VYPR

Vendor CVEs

Intel

All CVEs

2,130 total · sorted by risk
  • CVE-2018-3616MedSep 12, 2018
    risk 0.39cvss 5.9epss 0.02

    Bleichenbacher-style side channel vulnerability in TLS implementation in Intel Active Management Technology before 12.0.5 may allow an unauthenticated user to potentially obtain the TLS session key via the network.

  • CVE-2017-5703MedApr 3, 2018
    risk 0.39cvss 6.0epss 0.00

    Configuration of SPI Flash in platforms based on multiple Intel platforms allow a local attacker to alter the behavior of the SPI flash potentially leading to a Denial of Service.

  • CVE-2018-3610MedJan 9, 2018
    risk 0.39cvss 6.0epss 0.00

    SEMA driver in Intel Driver and Support Assistant before version 3.1.1 allows a local attacker the ability to read and writing to Memory Status registers potentially allowing information disclosure or a denial of service condition.

  • CVE-2016-8106MedJan 9, 2017
    risk 0.39cvss 5.9epss 0.05

    A Denial of Service in Intel Ethernet Controller's X710/XL710 with Non-Volatile Memory Images before version 5.05 allows a remote attacker to stop the controller from processing network traffic working under certain network use conditions.

  • CVE-2025-26405MedNov 11, 2025
    risk 0.38cvss 5.9epss 0.00

    Improper control of dynamically-managed code resources for some Intel(R) NPU Drivers within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service.…

  • CVE-2025-24840MedAug 12, 2025
    risk 0.38cvss 5.8epss 0.00

    Improper access control for some Edge Orchestrator software before version 24.11.1 for Intel(R) Tiber(TM) Edge Platform may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

  • CVE-2024-39758MedMay 13, 2025
    risk 0.38cvss 5.9epss 0.00

    Improper access control for some Intel(R) Arc™ & Iris(R) Xe graphics software before version 31.0.101.4032 may allow an authenticated user to potentially enable denial of service via local access.

  • CVE-2024-41934MedFeb 12, 2025
    risk 0.38cvss 5.9epss 0.00

    Improper access control in some Intel(R) GPA software before version 2024.3 may allow an authenticated user to potentially enable denial of service via local access.

  • CVE-2024-33617MedNov 13, 2024
    risk 0.38cvss 5.9epss 0.00

    Insufficient control flow management in some Intel(R) QAT Engine for OpenSSL software before version v1.6.1 may allow information disclosure via network access.

  • CVE-2024-31074MedNov 13, 2024
    risk 0.38cvss 5.9epss 0.01

    Observable timing discrepancy in some Intel(R) QAT Engine for OpenSSL software before version v1.6.1 may allow information disclosure via network access.

  • CVE-2024-28885MedNov 13, 2024
    risk 0.38cvss 5.9epss 0.00

    Observable discrepancy in some Intel(R) QAT Engine for OpenSSL software before version v1.6.1 may allow information disclosure via network access.

  • CVE-2023-22662MedMay 16, 2024
    risk 0.38cvss 5.8epss 0.00

    Improper input validation of EpsdSrMgmtConfig in UEFI firmware for some Intel(R) Server Board S2600BP products may allow a privileged user to potentially enable denial of service via local access.

  • CVE-2014-9920MedMar 14, 2017
    risk 0.38cvss 5.9epss 0.01

    Unauthorized execution of binary vulnerability in McAfee (now Intel Security) McAfee Application Control (MAC) 6.0.0 before hotfix 9726, 6.0.1 before hotfix 9068, 6.1.0 before hotfix 692, 6.1.1 before hotfix 399, 6.1.2 before hotfix 426, and 6.1.3 before hotfix 357 and earlier…

  • CVE-2025-27712MedNov 11, 2025
    risk 0.37cvss 5.7epss 0.00

    Improper neutralization for some Intel(R) Neural Compressor software before version v3.4 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable escalation…

  • CVE-2025-26472MedAug 12, 2025
    risk 0.37cvss 5.7epss 0.00

    Uncontrolled resource consumption for some Edge Orchestrator software before version 24.11.1 for Intel(R) Tiber(TM) Edge Platform may allow an authenticated user to potentially enable denial of service via adjacent access.

