VYPR

Vendor CVEs

Intel

All CVEs

2,130 total · sorted by risk
  • CVE-2025-24313MedAug 12, 2025
    risk 0.29cvss 4.4epss 0.00

    Improper access control for some Device Plugins for Kubernetes software maintained by Intel before version 0.32.0 may allow a privileged user to potentially enable denial of service via local access.

  • CVE-2025-22392MedAug 12, 2025
    risk 0.29cvss 4.4epss 0.00

    Out-of-bounds read in firmware for some Intel(R) AMT and Intel(R) Standard Manageability may allow a privileged user to potentially enable information disclosure via network access.

  • CVE-2025-20025MedAug 12, 2025
    risk 0.29cvss 4.4epss 0.00

    Uncontrolled recursion for some TinyCBOR libraries maintained by Intel(R) before version 0.6.1 may allow an authenticated user to potentially enable denial of service via local access.

  • CVE-2025-21081MedMay 13, 2025
    risk 0.29cvss 4.5epss 0.00

    Protection mechanism failure for some Edge Orchestrator software for Intel(R) Tiber™ Edge Platform may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2024-34776MedNov 13, 2024
    risk 0.29cvss 4.5epss 0.00

    Out-of-bounds write in some Intel(R) SGX SDK software may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2024-27200MedNov 13, 2024
    risk 0.29cvss 4.4epss 0.00

    Improper access control in some Intel(R) Granulate(TM) software before version 4.30.1 may allow a authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2023-34424MedAug 14, 2024
    risk 0.29cvss 4.4epss 0.00

    Improper input validation in firmware for some Intel(R) CSME may allow a privileged user to potentially enable denial of service via local access.

  • CVE-2023-45845MedMay 16, 2024
    risk 0.29cvss 4.4epss 0.00

    Improper conditions check for some Intel(R) Wireless Bluetooth(R) products for Windows before version 23.20 may allow a privileged user to potentially enable denial of service via local access.

  • CVE-2023-41082MedMay 16, 2024
    risk 0.29cvss 4.4epss 0.00

    Null pointer dereference for some Intel(R) CST software before version 2.1.10300 may allow an authenticated user to potentially enable denial of service via local access.

  • CVE-2023-39433MedMay 16, 2024
    risk 0.29cvss 4.4epss 0.00

    Improper access control for some Intel(R) CST software before version 2.1.10300 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2017-5698MedSep 5, 2017
    risk 0.29cvss 4.4epss 0.00

    Intel Active Management Technology, Intel Standard Manageability, and Intel Small Business Technology firmware versions 11.0.25.3001 and 11.0.26.3000 anti-rollback will not prevent upgrading to firmware version 11.6.x.1xxx which is vulnerable to CVE-2017-5689 and can be…

  • CVE-2016-8006MedJan 5, 2017
    risk 0.29cvss 4.4epss 0.00

    Authentication bypass vulnerability in Enterprise Security Manager (ESM) and License Manager (LM) in Intel Security McAfee Security Information and Event Management (SIEM) 9.6.0 MR3 allows an administrator to make changes to other SIEM users' information including user passwords…

  • CVE-2025-22844MedMay 13, 2025
    risk 0.28cvss 4.3epss 0.00

    Improper access control for some Edge Orchestrator software for Intel(R) Tiber™ Edge Platform may allow an unauthenticated user to potentially enable information disclosure via adjacent access.

  • CVE-2025-20097MedFeb 12, 2025
    risk 0.28cvss 4.3epss 0.00

    Uncaught exception in OpenBMC Firmware for the Intel(R) Server M50FCP Family and Intel(R) Server D50DNP Family before version R01.02.0002 may allow an authenticated user to potentially enable denial of service via network access.

  • CVE-2024-33624MedNov 13, 2024
    risk 0.28cvss 4.3epss 0.00

    Improper input validation for some Intel(R) PROSet/Wireless WiFi software for Windows before version 23.60 may allow an unauthenticated user to potentially enable denial of service via network access.

  • CVE-2024-21844MedAug 14, 2024
    risk 0.28cvss 4.3epss 0.00

    Integer overflow in firmware for some Intel(R) CSME may allow an unauthenticated user to potentially enable denial of service via adjacent access.

