VYPR

Vendor CVEs

Intel

All CVEs

2,130 total · sorted by risk
  • CVE-2025-22892MedMay 13, 2025
    risk 0.42cvss 6.5epss 0.00

    Uncontrolled resource consumption for some OpenVINO™ model server software maintained by Intel(R) before version 2024.4 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

  • CVE-2025-20103MedMay 13, 2025
    risk 0.42cvss 6.5epss 0.00

    Insufficient resource pool in the core management mechanism for some Intel(R) Processors may allow an authenticated user to potentially enable denial of service via local access.

  • CVE-2025-20054MedMay 13, 2025
    risk 0.42cvss 6.5epss 0.00

    Uncaught exception in the core management mechanism for some Intel(R) Processors may allow an authenticated user to potentially enable denial of service via local access.

  • CVE-2025-20031MedMay 13, 2025
    risk 0.42cvss 6.5epss 0.00

    Improper input validation for some Intel(R) Graphics Drivers may allow an authenticated user to potentially enable denial of service via local access.

  • CVE-2024-42410MedFeb 12, 2025
    risk 0.42cvss 6.5epss 0.00

    Improper input validation in some Intel(R) Graphics Drivers may allow an authenticated user to potentially enable denial of service via local access.

  • CVE-2024-39797MedFeb 12, 2025
    risk 0.42cvss 6.5epss 0.00

    Improper access control in some drivers for Intel(R) Ethernet Connection I219 Series before version 12.19.1.39 may allow an authenticated user to potentially enable denial of service via local access.

  • CVE-2024-39355MedFeb 12, 2025
    risk 0.42cvss 6.5epss 0.00

    Improper handling of physical or environmental conditions in some Intel(R) Processors may allow an authenticated user to enable denial of service via local access.

  • CVE-2024-39279MedFeb 12, 2025
    risk 0.42cvss 6.5epss 0.00

    Insufficient granularity of access control in UEFI firmware in some Intel(R) processors may allow a authenticated user to potentially enable denial of service via local access.

  • CVE-2024-36293MedFeb 12, 2025
    risk 0.42cvss 6.5epss 0.00

    Improper access control in the EDECCSSA user leaf function for some Intel(R) Processors with Intel(R) SGX may allow an authenticated user to potentially enable denial of service via local access.

  • CVE-2024-36274MedFeb 12, 2025
    risk 0.42cvss 6.5epss 0.00

    Out-of-bounds write in the Intel(R) 800 Series Ethernet Driver for Intel(R) Ethernet Adapter Complete Driver Pack before versions 29.1 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

  • CVE-2024-40885MedNov 13, 2024
    risk 0.42cvss 6.4epss 0.00

    Use after free in the UEFI firmware of some Intel(R) Server M20NTP BIOS may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2024-32048MedNov 13, 2024
    risk 0.42cvss 6.5epss 0.00

    Improper input validation in the Intel(R) Distribution of OpenVINO(TM) Model Server software before version 2024.0 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

  • CVE-2024-24984MedNov 13, 2024
    risk 0.42cvss 6.5epss 0.00

    Improper input validation for some Intel(R) Wireless Bluetooth(R) products for Windows before version 23.40 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

  • CVE-2024-24983MedAug 14, 2024
    risk 0.42cvss 6.5epss 0.00

    Protection mechanism failure in firmware for some Intel(R) Ethernet Network Controllers and Adapters E810 Series before version 4.4 may allow an unauthenticated user to potentially enable denial of service via network access.

  • CVE-2024-22374MedAug 14, 2024
    risk 0.42cvss 6.5epss 0.00

    Insufficient control flow management for some Intel(R) Xeon Processors may allow an authenticated user to potentially enable denial of service via local access.

  • CVE-2024-21787MedAug 14, 2024
    risk 0.42cvss 6.4epss 0.00

    Inadequate encryption strength for some BMRA software before version 22.08 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2024-22015MedMay 16, 2024
    risk 0.42cvss 6.5epss 0.00

    Improper input validation for some Intel(R) DLB driver software before version 8.5.0 may allow an authenticated user to potentially denial of service via local access.

