VYPR

Vendor CVEs

Intel

All CVEs

2,130 total · sorted by risk
  • CVE-2018-3649HigMay 10, 2018
    risk 0.51cvss 7.8epss 0.01

    DLL injection vulnerability in the installation executables (Autorun.exe and Setup.exe) for Intel's wireless drivers and related software in Intel Dual Band Wireless-AC, Tri-Band Wireless-AC and Wireless-AC family of products allows a local attacker to cause escalation of…

  • CVE-2018-3612HigMay 10, 2018
    risk 0.51cvss 7.8epss 0.00

    Intel NUC kits with insufficient input validation in system firmware, potentially allows a local attacker to elevate privileges to System Management Mode (SMM).

  • CVE-2018-3645HigApr 3, 2018
    risk 0.51cvss 7.8epss 0.00

    Escalation of privilege in all versions of the Intel Remote Keyboard allows a local attacker to inject keystrokes into another remote keyboard session.

  • CVE-2018-3638HigApr 3, 2018
    risk 0.51cvss 7.8epss 0.00

    Escalation of privilege in all versions of the Intel Remote Keyboard allows an authorized local attacker to execute arbitrary code as a privileged user.

  • CVE-2018-4132HigApr 3, 2018
    risk 0.51cvss 7.8epss 0.01

    An issue was discovered in certain Apple products. macOS before 10.13.4 is affected. The issue involves the "Intel Graphics Driver" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.

  • CVE-2017-5727HigFeb 2, 2018
    risk 0.51cvss 7.8epss 0.00

    Pointer dereference in subsystem in Intel Graphics Driver 15.40.x.x, 15.45.x.x, 15.46.x.x allows unprivileged user to elevate privileges via local access.

  • CVE-2017-5696HigJan 18, 2018
    risk 0.51cvss 7.8epss 0.01

    Untrusted search path in Intel Graphics Driver 15.40.x.x, 15.45.x.x, and 21.20.x.x allows unprivileged user to elevate privileges via local access.

  • CVE-2017-5711HigNov 21, 2017
    risk 0.51cvss 7.8epss 0.01

    Multiple buffer overflows in Active Management Technology (AMT) in Intel Manageability Engine Firmware 8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20 allow attacker with local access to the system to execute arbitrary code with AMT execution privilege.

  • CVE-2017-5710HigNov 21, 2017
    risk 0.51cvss 7.8epss 0.01

    Multiple privilege escalations in kernel in Intel Trusted Execution Engine Firmware 3.0 allows unauthorized process to access privileged content via unspecified vector.

  • CVE-2017-5709HigNov 21, 2017
    risk 0.51cvss 7.8epss 0.01

    Multiple privilege escalations in kernel in Intel Server Platform Services Firmware 4.0 allows unauthorized process to access privileged content via unspecified vector.

  • CVE-2017-5708HigNov 21, 2017
    risk 0.51cvss 7.8epss 0.01

    Multiple privilege escalations in kernel in Intel Manageability Engine Firmware 11.0/11.5/11.6/11.7/11.10/11.20 allow unauthorized process to access privileged content via unspecified vector.

  • CVE-2017-5707HigNov 21, 2017
    risk 0.51cvss 7.8epss 0.01

    Multiple buffer overflows in kernel in Intel Trusted Execution Engine Firmware 3.0 allow attacker with local access to the system to execute arbitrary code.

  • CVE-2017-5706HigNov 21, 2017
    risk 0.51cvss 7.8epss 0.01

    Multiple buffer overflows in kernel in Intel Server Platform Services Firmware 4.0 allow attacker with local access to the system to execute arbitrary code.

  • CVE-2017-5705HigNov 21, 2017
    risk 0.51cvss 7.8epss 0.01

    Multiple buffer overflows in kernel in Intel Manageability Engine Firmware 11.0/11.5/11.6/11.7/11.10/11.20 allow attacker with local access to the system to execute arbitrary code.

  • CVE-2017-5683HigApr 4, 2017
    risk 0.51cvss 7.8epss 0.00

    Privilege escalation in IntelHAXM.sys driver in the Intel Hardware Accelerated Execution Manager before version 6.0.6 allows a local user to gain system level access.