  • CVE-2023-35123MedAug 14, 2024
    risk 0.28cvss 4.3epss 0.00

    Uncaught exception in OpenBMC Firmware for some Intel(R) Server Platforms before versions egs-1.14-0, bhs-0.27 may allow an authenticated user to potentially enable denial of service via network access.

  • CVE-2023-40536MedMay 16, 2024
    risk 0.28cvss 4.3epss 0.00

    Race condition for some some Intel(R) PROSet/Wireless WiFi software for Windows before version 23.20 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

  • CVE-2023-38417MedMay 16, 2024
    risk 0.28cvss 4.3epss 0.00

    Improper input validation for some Intel(R) PROSet/Wireless WiFi software before version 23.20 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

  • CVE-2023-35061MedFeb 14, 2024
    risk 0.28cvss 4.3epss 0.00

    Improper initialization for the Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may allow an unauthenticated user to potentially enable information disclosure via adjacent access.

  • CVE-2025-32467MedFeb 10, 2026
    risk 0.27cvss 4.1epss 0.00

    Use of uninitialized variable for some TDX Module before version tdx1.5 within Ring 0: Hypervisor may allow an information disclosure. Authorized adversary with a privileged user combined with a high complexity attack may enable data exposure. This result may potentially occur…

  • CVE-2025-27940MedFeb 10, 2026
    risk 0.27cvss 4.1epss 0.00

    Out-of-bounds read for some TDX Module before version tdx1.5 within Ring 0: Hypervisor may allow an information disclosure. Software side channel adversary with a privileged user combined with a high complexity attack may enable data exposure. This result may potentially occur…

  • CVE-2025-27708MedFeb 10, 2026
    risk 0.27cvss 4.1epss 0.00

    Out-of-bounds read in the firmware for some Intel(R) Converged Security and Management Engine (CSME) Firmware (FW) within Ring 0: Kernel may allow an information disclosure. System software adversary with a privileged user combined with a low complexity attack may enable data…

  • CVE-2025-27572MedFeb 10, 2026
    risk 0.27cvss 4.1epss 0.00

    Exposure of sensitive information during transient execution for some TDX within Ring 0: Hypervisor may allow an information disclosure. Authorized adversary with a privileged user combined with a high complexity attack may enable data exposure. This result may potentially occur…

  • CVE-2025-20044MedAug 12, 2025
    risk 0.27cvss 4.1epss 0.00

    Improper locking for some Intel(R) TDX Module firmware before version 1.5.13 may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2025-21100MedMay 13, 2025
    risk 0.27cvss 4.1epss 0.00

    Improper initialization in the UEFI firmware for the Intel(R) Server D50DNP and M50FCP boards may allow a privileged user to potentially enable information disclosure via local access.

  • CVE-2024-21808MedNov 13, 2024
    risk 0.27cvss 4.2epss 0.00

    Improper buffer restrictions in some Intel(R) VPL software before version 24.1.4 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2025-20622LowNov 11, 2025
    risk 0.25cvss 3.8epss 0.00

    Sensitive information uncleared in resource before release for reuse for some Intel(R) NPU Drivers for Windows before version 32.0.100.4023 within Ring 3: User Applications may allow an information disclosure. Unprivileged software adversary with an authenticated user combined…

  • CVE-2025-32004LowAug 12, 2025
    risk 0.25cvss 3.9epss 0.00

    Improper input validation in the Intel Edger8r Tool for some Intel(R) SGX SDK may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2025-26863LowAug 12, 2025
    risk 0.25cvss 3.8epss 0.00

    Uncontrolled resource consumption in the Linux kernel-mode driver for some Intel(R) 700 Series Ethernet before version 2.28.5 may allow an authenticated user to potentially enable denial of service.

  • CVE-2024-31150LowMay 13, 2025
    risk 0.25cvss 3.8epss 0.00

    Out-of-bounds read for some Intel(R) Graphics Driver software may allow an authenticated user to potentially enable information disclosure via local access.

  • CVE-2024-37020LowFeb 12, 2025
    risk 0.25cvss 3.8epss 0.00

    Sequence of processor instructions leads to unexpected behavior in the Intel(R) DSA V1.0 for some Intel(R) Xeon(R) Processors may allow an authenticated user to potentially enable denial of service via local access.

