VYPR

Vendor CVEs

Intel

All CVEs

2,130 total · sorted by risk
  • CVE-2023-4326Aug 15, 2023
    risk 0.00cvss epss 0.00

    Broadcom RAID Controller web interface is vulnerable has an insecure default TLS configuration that supports obsolete SHA1-based ciphersuites

  • CVE-2023-4329Aug 15, 2023
    risk 0.00cvss epss 0.01

    Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does not safeguard SESSIONID cookie with SameSite attribute

  • CVE-2023-4331Aug 15, 2023
    risk 0.00cvss epss 0.00

    Broadcom RAID Controller web interface is vulnerable has an insecure default TLS configuration that support obsolete and vulnerable TLS protocols

  • CVE-2023-4332Aug 15, 2023
    risk 0.00cvss epss 0.01

    Broadcom RAID Controller web interface is vulnerable due to Improper permissions on the log file

  • CVE-2023-4334Aug 15, 2023
    risk 0.00cvss epss 0.01

    Broadcom RAID Controller Web server (nginx) is serving private files without any authentication

  • CVE-2023-4335Aug 15, 2023
    risk 0.00cvss epss 0.00

    Broadcom RAID Controller Web server (nginx) is serving private server-side files without any authentication on Linux

  • CVE-2023-4336Aug 15, 2023
    risk 0.00cvss epss 0.01

    Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does not safeguard cookies with Secure attribute

  • CVE-2023-4337Aug 15, 2023
    risk 0.00cvss epss 0.01

    Broadcom RAID Controller web interface is vulnerable to improper session handling of managed servers on Gateway installation

  • CVE-2023-4338Aug 15, 2023
    risk 0.00cvss epss 0.01

    Broadcom RAID Controller web interface is vulnerable due to insecure default of HTTP configuration that does not provide X-Content-Type-Options Headers

  • CVE-2023-4339Aug 15, 2023
    risk 0.00cvss epss 0.01

    Broadcom RAID Controller web interface is vulnerable to exposure of private keys used for CIM stored with insecure file permissions

  • CVE-2023-4340Aug 15, 2023
    risk 0.00cvss epss 0.01

    Broadcom RAID Controller is vulnerable to Privilege escalation by taking advantage of the Session prints in the log file

  • CVE-2023-4341Aug 15, 2023
    risk 0.00cvss epss 0.01

    Broadcom RAID Controller is vulnerable to Privilege escalation to root due to creation of insecure folders by Web GUI

  • CVE-2023-4342Aug 15, 2023
    risk 0.00cvss epss 0.01

    Broadcom RAID Controller web interface is vulnerable due to insecure defaults of lacking HTTP strict-transport-security policy

  • CVE-2023-4343Aug 15, 2023
    risk 0.00cvss epss 0.00

    Broadcom RAID Controller web interface is vulnerable due to exposure of sensitive password information in the URL as a URL search parameter

  • CVE-2023-4344Aug 15, 2023
    risk 0.00cvss epss 0.01

    Broadcom RAID Controller web interface is vulnerable to insufficient randomness due to improper use of ssl.rnd to setup CIM connection

  • CVE-2023-4323Aug 15, 2023
    risk 0.00cvss epss 0.01

    Broadcom RAID Controller web interface is vulnerable to improper session management of active sessions on Gateway setup

  • CVE-2023-4345Aug 15, 2023
    risk 0.00cvss epss 0.00

    Broadcom RAID Controller web interface is vulnerable client-side control bypass leads to unauthorized data access for low privileged user

  • CVE-2023-24478Aug 15, 2023
    risk 0.00cvss epss 0.00

    Use of insufficiently random values for some Intel Agilex(R) software included as part of Intel(R) Quartus(R) Prime Pro Edition for linux before version 22.4 may allow an authenticated user to potentially enable information disclosure via local access.

  • CVE-2023-32663Aug 11, 2023
    risk 0.00cvss epss 0.00

    Incorrect default permissions in some Intel(R) RealSense(TM) SDKs in version 2.53.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2023-32543Aug 11, 2023
    risk 0.00cvss epss 0.00

    Incorrect default permissions in the Intel(R) ITS sofware before version 3.1 may allow authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2023-32609Aug 11, 2023
    risk 0.00cvss epss 0.00

    Improper access control in the Intel Unite(R) android application before version 4.2.3504 may allow an authenticated user to potentially enable information disclosure via local access.

  • CVE-2023-34349Aug 11, 2023
    risk 0.00cvss epss 0.00

    Race condition in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2023-32285Aug 11, 2023
    risk 0.00cvss epss 0.00

    Improper access control in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable denial of service via local access.

  • CVE-2023-22330Aug 11, 2023
    risk 0.00cvss epss 0.00

    Use of uninitialized resource in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access.

  • CVE-2023-22356Aug 11, 2023
    risk 0.00cvss epss 0.00

    Improper initialization in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access.