  • CVE-2016-8026HigMar 14, 2017
    risk 0.51cvss 7.8epss 0.00

    Arbitrary command execution vulnerability in Intel Security McAfee Security Scan Plus (SSP) 3.11.469 and earlier allows authenticated users to gain elevated privileges via unspecified vectors.

  • CVE-2016-8012HigMar 14, 2017
    risk 0.51cvss 7.8epss 0.00

    Access control vulnerability in Intel Security Data Loss Prevention Endpoint (DLPe) 9.4.200 and 9.3.600 allows authenticated users with Read-Write-Execute permissions to inject hook DLLs into other processes via pages in the target process memory get.

  • CVE-2016-8010HigMar 14, 2017
    risk 0.51cvss 7.8epss 0.00

    Application protections bypass vulnerability in Intel Security McAfee Application Control (MAC) 7.0 and earlier and Endpoint Security (ENS) 10.2 and earlier allows local users to bypass local security protection via a command-line utility.

  • CVE-2016-8009HigMar 14, 2017
    risk 0.51cvss 7.8epss 0.00

    Privilege escalation vulnerability in Intel Security McAfee Application Control (MAC) 7.0 and 6.x versions allows attackers to cause DoS, unexpected behavior, or potentially unauthorized code execution via an unauthorized use of IOCTL call.

  • CVE-2016-5647HigDec 13, 2016
    risk 0.51cvss 7.8epss 0.01

    The igdkmd64 module in the Intel Graphics Driver through 15.33.42.435, 15.36.x through 15.36.30.4385, and 15.40.x through 15.40.4404 on Windows allows local users to cause a denial of service (crash) or gain privileges via a crafted D3DKMTEscape request.

  • CVE-2016-8102HigDec 8, 2016
    risk 0.51cvss 7.8epss 0.00

    Unquoted service path vulnerability in Intel Wireless Bluetooth Drivers 16.x, 17.x, and before 18.1.1607.3129 allows local users to launch processes with elevated privileges.

  • CVE-2016-8101HigOct 10, 2016
    risk 0.51cvss 7.8epss 0.00

    The updater subsystem in Intel SSD Toolbox before 3.3.7 allows local users to gain privileges via unspecified vectors.

  • CVE-2025-20008HigMay 13, 2025
    risk 0.50cvss 7.7epss 0.00

    Insecure inherited permissions for some Intel(R) Simics(R) Package Manager software before version 1.12.0 may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2024-38307HigFeb 12, 2025
    risk 0.50cvss 7.7epss 0.01

    Improper input validation in the firmware for some Intel(R) AMT and Intel(R) Standard Manageability may allow an authenticated user to potentially enable denial of service via network access.

  • CVE-2025-22453HigFeb 10, 2026
    risk 0.49cvss 7.5epss 0.00

    Improper input validation for some Server Firmware Update Utility(SysFwUpdt) before version 16.0.12 within Ring 3: User Applications may allow an escalation of privilege. System software adversary with a privileged user combined with a high complexity attack may enable local…

  • CVE-2025-11577HigOct 14, 2025
    risk 0.49cvss 7.6epss 0.00

    Clevo’s UEFI firmware update packages, including B10717.exe, inadvertently contained private signing keys used for Boot Guard and Boot Policy Manifest verification. The exposure of these keys could allow attackers to sign malicious firmware that appears trusted by affected…

  • CVE-2025-22839HigAug 12, 2025
    risk 0.49cvss 7.5epss 0.00

    Insufficient granularity of access control in the OOB-MSM for some Intel(R) Xeon(R) 6 Scalable processors may allow a privileged user to potentially enable escalation of privilege via adjacent access.

  • CVE-2025-21086HigAug 12, 2025
    risk 0.49cvss 7.5epss 0.00

    Improper input validation in the Linux kernel-mode driver for some Intel(R) 700 Series Ethernet before version 2.28.5 may allow an authenticated user to potentially enable escalation of privilege.

