Vulnerabilities (CVE)

Filtered by vendor Intel Subscribe
Total 1594 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-0101 1 Intel 1 Unite 2024-02-28 7.5 HIGH 9.8 CRITICAL
Authentication bypass in the Intel Unite(R) solution versions 3.2 through 3.3 may allow an unauthenticated user to potentially enable escalation of privilege to the Intel Unite(R) Solution administrative portal via network access.
CVE-2018-3643 1 Intel 2 Converged Security Management Engine Firmware, Server Platform Services Firmware 2024-02-28 4.6 MEDIUM 8.2 HIGH
A vulnerability in Power Management Controller firmware in systems using specific Intel(R) Converged Security and Management Engine (CSME) before version 11.8.55, 11.11.55, 11.21.55, 12.0.6 or Intel(R) Server Platform Services firmware before version 4.x.04 may allow an attacker with administrative privileges to uncover certain platform secrets via local access or to potentially execute arbitrary code.
CVE-2018-3657 2 Intel, Siemens 25 Active Management Technology Firmware, Converged Security Management Engine Firmware, Manageability Engine Firmware and 22 more 2024-02-28 7.2 HIGH 6.7 MEDIUM
Multiple buffer overflows in Intel AMT in Intel CSME firmware versions before version 12.0.5 may allow a privileged user to potentially execute arbitrary code with Intel AMT execution privilege via local access.
CVE-2019-0102 1 Intel 1 Data Center Manager 2024-02-28 5.8 MEDIUM 8.8 HIGH
Insufficient session authentication in web server for Intel(R) Data Center Manager SDK before version 5.0.2 may allow an unauthenticated user to potentially enable escalation of privilege via network access.
CVE-2018-3703 2 Intel, Microsoft 2 Ssd Data Center Tool, Windows 2024-02-28 4.6 MEDIUM 7.8 HIGH
Improper directory permissions in the installer for the Intel(R) SSD Data Center Tool for Windows before v3.0.17 may allow authenticated users to potentially enable an escalation of privilege via local access.
CVE-2018-10932 1 Intel 1 Lldptool 2024-02-28 3.3 LOW 4.3 MEDIUM
lldptool version 1.0.1 and older can print a raw, unsanitized attacker controlled buffer when mngAddr information is displayed. This may allow an attacker to inject shell control characters into the buffer and impact the behavior of the terminal.
CVE-2018-12163 1 Intel 1 Iot Developers Kit 2024-02-28 6.8 MEDIUM 4.8 MEDIUM
A DLL injection vulnerability in the Intel IoT Developers Kit 4.0 installer may allow an authenticated user to potentially escalate privileges using file modification via local access.
CVE-2018-12150 1 Intel 1 Extreme Tuning Utility 2024-02-28 4.6 MEDIUM 6.7 MEDIUM
Escalation of privilege in Installer for Intel Extreme Tuning Utility before 6.4.1.21 may allow an authenticated user to potentially execute code or disclose information as administrator via local access.
CVE-2017-5693 1 Intel 2 Puma, Puma Firmware 2024-02-28 7.8 HIGH 7.5 HIGH
Firmware in the Intel Puma 5, 6, and 7 Series might experience resource depletion or timeout, which allows a network attacker to create a denial of service via crafted network traffic.
CVE-2018-12166 1 Intel 2 Optane Ssd Dc P4800x, Optane Ssd Dc P4800x Firmware 2024-02-28 2.1 LOW 4.4 MEDIUM
Insufficient write protection in firmware for Intel(R) Optane(TM) SSD DC P4800X before version E2010435 may allow a privileged user to potentially enable a denial of service via local access.
CVE-2018-3650 1 Intel 1 Distribution For Python 2024-02-28 4.6 MEDIUM 7.8 HIGH
Insufficient Input Validation in Bleach module in INTEL Distribution for Python versions prior to IDP 2018 Update 2 allows unprivileged user to bypass URI sanitization via local vector.
CVE-2018-3655 1 Intel 3 Converged Security Management Engine Firmware, Server Platform Services Firmware, Trusted Execution Engine Firmware 2024-02-28 3.6 LOW 7.3 HIGH
A vulnerability in a subsystem in Intel CSME before version 11.21.55, Intel Server Platform Services before version 4.0 and Intel Trusted Execution Engine Firmware before version 3.1.55 may allow an unauthenticated user to potentially modify or disclose information via physical access.
CVE-2018-12174 1 Intel 1 Parallel Studio Xe 2024-02-28 4.6 MEDIUM 7.8 HIGH
Heap overflow in Intel Trace Analyzer 2018 in Intel Parallel Studio XE 2018 Update 3 may allow an authenticated user to potentially escalate privileges via local access.
CVE-2018-12158 1 Intel 1 Next Unit Of Computing Firmware 2024-02-28 5.6 MEDIUM 6.0 MEDIUM
Insufficient input validation in BIOS update utility in Intel NUC FW kits downloaded before May 24, 2018 may allow a privileged user to potentially trigger a denial of service or information disclosure via local access.
CVE-2018-3658 2 Intel, Siemens 25 Active Management Technology Firmware, Converged Security Management Engine Firmware, Manageability Engine Firmware and 22 more 2024-02-28 5.0 MEDIUM 5.3 MEDIUM
Multiple memory leaks in Intel AMT in Intel CSME firmware versions before 12.0.5 may allow an unauthenticated user with Intel AMT provisioned to potentially cause a partial denial of service via network access.
CVE-2018-12131 1 Intel 3 Client Nvme, Datacenter Nvme, Rapid Storage Technology 2024-02-28 4.6 MEDIUM 7.8 HIGH
Permissions in the driver pack installers for Intel NVMe before version 4.0.0.1007 and Intel RSTe before version 4.7.0.2083 may allow an authenticated user to potentially escalate privilege via local access.
CVE-2019-0112 1 Intel 1 Data Center Manager 2024-02-28 2.1 LOW 4.4 MEDIUM
Improper flow control in crypto routines for Intel(R) Data Center Manager SDK before version 5.0.2 may allow a privileged user to potentially enable a denial of service via local access.
CVE-2018-18097 1 Intel 1 Solid State Drive Toolbox 2024-02-28 4.6 MEDIUM 7.8 HIGH
Improper directory permissions in Intel Solid State Drive Toolbox before 3.5.7 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2019-0105 1 Intel 1 Data Center Manager 2024-02-28 4.6 MEDIUM 7.8 HIGH
Insufficient file permissions checking in install routine for Intel(R) Data Center Manager SDK before version 5.0.2 may allow authenticated user to potentially enable escalation of privilege via local access.
CVE-2019-0104 1 Intel 1 Data Center Manager 2024-02-28 2.1 LOW 5.5 MEDIUM
Insufficient file protection in uninstall routine for Intel(R) Data Center Manager SDK before version 5.0.2 may allow an authenticated user to potentially enable information disclosure via local access.