Filtered by vendor Intel
Subscribe
Total
1594 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2019-0108 | 1 Intel | 1 Data Center Manager | 2024-02-28 | 2.1 LOW | 5.5 MEDIUM |
Improper file permissions for Intel(R) Data Center Manager SDK before version 5.0.2 may allow an authenticated user to potentially enable disclosure of information via local access. | |||||
CVE-2018-3679 | 1 Intel | 1 Data Center Manager | 2024-02-28 | 8.3 HIGH | 9.6 CRITICAL |
Escalation of privilege in Reference UI in Intel Data Center Manager SDK 5.0 and before may allow an unauthorized remote unauthenticated user to potentially execute code via administrator privileges. | |||||
CVE-2018-12206 | 1 Intel | 1 Quickassist Technology For Linux | 2024-02-28 | 2.1 LOW | 5.5 MEDIUM |
Improper configuration of hardware access in Intel QuickAssist Technology for Linux (all versions) may allow an authenticated user to potentially enable a denial of service via local access. | |||||
CVE-2018-3620 | 1 Intel | 8 Core I3, Core I5, Core I7 and 5 more | 2024-02-28 | 4.7 MEDIUM | 5.6 MEDIUM |
Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access via a terminal page fault and a side-channel analysis. | |||||
CVE-2018-12148 | 1 Intel | 1 Driver \& Support Assistant | 2024-02-28 | 7.2 HIGH | 7.8 HIGH |
Privilege escalation in file permissions in Intel Driver and Support Assistant before 3.5.0.1 may allow an authenticated user to potentially execute code as administrator via local access. | |||||
CVE-2018-18096 | 1 Intel | 1 Quickassist Technology For Linux | 2024-02-28 | 2.1 LOW | 5.5 MEDIUM |
Improper memory handling in Intel QuickAssist Technology for Linux (all versions) may allow an authenticated user to potentially enable a denial of service via local access. | |||||
CVE-2018-12160 | 1 Intel | 1 Data Migration Software | 2024-02-28 | 4.6 MEDIUM | 5.3 MEDIUM |
DLL injection vulnerability in software installer for Intel Data Center Migration Center Software v3.1 and before may allow an authenticated user to potentially execute code using default directory permissions via local access. | |||||
CVE-2019-0106 | 1 Intel | 1 Data Center Manager | 2024-02-28 | 4.6 MEDIUM | 6.7 MEDIUM |
Insufficient run protection in install routine for Intel(R) Data Center Manager SDK before version 5.0.2 may allow a privileged user to potentially enable escalation of privilege via local access. | |||||
CVE-2018-3663 | 1 Intel | 1 Saffron Memorybase | 2024-02-28 | 2.7 LOW | 5.7 MEDIUM |
Escalation of privilege in Intel Saffron MemoryBase before 11.4 allows an authenticated user access to privileged information. | |||||
CVE-2018-12153 | 1 Intel | 1 Graphics Driver | 2024-02-28 | 4.9 MEDIUM | 6.5 MEDIUM |
Denial of Service in Unified Shader Compiler in Intel Graphics Drivers before 10.18.x.5056 (aka 15.33.x.5056), 10.18.x.5057 (aka 15.36.x.5057) and 20.19.x.5058 (aka 15.40.x.5058) may allow an unprivileged user from a virtual machine guest to potentially crash the host system via local access. | |||||
CVE-2019-0127 | 2 Intel, Linux | 2 Openvino, Linux Kernel | 2024-02-28 | 2.1 LOW | 3.9 LOW |
Logic error in the installer for Intel(R) OpenVINO(TM) 2018 R3 and before for Linux may allow a privileged user to potentially enable information disclosure via local access. | |||||
CVE-2018-3699 | 1 Intel | 1 Raid Web Console 3 | 2024-02-28 | 4.3 MEDIUM | 6.1 MEDIUM |
Cross-site scripting in the Intel RAID Web Console v3 for Windows may allow an unauthenticated user to elevate privilege via remote access. | |||||
CVE-2018-3635 | 1 Intel | 1 Rapid Storage Technology | 2024-02-28 | 4.6 MEDIUM | 7.8 HIGH |
Insufficient input validation in installer in Intel Rapid Store Technology (RST) before version 16.7 may allow an unprivileged user to potentially elevate privileges or cause an installer denial of service via local access. | |||||
CVE-2018-12154 | 1 Intel | 1 Graphics Driver | 2024-02-28 | 2.1 LOW | 5.5 MEDIUM |
Denial of Service in Unified Shader Compiler in Intel Graphics Drivers before 10.18.x.5056 (aka 15.33.x.5056), 10.18.x.5057 (aka 15.36.x.5057) and 20.19.x.5058 (aka 15.40.x.5058) may allow an unprivileged user to potentially create an infinite loop and crash an application via local access. | |||||
CVE-2018-12149 | 1 Intel | 1 Extreme Tuning Utility | 2024-02-28 | 2.1 LOW | 5.5 MEDIUM |
Buffer overflow in input handling in Intel Extreme Tuning Utility before 6.4.1.21 may allow an authenticated user to potentially deny service to the application via local access. | |||||
CVE-2018-12172 | 1 Intel | 8 Hns7200ap, Hns7200ap Firmware, Hns7200apr and 5 more | 2024-02-28 | 2.1 LOW | 5.5 MEDIUM |
Improper password hashing in firmware in Intel Server Board (S7200AP,S7200APR) and Intel Compute Module (HNS7200AP, HNS7200AP) may allow a privileged user to potentially disclose firmware passwords via local access. | |||||
CVE-2018-3627 | 2 Intel, Netapp | 26 Converged Security Management Engine Firmware, Core I3, Core I5 and 23 more | 2024-02-28 | 4.6 MEDIUM | 8.2 HIGH |
Logic bug in Intel Converged Security Management Engine 11.x may allow an attacker to execute arbitrary code via local privileged access. | |||||
CVE-2018-3691 | 1 Intel | 1 Integrated Performance Primitives Cryptography | 2024-02-28 | 1.9 LOW | 4.7 MEDIUM |
Some implementations in Intel Integrated Performance Primitives Cryptography Library before version 2018 U3.1 do not properly ensure constant execution time. | |||||
CVE-2018-3668 | 1 Intel | 1 Processor Diagnostic Tool | 2024-02-28 | 4.6 MEDIUM | 7.8 HIGH |
Unquoted service paths in Intel Processor Diagnostic Tool (IPDT) before version 4.1.0.27 allows a local attacker to potentially execute arbitrary code. | |||||
CVE-2018-3665 | 6 Canonical, Citrix, Debian and 3 more | 14 Ubuntu Linux, Xenserver, Debian Linux and 11 more | 2024-02-28 | 4.7 MEDIUM | 5.6 MEDIUM |
System software utilizing Lazy FP state restore technique on systems using Intel Core-based microprocessors may potentially allow a local process to infer data from another process through a speculative execution side channel. |