  • CVE-2023-39368MedMar 14, 2024
    risk 0.42cvss 6.5epss 0.01

    Protection mechanism failure of bus lock regulator for some Intel(R) Processors may allow an unauthenticated user to potentially enable denial of service via network access.

  • CVE-2023-28746MedMar 14, 2024
    risk 0.42cvss 6.5epss 0.01

    Information exposure through microarchitectural state after transient execution from some register files for some Intel(R) Atom(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

  • CVE-2020-26140MedMay 11, 2021
    risk 0.42cvss 6.5epss 0.03

    An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The WEP, WPA, WPA2, and WPA3 implementations accept plaintext frames in a protected Wi-Fi network. An adversary can abuse this to inject arbitrary data frames independent of the network configuration.

  • CVE-2018-3629MedJul 10, 2018
    risk 0.42cvss 6.5epss 0.01

    Buffer overflow in event handler in Intel Active Management Technology in Intel Converged Security Manageability Engine Firmware 3.x, 4.x, 5.x, 6.x, 7.x, 8.x, 9.x, 10.x, and 11.x may allow an attacker to cause a denial of service via the same subnet.

  • CVE-2018-3611MedMay 15, 2018
    risk 0.42cvss 6.5epss 0.02

    Bounds check vulnerability in User Mode Driver in Intel Graphics Driver 15.40.x.4 and 21.20.x.x allows unprivileged user to cause a denial of service via local access.

  • CVE-2017-5697MedJun 14, 2017
    risk 0.42cvss 6.5epss 0.01

    Insufficient clickjacking protection in the Web User Interface of Intel AMT firmware versions before 9.1.40.1000, 9.5.60.1952, 10.0.50.1004, 11.0.0.1205, and 11.6.25.1129 potentially allowing a remote attacker to hijack users web clicks via attacker's crafted web page.

  • CVE-2016-8005MedMar 14, 2017
    risk 0.42cvss 6.5epss 0.01

    File extension filtering vulnerability in Intel Security McAfee Email Gateway (MEG) before 7.6.404h1128596 allows attackers to fail to identify the file name properly via scanning an email with a forged attached filename that uses a null byte within the filename extension.

  • CVE-2016-8105MedFeb 27, 2017
    risk 0.42cvss 6.5epss 0.00

    Drivers for the Intel Ethernet Controller X710 and Intel Ethernet Controller XL710 families before version 22.0 are vulnerable to a denial of service in certain layer 2 network configurations.

  • CVE-2025-24848MedNov 11, 2025
    risk 0.41cvss 6.3epss 0.00

    Protection mechanism failure for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with a privileged user combined with a high complexity attack may enable…

  • CVE-2024-39811MedNov 13, 2024
    risk 0.41cvss 6.3epss 0.00

    Improper input validation in firmware for some Intel(R) Server M20NTP Family UEFI may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2026-20771MedMay 12, 2026
    risk 0.40cvss 6.1epss 0.00

    Null pointer dereference for some Intel(R) QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of…

  • CVE-2025-31146MedNov 11, 2025
    risk 0.40cvss 6.1epss 0.00

    Time-of-check time-of-use race condition for some Intel Ethernet Adapter Complete Driver Pack software before version 1.5.1.0 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity…

  • CVE-2025-12464MedOct 31, 2025
    risk 0.40cvss 6.2epss 0.00

    A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code still being able to process a short frame in…

  • CVE-2025-22448MedMay 13, 2025
    risk 0.40cvss 6.1epss 0.00

    Insecure inherited permissions for some Intel(R) Simics(R) Package Manager software before version 1.12.0 may allow an authenticated user to potentially enable denial of service via local access.

  • CVE-2024-48869MedMay 13, 2025
    risk 0.40cvss 6.1epss 0.00

    Improper restriction of software interfaces to hardware features for some Intel(R) Xeon(R) 6 processor with E-cores when using Intel(R) Trust Domain Extensions (Intel(R) TDX) or Intel(R) Software Guard Extensions (Intel(R) SGX) may allow a privileged user to potentially enable…

  • CVE-2024-29222MedMay 13, 2025
    risk 0.40cvss 6.1epss 0.00

    Out-of-bounds write for some Intel(R) Graphics Driver software may allow an authenticated user to potentially enable denial of service via local access.