  • CVE-2025-20624MedMay 13, 2025
    risk 0.37cvss 5.7epss 0.00

    Exposure of sensitive information to an unauthorized actor for some Edge Orchestrator software for Intel(R) Tiber™ Edge Platform may allow an authenticated user to potentially enable information disclosure via adjacent access.

  • CVE-2025-20047MedMay 13, 2025
    risk 0.37cvss 5.7epss 0.00

    Improper locking in the Intel(R) Integrated Connectivity I/O interface (CNVi) for some Intel(R) Core™ Ultra Processors may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

  • CVE-2023-40067MedAug 14, 2024
    risk 0.37cvss 5.7epss 0.00

    Unchecked return value in firmware for some Intel(R) CSME may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

  • CVE-2023-49614MedMay 16, 2024
    risk 0.37cvss 5.7epss 0.00

    Out of bounds write in firmware for some Intel(R) FPGA products before version 2.9.0 may allow escalation of privilege and information disclosure.

  • CVE-2018-3671MedAug 1, 2018
    risk 0.37cvss 5.7epss 0.00

    Escalation of privilege in Intel Saffron admin application before 11.4 allows an authenticated user to access unauthorized information.

  • CVE-2018-3663MedAug 1, 2018
    risk 0.37cvss 5.7epss 0.00

    Escalation of privilege in Intel Saffron MemoryBase before 11.4 allows an authenticated user access to privileged information.

  • CVE-2026-20914MedMay 12, 2026
    risk 0.36cvss 5.5epss 0.00

    Null pointer dereference for some Intel(R) QAT software drivers for Windows before version 2.6.0 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of…

  • CVE-2026-20881MedMay 12, 2026
    risk 0.36cvss 5.5epss 0.00

    Divide by zero for some Intel(R) QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service.…

  • CVE-2025-35991MedMay 12, 2026
    risk 0.36cvss epss 0.00

    Improper initialization in the UEFI firmware for some Intel platforms within Ring 0: Bare Metal OS may allow an information disclosure. System software adversary with a privileged user combined with a high complexity attack may enable data exposure. This result may potentially…

  • CVE-2024-36316MedFeb 11, 2026
    risk 0.36cvss 5.5epss 0.00

    The integer overflow vulnerability within AMD Graphics driver could allow an attacker to bypass size checks potentially resulting in a denial of service

  • CVE-2025-32735MedFeb 10, 2026
    risk 0.36cvss 5.5epss 0.00

    Improper conditions check in some firmware for some Intel(R) NPU Drivers within Ring 1: Device Drivers may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may…

  • CVE-2025-24512MedNov 11, 2025
    risk 0.36cvss 5.6epss 0.00

    Improper input validation for some Intel(R) PROSet/Wireless WiFi Software for Windows before version 23.160 within Ring 2: Device Drivers may allow a denial of service. Authorized adversary with an authenticated user combined with a high complexity attack may enable denial of…

  • CVE-2025-27537MedAug 12, 2025
    risk 0.36cvss 5.5epss 0.00

    Improper input validation for some Edge Orchestrator software before version 24.11.1 for Intel(R) Tiber(TM) Edge Platform may allow an authenticated user to potentially enable escalation of privilege via adjacent access.

  • CVE-2024-36357MedJul 8, 2025
    risk 0.36cvss 5.6epss 0.00

    A transient execution vulnerability in some AMD processors may allow an attacker to infer data in the L1D cache, potentially resulting in the leakage of sensitive information across privileged boundaries.

  • CVE-2025-24495MedMay 13, 2025
    risk 0.36cvss 5.6epss 0.00

    Incorrect initialization of resource in the branch prediction unit for some Intel(R) Core™ Ultra Processors may allow an authenticated user to potentially enable information disclosure via local access.