  • CVE-2023-22444Aug 11, 2023
    risk 0.00cvss epss 0.00

    Improper initialization in some Intel(R) NUC 13 Extreme Compute Element, Intel(R) NUC 13 Extreme Kit, Intel(R) NUC 11 Performance Kit, Intel(R) NUC 11 Performance Mini PC, Intel(R) NUC Compute Element, Intel(R) NUC Laptop Kit, Intel(R) NUC Pro Kit, Intel(R) NUC Pro Board and…

  • CVE-2023-34438Aug 11, 2023
    risk 0.00cvss epss 0.00

    Race condition in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2022-36372Aug 11, 2023
    risk 0.00cvss epss 0.00

    Improper buffer restrictions in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2023-22449Aug 11, 2023
    risk 0.00cvss epss 0.00

    Improper input validation in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2023-34086Aug 11, 2023
    risk 0.00cvss epss 0.00

    Improper input validation in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2023-32617Aug 11, 2023
    risk 0.00cvss epss 0.00

    Improper input validation in some Intel(R) NUC Rugged Kit, Intel(R) NUC Kit and Intel(R) Compute Element BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2023-30760Aug 11, 2023
    risk 0.00cvss epss 0.00

    Out-of-bounds read in some Intel(R) RealSense(TM) ID software for Intel(R) RealSense(TM) 450 FA in version 0.25.0 may allow an authenticated user to potentially enable information disclosure via local access.

  • CVE-2023-33877Aug 11, 2023
    risk 0.00cvss epss 0.00

    Out-of-bounds write in some Intel(R) RealSense(TM) ID software for Intel(R) RealSense(TM) 450 FA in version 0.25.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2023-33867Aug 11, 2023
    risk 0.00cvss epss 0.00

    Improper buffer restrictions in some Intel(R) RealSense(TM) ID software for Intel(R) RealSense(TM) 450 FA in version 0.25.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2023-29243Aug 11, 2023
    risk 0.00cvss epss 0.00

    Unchecked return value in some Intel(R) RealSense(TM) ID software for Intel(R) RealSense(TM) 450 FA in version 0.25.0 may allow a priviledged user to potentially enable denial of service via local access.

  • CVE-2023-34427Aug 11, 2023
    risk 0.00cvss epss 0.00

    Protection mechanism failure in some Intel(R) RealSense(TM) ID software for Intel(R) RealSense(TM) 450 FA in version 0.25.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2023-32656Aug 11, 2023
    risk 0.00cvss epss 0.00

    Improper buffer restrictions in some Intel(R) RealSense(TM) ID software for Intel(R) RealSense(TM) 450 FA in version 0.25.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2023-29151Aug 11, 2023
    risk 0.00cvss epss 0.00

    Uncontrolled search path element in some Intel(R) PSR SDK before version 1.0.0.20 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2023-31246Aug 11, 2023
    risk 0.00cvss epss 0.00

    Incorrect default permissions in some Intel(R) SDP Tool software before version 1.4 build 5 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2023-34355Aug 11, 2023
    risk 0.00cvss epss 0.00

    Uncontrolled search path element for some Intel(R) Server Board M10JNP2SB integrated BMC video drivers before version 3.0 for Microsoft Windows and before version 1.13.4 for linux may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2022-44612Aug 11, 2023
    risk 0.00cvss epss 0.00

    Use of hard-coded credentials in some Intel(R) Unison(TM) software before version 10.12 may allow an authenticated user user to potentially enable information disclosure via local access.

  • CVE-2023-25757Aug 11, 2023
    risk 0.00cvss epss 0.00

    Improper access control in some Intel(R) Unison(TM) software before version 10.12 may allow a privileged user to potentially enable escalation of privilege via network access.

  • CVE-2022-29887Aug 11, 2023
    risk 0.00cvss epss 0.01

    Cross-site Scripting (XSS) in some Intel(R) Manageability Commander software before version 2.3 may allow an unauthenticated user to potentially enable escalation of privilege via network access.

  • CVE-2023-29500Aug 11, 2023
    risk 0.00cvss epss 0.00

    Exposure of sensitive information to an unauthorized actor in BIOS firmware for some Intel(R) NUCs may allow a privilege user to potentially enable information disclosure via local access.

  • CVE-2023-27887Aug 11, 2023
    risk 0.00cvss epss 0.00

    Improper initialization in BIOS firmware for some Intel(R) NUCs may allow a privileged user to potentially enable information disclosure via local access.

  • CVE-2023-29494Aug 11, 2023
    risk 0.00cvss epss 0.00

    Improper input validation in BIOS firmware for some Intel(R) NUCs may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2022-37336Aug 11, 2023
    risk 0.00cvss epss 0.00

    Improper input validation in BIOS firmware for some Intel(R) NUC may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2023-28823Aug 11, 2023
    risk 0.00cvss epss 0.00

    Uncontrolled search path in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.1.493 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2023-27391Aug 11, 2023
    risk 0.00cvss epss 0.00

    Improper access control in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.1.493 may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2023-28711Aug 11, 2023
    risk 0.00cvss epss 0.00

    Insufficient control flow management in the Hyperscan Library maintained by Intel(R) before version 5.4.1 may allow an authenticated user to potentially enable denial of service via local access.

Page 20 of 43