  • CVE-2024-41166MedFeb 12, 2025
    risk 0.40cvss 6.1epss 0.00

    Stack-based buffer overflow in some Intel(R) PROSet/Wireless WiFi and Killerâ„¢ WiFi software for Windows before version 23.80 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

  • CVE-2024-40887MedFeb 12, 2025
    risk 0.40cvss 6.1epss 0.00

    Race condition in some Intel(R) PROSet/Wireless WiFi and Killerâ„¢ WiFi software for Windows before version 23.80 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

  • CVE-2024-39606MedFeb 12, 2025
    risk 0.40cvss 6.1epss 0.00

    Improper input validation in some Intel(R) PROSet/Wireless WiFi and Killerâ„¢ WiFi software for Windows before version 23.80 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

  • CVE-2023-32277MedFeb 12, 2025
    risk 0.40cvss 6.1epss 0.00

    Untrusted Pointer Dereference in I/O subsystem for some Intel(R) QAT software before version 2.0.5 may allow authenticated user to potentially enable information disclosure via local operating system access.

  • CVE-2024-36275MedNov 13, 2024
    risk 0.40cvss 6.1epss 0.00

    NULL pointer dereference in some Intel(R) Optane(TM) PMem Management software versions before CR_MGMT_02.00.00.4040, CR_MGMT_03.00.00.0499 may allow a authenticated user to potentially enable denial of service via local access.

  • CVE-2023-23904MedSep 16, 2024
    risk 0.40cvss 6.1epss 0.00

    NULL pointer dereference in the UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2023-22351MedSep 16, 2024
    risk 0.40cvss 6.1epss 0.00

    Out-of-bounds write in UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2024-24980MedAug 14, 2024
    risk 0.40cvss 6.1epss 0.00

    Protection mechanism failure in some 3rd, 4th, and 5th Generation Intel(R) Xeon(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2023-28383MedMay 16, 2024
    risk 0.40cvss 6.1epss 0.00

    Improper conditions check in some Intel(R) BIOS PPAM firmware may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2023-22655MedMar 14, 2024
    risk 0.40cvss 6.1epss 0.00

    Protection mechanism failure in some 3rd and 4th Generation Intel(R) Xeon(R) Processors when using Intel(R) SGX or Intel(R) TDX may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2016-8011MedMar 14, 2017
    risk 0.40cvss 6.1epss 0.01

    Cross-site scripting vulnerability in Intel Security McAfee Endpoint Security (ENS) Web Control before 10.2.0.408.10 allows attackers to inject arbitrary web script or HTML via a crafted web site.

  • CVE-2025-24296MedAug 12, 2025
    risk 0.39cvss 6.0epss 0.00

    Improper input validation in some firmware for the Intel(R) E810 Ethernet before version 4.6 may allow a privileged user to enable denial of service via local access.

  • CVE-2025-20067MedAug 12, 2025
    risk 0.39cvss 6.0epss 0.00

    Observable timing discrepancy in firmware for some Intel(R) CSME and Intel(R) SPS may allow a privileged user to potentially enable information disclosure via local access.

  • CVE-2024-30211MedFeb 12, 2025
    risk 0.39cvss 6.0epss 0.00

    Improper access control in some Intel(R) ME driver pack installer engines before version 2422.6.2.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2024-21850MedNov 13, 2024
    risk 0.39cvss 6.0epss 0.00

    Sensitive information in resource not removed before reuse in some Intel(R) TDX Seamldr module software before version 1.5.02.00 may allow a privileged user to potentially enable escalation of privilege via local access.

  • CVE-2024-25939MedAug 14, 2024
    risk 0.39cvss 6.0epss 0.00

    Mirrored regions with different values in 3rd Generation Intel(R) Xeon(R) Scalable Processors may allow a privileged user to potentially enable denial of service via local access.

  • CVE-2023-47165MedMay 16, 2024
    risk 0.39cvss 6.0epss 0.00

    Improper conditions check in the Intel(R) Data Center GPU Max Series 1100 and 1550 products may allow an privileged user to potentially enable denial of service via local access.

Page 8 of 43