VYPR

Vendor CVEs

Intel

All CVEs

2,130 total · sorted by risk
  • CVE-2024-26017MedNov 13, 2024
    risk 0.44cvss 6.7epss 0.00

    Uncontrolled search path in some Intel(R) Rendering Toolkit software before version 2024.1.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2024-25647MedNov 13, 2024
    risk 0.44cvss 6.7epss 0.00

    Incorrect default permissions for some Intel(R) Binary Configuration Tool software for Windows before version 3.4.5 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2024-23312MedNov 13, 2024
    risk 0.44cvss 6.7epss 0.00

    Uncontrolled search path for some Intel(R) Binary Configuration Tool software for Windows before version 3.4.5 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2024-28953MedAug 14, 2024
    risk 0.44cvss 6.7epss 0.00

    Uncontrolled search path in some EMON software before version 11.44 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2024-23974MedAug 14, 2024
    risk 0.44cvss 6.7epss 0.00

    Incorrect default permissions in some Intel(R) ISH software installers may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2024-22378MedAug 14, 2024
    risk 0.44cvss 6.7epss 0.00

    Incorrect default permissions in some Intel Unite(R) Client Extended Display Plugin software installers before version 1.1.352.157 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2024-22376MedAug 14, 2024
    risk 0.44cvss 6.7epss 0.00

    Uncontrolled search path element in some installation software for Intel(R) Ethernet Adapter Driver Pack before version 28.3 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2024-21857MedAug 14, 2024
    risk 0.44cvss 6.7epss 0.00

    Uncontrolled search path for some Intel(R) oneAPI Compiler software before version 2024.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2024-21769MedAug 14, 2024
    risk 0.44cvss 6.7epss 0.00

    Uncontrolled search path in some Intel(R) Ethernet Connection I219-LM install software may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2024-21766MedAug 14, 2024
    risk 0.44cvss 6.7epss 0.00

    Uncontrolled search path for some Intel(R) oneAPI Math Kernel Library software before version 2024.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2023-49144MedAug 14, 2024
    risk 0.44cvss 6.7epss 0.00

    Out of bounds read in OpenBMC Firmware for some Intel(R) Server Platforms before versions egs-1.15-0, bhs-0.27 may allow a privileged user to potentially enable information disclosure via local access.

  • CVE-2023-43747MedAug 14, 2024
    risk 0.44cvss 6.7epss 0.00

    Incorrect default permissions for some Intel(R) Connectivity Performance Suite software installers before version 2.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2023-38655MedAug 14, 2024
    risk 0.44cvss 6.8epss 0.01

    Improper buffer restrictions in firmware for some Intel(R) AMT and Intel(R) Standard Manageability may allow a privileged user to potentially enable denial of service via network access.

  • CVE-2024-22379MedMay 16, 2024
    risk 0.44cvss 6.7epss 0.00

    Uncontrolled search path in some Intel(R) Inspector software before version 2024.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2024-21843MedMay 16, 2024
    risk 0.44cvss 6.7epss 0.00

    Uncontrolled search path for some Intel(R) Computing Improvement Program software before version 2.4.0.10654 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2024-21841MedMay 16, 2024
    risk 0.44cvss 6.7epss 0.00

    Uncontrolled search path for some Intel(R) Distribution for GDB software before version 2024.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2024-21828MedMay 16, 2024
    risk 0.44cvss 6.7epss 0.00

    Improper access control in some Intel(R) Ethernet Controller Administrative Tools software before version 28.3 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2024-21818MedMay 16, 2024
    risk 0.44cvss 6.7epss 0.00

    Uncontrolled search path in some Intel(R) PCM software before version 202311 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2024-21774MedMay 16, 2024
    risk 0.44cvss 6.7epss 0.00

    Uncontrolled search path in some Intel(R) Processor Identification Utility software before versions 6.10.34.1129, 7.1.6 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2023-43751MedMay 16, 2024
    risk 0.44cvss 6.7epss 0.00

    Uncontrolled search path in Intel(R) Graphics Command Center Service bundled in some Intel(R) Graphics Windows DCH driver software before versions 31.0.101.3790/31.0.101.2114 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2023-42668MedMay 16, 2024
    risk 0.44cvss 6.7epss 0.00

    Incorrect default permissions in some onboard video driver software before version 1.14 for Intel(R) Server Boards based on Intel(R) 62X Chipset may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2023-42433MedMay 16, 2024
    risk 0.44cvss 6.7epss 0.00

    Incorrect default permissions in some Endurance Gaming Mode software installers before version 1.3.937.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2023-40155MedMay 16, 2024
    risk 0.44cvss 6.7epss 0.00

    Uncontrolled search path for some Intel(R) CST software before version 2.1.10300 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2023-39929MedMay 16, 2024
    risk 0.44cvss 6.7epss 0.00

    Uncontrolled search path in some Libva software maintained by Intel(R) before version 2.20.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2023-35191MedMar 14, 2024
    risk 0.44cvss 6.8epss 0.01

    Uncontrolled resource consumption for some Intel(R) SPS firmware versions may allow a privileged user to potentially enable denial of service via network access.

  • CVE-2023-32633MedMar 14, 2024
    risk 0.44cvss 6.7epss 0.00

    Improper input validation in the Intel(R) CSME installer software before version 2328.5.5.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2023-28389MedMar 14, 2024
    risk 0.44cvss 6.7epss 0.00

    Incorrect default permissions in some Intel(R) CSME installer software before version 2328.5.5.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2018-3686MedSep 12, 2018
    risk 0.44cvss 6.7epss 0.00

    Code injection vulnerability in INTEL-SA-00086 Detection Tool before version 1.2.7.0 may allow a privileged user to potentially execute arbitrary code via local access.