  • CVE-2024-38660LowNov 13, 2024
    risk 0.25cvss 3.8epss 0.00

    Protection mechanism failure in the SPP for some Intel(R) Xeon(R) processor family (E-Core) may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2024-32667LowNov 13, 2024
    risk 0.25cvss 3.9epss 0.00

    Out-of-bounds read for some OpenCL(TM) software may allow an authenticated user to potentially enable denial of service via local access.

  • CVE-2024-25565LowNov 13, 2024
    risk 0.25cvss 3.8epss 0.00

    Insufficient control flow management in UEFI firmware for some Intel(R) Xeon(R) Processors may allow an authenticated user to enable denial of service via local access.

  • CVE-2023-47282LowMay 16, 2024
    risk 0.25cvss 3.9epss 0.00

    Out-of-bounds write in Intel(R) Media SDK all versions and some Intel(R) oneVPL software before version 23.3.5 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2023-22656LowMay 16, 2024
    risk 0.25cvss 3.9epss 0.00

    Out-of-bounds read in Intel(R) Media SDK and some Intel(R) oneVPL software before version 23.3.5 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2017-5686LowApr 3, 2017
    risk 0.25cvss 3.9epss 0.00

    The BIOS in Intel NUC systems based on 6th Gen Intel Core processors prior to version SY0059 may allow may allow an attacker with physical access to the system to gain access to personal information.

  • CVE-2017-5685LowApr 3, 2017
    risk 0.25cvss 3.9epss 0.00

    The BIOS in Intel NUC systems based on 6th Gen Intel Core processors prior to version KY0045 may allow may allow an attacker with physical access to the system to gain access to personal information.

  • CVE-2017-5684LowApr 3, 2017
    risk 0.25cvss 3.9epss 0.00

    The BIOS in Intel Compute Stick systems based on 6th Gen Intel Core processors prior to version CC047 may allow an attacker with physical access to the system to gain access to personal information.

  • CVE-2016-8016LowMar 14, 2017
    risk 0.25cvss 3.4epss 0.05

    Information exposure in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows authenticated remote attackers to obtain the existence of unauthorized files on the system via a URL parameter.

  • CVE-2025-27250LowAug 12, 2025
    risk 0.23cvss 3.5epss 0.00

    Uncontrolled resource consumption for some Edge Orchestrator software before version 24.11.1 for Intel(R) Tiber(TM) Edge Platform may allow an authenticated user to potentially enable denial of service via adjacent access.

  • CVE-2025-24523LowAug 12, 2025
    risk 0.23cvss 3.5epss 0.00

    Protection mechanism failure for some Edge Orchestrator software before version 24.11.1 for Intel(R) Tiber(TM) Edge Platform may allow an authenticated user to potentially enable denial of service via adjacent access.

  • CVE-2025-23233LowMay 13, 2025
    risk 0.23cvss 3.5epss 0.00

    Incorrect execution-assigned permissions for some Edge Orchestrator software for Intel(R) Tiber™ Edge Platform may allow an authenticated user to potentially enable escalation of privilege via adjacent access.

  • CVE-2025-22848LowMay 13, 2025
    risk 0.23cvss 3.5epss 0.00

    Improper conditions check for some Edge Orchestrator software for Intel(R) Tiber™ Edge Platform may allow an authenticated user to potentially enable denial of service via adjacent access.

  • CVE-2025-20084LowMay 13, 2025
    risk 0.23cvss 3.5epss 0.00

    Uncontrolled resource consumption for some Edge Orchestrator software for Intel(R) Tiber™ Edge Platform may allow an authenticated user to potentially enable denial of service via adjacent access.

  • CVE-2025-20057LowMay 13, 2025
    risk 0.23cvss 3.5epss 0.00

    Uncontrolled resource consumption for some Edge Orchestrator software for Intel(R) Tiber™ Edge Platform may allow an authenticated user to potentially enable denial of service via adjacent access.

  • CVE-2020-24588LowMay 11, 2021
    risk 0.23cvss 3.5epss 0.04

    The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authenticated. Against devices that support receiving non-SSP A-MSDU frames (which is…

  • CVE-2024-33611LowNov 13, 2024
    risk 0.22cvss 3.4epss 0.00

    Improper input validation for some Intel(R) PROSet/Wireless WiFi software for Windows before version 23.60 may allow a privileged user to potentially enable denial of service via local access.

  • CVE-2026-20793LowMay 12, 2026
    risk 0.21cvss 3.3epss 0.00

    Unchecked return value for some Intel(R) QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of…

Page 11 of 43