  • CVE-2025-24308HigMay 13, 2025
    risk 0.49cvss 7.5epss 0.00

    Improper input validation in the UEFI firmware error handler for the Intel(R) Server D50DNP and M50FCP may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2025-21094HigMay 13, 2025
    risk 0.49cvss 7.5epss 0.00

    Improper input validation in the UEFI firmware DXE module for the Intel(R) Server D50DNP and M50FCP boards may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2025-20100HigMay 13, 2025
    risk 0.49cvss 7.5epss 0.00

    Improper access control in the memory controller configurations for some Intel(R) Xeon(R) 6 processor with E-cores may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2025-20082HigMay 13, 2025
    risk 0.49cvss 7.5epss 0.00

    Time-of-check time-of-use race condition in the UEFI firmware SmiVariable driver for the Intel(R) Server D50DNP and M50FCP boards may allow a privileged user to enable escalation of privilege via local access.

  • CVE-2024-41917HigFeb 12, 2025
    risk 0.49cvss 7.5epss 0.00

    Time-of-check time-of-use race condition for some Intel(R) Battery Life Diagnostic Tool software before version 2.4.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2024-31155HigFeb 12, 2025
    risk 0.49cvss 7.5epss 0.00

    Improper buffer restrictions in the UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2024-29214HigFeb 12, 2025
    risk 0.49cvss 7.5epss 0.00

    Improper input validation in UEFI firmware CseVariableStorageSmm for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2024-28127HigFeb 12, 2025
    risk 0.49cvss 7.5epss 0.00

    Improper input validation in UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2024-24582HigFeb 12, 2025
    risk 0.49cvss 7.5epss 0.00

    Improper input validation in XmlCli feature for UEFI firmware for some Intel(R) processors may allow privileged user to potentially enable escalation of privilege via local access.

  • CVE-2023-49618HigFeb 12, 2025
    risk 0.49cvss 7.5epss 0.00

    Improper buffer restrictions in some Intel(R) System Security Report and System Resources Defense firmware may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2023-49615HigFeb 12, 2025
    risk 0.49cvss 7.5epss 0.00

    Improper input validation in some Intel(R) System Security Report and System Resources Defense firmware may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2023-49603HigFeb 12, 2025
    risk 0.49cvss 7.5epss 0.00

    Race condition in some Intel(R) System Security Report and System Resources Defense firmware may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2023-34440HigFeb 12, 2025
    risk 0.49cvss 7.5epss 0.00

    Improper input validation in UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2024-31158HigNov 13, 2024
    risk 0.49cvss 7.5epss 0.00

    Improper input validation in UEFI firmware in some Intel(R) Server Board S2600BP Family may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2024-31154HigNov 13, 2024
    risk 0.49cvss 7.5epss 0.00

    Improper input validation in UEFI firmware for some Intel(R) Server S2600BPBR may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2024-28028HigNov 13, 2024
    risk 0.49cvss 7.5epss 0.00

    Improper input validation in some Intel(R) Neural Compressor software before version v3.0 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

  • CVE-2024-21871HigSep 16, 2024
    risk 0.49cvss 7.5epss 0.00

    Improper input validation in UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2024-21829HigSep 16, 2024
    risk 0.49cvss 7.5epss 0.00

    Improper input validation in UEFI firmware error handler for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2023-43626HigSep 16, 2024
    risk 0.49cvss 7.5epss 0.00

    Improper access control in UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2024-24981HigMay 16, 2024
    risk 0.49cvss 7.5epss 0.00

    Improper input validation in PfrSmiUpdateFw driver in UEFI firmware for some Intel(R) Server M50FCP Family products may allow a privileged user to enable escalation of privilege via local access.

  • CVE-2024-23980HigMay 16, 2024
    risk 0.49cvss 7.5epss 0.00

    Improper buffer restrictions in PlatformPfrDxe driver in UEFI firmware for some Intel(R) Server D50FCP Family products may allow a privileged user to enable escalation of privilege via local access.

  • CVE-2024-23487HigMay 16, 2024
    risk 0.49cvss 7.5epss 0.00

    Improper input validation in UserAuthenticationSmm driver in UEFI firmware for some Intel(R) Server D50DNP Family products may allow a privileged user to enable escalation of privilege via local access.

Page 3 of 43