Extensions Platform Software Component | 2024-02-04 | 7.2 HIGH | 8.8 HIGH |
| An elevation of privilege in Intel Software Guard Extensions Platform Software Component before 1.9.105.42329 allows a local attacker to execute arbitrary code as administrator. | |||||
| CVE-2018-3649 | 1 Intel | 18 Dual Band Wireless-ac 3160, Dual Band Wireless-ac 3165, Dual Band Wireless-ac 3168 and 15 more | 2024-02-04 | 4.6 MEDIUM | 7.8 HIGH |
| DLL injection vulnerability in the installation executables (Autorun.exe and Setup.exe) for Intel's wireless drivers and related software in Intel Dual Band Wireless-AC, Tri-Band Wireless-AC and Wireless-AC family of products allows a local attacker to cause escalation of privilege via remote code execution. | |||||