  • CVE-2018-3659MedSep 12, 2018
    risk 0.44cvss 6.8epss 0.00

    A vulnerability in Intel PTT module in Intel CSME firmware before version 12.0.5 and Intel TXE firmware before version 4.0 may allow an unauthenticated user to potentially disclose information via physical access.

  • CVE-2018-3657MedSep 12, 2018
    risk 0.44cvss 6.7epss 0.01

    Multiple buffer overflows in Intel AMT in Intel CSME firmware versions before version 12.0.5 may allow a privileged user to potentially execute arbitrary code with Intel AMT execution privilege via local access.

  • CVE-2018-12150MedSep 12, 2018
    risk 0.44cvss 6.7epss 0.00

    Escalation of privilege in Installer for Intel Extreme Tuning Utility before 6.4.1.21 may allow an authenticated user to potentially execute code or disclose information as administrator via local access.

  • CVE-2018-3632MedJul 10, 2018
    risk 0.44cvss 6.7epss 0.00

    Memory corruption in Intel Active Management Technology in Intel Converged Security Manageability Engine Firmware 6.x / 7.x / 8.x / 9.x / 10.x / 11.0 / 11.5 / 11.6 / 11.7 / 11.10 / 11.20 could be triggered by an attacker with local administrator permission on the system.

  • CVE-2017-5704MedJul 10, 2018
    risk 0.44cvss 6.7epss 0.00

    Platform sample code firmware included with 4th Gen Intel Core Processor, 5th Gen Intel Core Processor, 6th Gen Intel Core Processor, and 7th Gen Intel Core Processor potentially exposes password information in memory to a local attacker with administrative privileges.

  • CVE-2018-3639MedMay 22, 2018
    risk 0.44cvss 5.5epss 0.61

    Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis,…

  • CVE-2017-5688MedMay 31, 2017
    risk 0.44cvss 6.7epss 0.00

    There is an escalation of privilege vulnerability in the Intel Solid State Drive Toolbox versions before 3.4.5 which allow a local administrative attacker to load and execute arbitrary code.

  • CVE-2016-8025MedMar 14, 2017
    risk 0.44cvss 6.2epss 0.07

    SQL injection vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows remote authenticated users to obtain product information via a crafted HTTP request parameter.

  • CVE-2016-8103MedDec 8, 2016
    risk 0.44cvss 6.7epss 0.00

    SMM call out in all Intel Branded NUC Kits allows a local privileged user to access the System Management Mode and take full control of the platform.

  • CVE-2026-20905MedMay 12, 2026
    risk 0.43cvss 6.6epss 0.00

    Improper input validation for some Intel(R) QAT software drivers for Windows before version 2.6 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of…

  • CVE-2026-20782MedMay 12, 2026
    risk 0.43cvss 6.6epss 0.00

    Buffer overflow for some Intel(R) QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service.…

  • CVE-2026-20717MedMay 12, 2026
    risk 0.43cvss 6.6epss 0.00

    Improper input validation for some Intel(R) QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of…

  • CVE-2026-20709MedApr 8, 2026
    risk 0.43cvss 6.6epss 0.00

    Use of Default Cryptographic Key in the hardware for some Intel(R) Pentium(R) Processor Silver Series, Intel(R) Celeron(R) Processor J Series, Intel(R) Celeron(R) Processor N Series may allow an escalation of privilege. Hardware reverse engineer adversary with a privileged user…

  • CVE-2025-24921MedAug 12, 2025
    risk 0.43cvss 6.6epss 0.00

    Improper neutralization for some Edge Orchestrator software before version 24.11.1 for Intel(R) Tiber(TM) Edge Platform may allow an unauthenticated user to potentially enable information disclosure via adjacent access.

  • CVE-2024-34170MedNov 13, 2024
    risk 0.43cvss 6.6epss 0.00

    Improper buffer restrictions in some Intel(R) Graphics Drivers may allow an authenticated user to potentially enable denial of service via local access.

  • CVE-2016-8019MedMar 14, 2017
    risk 0.43cvss 6.1epss 0.04

    Cross-site scripting (XSS) vulnerability in attributes in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows unauthenticated remote attackers to inject arbitrary web script or HTML via a crafted user input.

  • CVE-2025-30508MedFeb 10, 2026
    risk 0.42cvss 6.5epss 0.00

    Improper authorization in the Intel(R) Quick Assist Technology for some Intel(R) Platforms within Ring 0: Kernel may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This…

  • CVE-2025-26402MedNov 11, 2025
    risk 0.42cvss 6.5epss 0.00

    Protection mechanism failure for some Intel(R) NPU Drivers within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may potentially…

  • CVE-2025-24835MedAug 12, 2025
    risk 0.42cvss 6.5epss 0.00

    Protection mechanism failure in the Intel(R) Graphics Driver for the Intel(R) Arc(TM) B-Series graphics before version 32.0.101.6737 may allow an authenticated user to potentially enable denial of service via local access.

  • CVE-2025-24515MedAug 12, 2025
    risk 0.42cvss 6.5epss 0.00

    NULL pointer dereference for some Intel(R) Graphics Drivers may allow an authenticated user to potentially enable denial of service via local access.

  • CVE-2025-24323MedAug 12, 2025
    risk 0.42cvss 6.5epss 0.00

    Improper access control in some firmware package and LED mode toggle tool for some Intel(R) PCIe Switch software before version MR4_1.0b1 may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2025-21090MedAug 12, 2025
    risk 0.42cvss 6.5epss 0.00

    Missing reference to active allocated resource for some Intel(R) Xeon(R) processors may allow an authenticated user to potentially enable denial of service via local access.

Page 7 of 43