Latest CVE Feed
-
6.8
MEDIUMCVE-2018-12183
Stack overflow in DxeCore for EDK II may allow an unauthenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access.... Read more
Affected Products : edk_ii- Published: Mar. 27, 2019
- Modified: Nov. 21, 2024
-
6.7
MEDIUMCVE-2018-12182
Insufficient memory write check in SMM service for EDK II may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access.... Read more
Affected Products : edk_ii- Published: Mar. 27, 2019
- Modified: Nov. 21, 2024
-
6.0
MEDIUMCVE-2018-12181
Stack overflow in corrupted bmp for EDK II may allow unprivileged user to potentially enable denial of service or elevation of privilege via local access.... Read more
Affected Products : edk_ii- Published: Mar. 27, 2019
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2018-12180
Buffer overflow in BlockIo service for EDK II may allow an unauthenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via network access.... Read more
- Published: Mar. 27, 2019
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-12179
Improper configuration in system firmware for EDK II may allow unauthenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access.... Read more
Affected Products : edk_ii- Published: Mar. 27, 2019
- Modified: Nov. 21, 2024
-
9.1
CRITICALCVE-2018-12178
Buffer overflow in network stack for EDK II may allow unprivileged user to potentially enable escalation of privilege and/or denial of service via network.... Read more
Affected Products : edk_ii- Published: Mar. 27, 2019
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-12177
Improper directory permissions in the ZeroConfig service in Intel(R) PROSet/Wireless WiFi Software before version 20.90.0.7 may allow an authorized user to potentially enable escalation of privilege via local access.... Read more
- Published: Jan. 10, 2019
- Modified: Nov. 21, 2024
-
8.2
HIGHCVE-2018-12176
Improper input validation in firmware for Intel NUC Kits may allow a privileged user to potentially execute arbitrary code resulting in information disclosure, escalation of privilege and/or denial of service via local access.... Read more
Affected Products : nuc_kit_firmware compute_card_firmware compute_stick_firmware nuc_kit_nuc7cjyh nuc_kit_d33217gke nuc_kit_d53427rke nuc_kit_d54250wyb nuc_kit_de3815tybe nuc_kit_dn2820fykh nuc_kit_nuc5cpyh +19 more products- Published: Sep. 12, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-12175
Default install directory permissions in Intel Distribution for Python (IDP) version 2018 may allow an unprivileged user to escalate privileges via local access.... Read more
Affected Products : distribution_for_python- Published: Sep. 12, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-12174
Heap overflow in Intel Trace Analyzer 2018 in Intel Parallel Studio XE 2018 Update 3 may allow an authenticated user to potentially escalate privileges via local access.... Read more
Affected Products : parallel_studio_xe- Published: Nov. 14, 2018
- Modified: Nov. 21, 2024
-
7.6
HIGHCVE-2018-12173
Insufficient access protection in firmware in Intel Server Board, Intel Server System and Intel Compute Module before firmware version 00.01.0014 may allow an unauthenticated attacker to potentially execute arbitrary code resulting in information disclosu... Read more
Affected Products : server_board_s2600bp_firmware server_board_s2600wf_firmware server_board_s2600st_firmware server_board_s2600bpr_firmware server_board_s2600wfr_firmware server_board_s2600str_firmware compute_module_hns2600bp_firmware compute_module_hns2600bpr_firmware server_system_r2000wf_firmware server_system_r1000wf_firmware +18 more products- Published: Oct. 10, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2018-12172
Improper password hashing in firmware in Intel Server Board (S7200AP,S7200APR) and Intel Compute Module (HNS7200AP, HNS7200AP) may allow a privileged user to potentially disclose firmware passwords via local access.... Read more
Affected Products : s7200ap_firmware hns7200ap_firmware s7200apr_firmware hns7200apr_firmware hns7200ap hns7200apr s7200apr s7200ap- Published: Oct. 10, 2018
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2018-12171
Privilege escalation in Intel Baseboard Management Controller (BMC) firmware before version 1.43.91f76955 may allow an unprivileged user to potentially execute arbitrary code or perform denial of service over the network.... Read more
Affected Products : bmc_firmware bbs2600bpb bbs2600bpq bbs2600bps bbs2600stb bbs2600stq hns2600bpb hns2600bpb24 hns2600bpblc hns2600bpblc24 +21 more products- Published: Sep. 12, 2018
- Modified: Nov. 21, 2024
-
7.6
HIGHCVE-2018-12169
Platform sample code firmware in 4th Generation Intel Core Processor, 5th Generation Intel Core Processor, 6th Generation Intel Core Processor, 7th Generation Intel Core Processor and 8th Generation Intel Core Processor contains a logic error which may al... Read more
Affected Products : core_i3 core_i5 core_i7 core_i9 thinkpad_11e thinkpad_e480 thinkpad_e580 thinkpad_l380 thinkpad_l380_yoga thinkpad_l480 +22 more products- Published: Sep. 21, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-12168
Privilege escalation in file permissions in Intel Computing Improvement Program before version 2.2.0.03942 may allow an authenticated user to potentially execute code as administrator via local access.... Read more
Affected Products : computing_improvement_program- Published: Sep. 12, 2018
- Modified: Nov. 21, 2024
-
4.4
MEDIUMCVE-2018-12167
Firmware update routine in bootloader for Intel(R) Optane(TM) SSD DC P4800X before version E2010435 may allow a privileged user to potentially enable a denial of service via local access.... Read more
- Published: Jan. 10, 2019
- Modified: Nov. 21, 2024
-
4.4
MEDIUMCVE-2018-12166
Insufficient write protection in firmware for Intel(R) Optane(TM) SSD DC P4800X before version E2010435 may allow a privileged user to potentially enable a denial of service via local access.... Read more
- Published: Jan. 10, 2019
- Modified: Nov. 21, 2024
-
6.8
MEDIUMCVE-2018-12163
A DLL injection vulnerability in the Intel IoT Developers Kit 4.0 installer may allow an authenticated user to potentially escalate privileges using file modification via local access.... Read more
Affected Products : iot_developers_kit- Published: Sep. 12, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2018-12162
Directory permissions in the Intel OpenVINO Toolkit for Windows before version 2018.1.265 may allow an authenticated user to potentially execute code using default directory permissions via local access.... Read more
Affected Products : openvino_toolkit- Published: Sep. 12, 2018
- Modified: Nov. 21, 2024
-
6.5
MEDIUMCVE-2018-12161
Insufficient session validation in the webserver component of the Intel Rapid Web Server 3 may allow an unauthenticated user to potentially disclose information via network access.... Read more
Affected Products : raid_web_console- Published: Oct. 10, 2018
- Modified: Nov. 21, 2024