VYPR

CIP software

by Intel

CVEs (30)

  • CVE-2024-36482HigNov 13, 2024
    risk 0.53cvss 8.2epss 0.00

    Improper input validation in some Intel(R) CIP software before version 2.4.10852 may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2022-40207HigMay 10, 2023
    risk 0.53cvss 8.2epss 0.00

    Improper access control in the Intel(R) SUR software before version 2.4.8989 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2022-29514HigFeb 16, 2023
    risk 0.50cvss 7.7epss 0.01

    Improper access control in the Intel(R) SUR software before version 2.4.8902 may allow an unauthenticated user to potentially enable escalation of privilege via network access.

  • CVE-2022-33964HigFeb 16, 2023
    risk 0.48cvss 7.4epss 0.01

    Improper input validation in the Intel(R) SUR software before version 2.4.8902 may allow an unauthenticated user to potentially enable escalation of privilege via network access.

  • CVE-2023-39941HigFeb 14, 2024
    risk 0.46cvss 7.1epss 0.00

    Improper access control in some Intel(R) SUR software before version 2.4.10587 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

  • CVE-2022-33190HigFeb 16, 2023
    risk 0.46cvss 7.1epss 0.00

    Improper input validation in the Intel(R) SUR software before version 2.4.8902 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2024-36276MedNov 13, 2024
    risk 0.44cvss 6.7epss 0.00

    Insecure inherited permissions for some Intel(R) CIP software before version 2.4.10852 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2023-38135MedFeb 14, 2024
    risk 0.44cvss 6.7epss 0.00

    Improper authorization in some Intel(R) PM software may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2023-35769MedFeb 14, 2024
    risk 0.44cvss 6.7epss 0.00

    Uncontrolled search path in some Intel(R) CIP software before version 2.4.10577 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2022-34854MedFeb 16, 2023
    risk 0.44cvss 6.7epss 0.00

    Improper access control in the Intel(R) SUR software before version 2.4.8902 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2022-30692MedFeb 16, 2023
    risk 0.38cvss 5.9epss 0.01

    Improper conditions check in the Intel(R) SUR software before version 2.4.8902 may allow an unauthenticated user to potentially enable denial of service via network access.

  • CVE-2023-43489MedAug 14, 2024
    risk 0.36cvss 5.5epss 0.00

    Improper access control for some Intel(R) CIP software before version 2.4.10717 may allow an authenticated user to potentially enable denial of service via local access.

  • CVE-2022-33946MedFeb 16, 2023
    risk 0.36cvss 5.6epss 0.00

    Improper authentication in the Intel(R) SUR software before version 2.4.8902 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2022-31476MedFeb 16, 2023
    risk 0.36cvss 5.5epss 0.00

    Improper access control in the Intel(R) SUR software before version 2.4.8902 may allow an authenticated user to potentially enable denial of service via local access.

  • CVE-2025-24516MedNov 11, 2025
    risk 0.29cvss 4.5epss 0.00

    Improper access control for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001 within Ring 3: User Applications may allow an information disclosure. Unprivileged software adversary with a privileged user combined with a low complexity attack may enable data exposure.…

  • CVE-2023-41082MedMay 16, 2024
    risk 0.29cvss 4.4epss 0.00

    Null pointer dereference for some Intel(R) CST software before version 2.1.10300 may allow an authenticated user to potentially enable denial of service via local access.

  • CVE-2023-39433MedMay 16, 2024
    risk 0.29cvss 4.4epss 0.00

    Improper access control for some Intel(R) CST software before version 2.1.10300 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2022-27234MedFeb 16, 2023
    risk 0.28cvss 4.3epss 0.00

    Server-side request forgery in the CVAT software maintained by Intel(R) before version 2.0.1 may allow an authenticated user to potentially enable information disclosure via network access.

  • CVE-2022-32971LowFeb 16, 2023
    risk 0.20cvss 3.1epss 0.00

    Improper authentication in the Intel(R) SUR software before version 2.4.8902 may allow a privileged user to potentially enable escalation of privilege via network access.

  • CVE-2023-43745LowMay 16, 2024
    risk 0.18cvss 2.8epss 0.00

    Improper input validation in some Intel(R) CBI software before version 1.1.0 may allow an authenticated user to potentially enable denial of service via local access.

Page 1 of 2