  • CVE-2025-22895MedMay 13, 2025
    risk 0.36cvss 5.5epss 0.00

    Exposure of sensitive information to an unauthorized actor for some Edge Orchestrator software for Intel(R) Tiber™ Edge Platform may allow an authenticated user to potentially enable information disclosure via local access.

  • CVE-2025-20616MedMay 13, 2025
    risk 0.36cvss 5.5epss 0.00

    Uncontrolled resource consumption for some Edge Orchestrator software for Intel(R) Tiber™ Edge Platform may allow an authenticated user to potentially enable escalation of privilege via adjacent access.

  • CVE-2025-20612MedMay 13, 2025
    risk 0.36cvss 5.5epss 0.00

    Incorrect execution-assigned permissions for some Edge Orchestrator software for Intel(R) Tiber™ Edge Platform may allow an authenticated user to potentially enable escalation of privilege via adjacent access.

  • CVE-2025-20013MedMay 13, 2025
    risk 0.36cvss 5.5epss 0.00

    Exposure of sensitive information to an unauthorized actor for some Edge Orchestrator software for Intel(R) Tiber™ Edge Platform may allow an authenticated user to potentially enable information disclosure via local access.

  • CVE-2024-45332MedMay 13, 2025
    risk 0.36cvss 5.6epss 0.00

    Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution in the indirect branch predictors for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

  • CVE-2024-43420MedMay 13, 2025
    risk 0.36cvss 5.6epss 0.00

    Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some Intel Atom(R) processors may allow an authenticated user to potentially enable information disclosure via local access.

  • CVE-2024-28036MedMay 13, 2025
    risk 0.36cvss 5.6epss 0.00

    Improper conditions check for some Intel(R) Arc™ GPU may allow an authenticated user to potentially enable denial of service via local access.

  • CVE-2024-36285MedFeb 12, 2025
    risk 0.36cvss 5.6epss 0.00

    Race condition in some Intel(R) PROSet/Wireless WiFi and Killerâ„¢ WiFi software for Windows before version 23.80 may allow an authenticated user to potentially enable denial of service via local access.

  • CVE-2024-36284MedNov 13, 2024
    risk 0.36cvss 5.5epss 0.00

    Improper input validation in some Intel(R) Neural Compressor software before version v3.0 may allow an authenticated user to potentially enable escalation of privilege via adjacent access.

  • CVE-2024-29076MedNov 13, 2024
    risk 0.36cvss 5.5epss 0.00

    Uncaught exception for some Intel(R) CST software before version 8.7.10803 may allow an authenticated user to potentially enable denial of service via local access.

  • CVE-2024-21806MedAug 14, 2024
    risk 0.36cvss 5.5epss 0.00

    Improper conditions check in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters E810 Series before version 28.3 may allow an authenticated user to potentially enable denial of service via local access.

  • CVE-2023-47859MedMay 16, 2024
    risk 0.36cvss 5.5epss 0.00

    Improper access control for some Intel(R) Wireless Bluetooth products for Windows before version 23.20 may allow an authenticated user to potentially enable denial of service via local access.

  • CVE-2018-12126MedMay 30, 2019
    risk 0.36cvss 5.6epss 0.01

    Microarchitectural Store Buffer Data Sampling (MSBDS): Store buffers on some microprocessors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. A list of impacted products can be…

  • CVE-2018-12151MedSep 12, 2018
    risk 0.36cvss 5.5epss 0.00

    Buffer overflow in installer for Intel Extreme Tuning Utility before 6.4.1.21 may allow an authenticated user to potentially cause a buffer overflow potentially leading to a denial of service via local access.

  • CVE-2018-12149MedSep 12, 2018
    risk 0.36cvss 5.5epss 0.00

    Buffer overflow in input handling in Intel Extreme Tuning Utility before 6.4.1.21 may allow an authenticated user to potentially deny service to the application via local access.

  • CVE-2017-5692MedAug 1, 2018
    risk 0.36cvss 5.5epss 0.00

    Out-of-bounds read condition in older versions of some Intel Graphics Driver for Windows code branches allows local users to perform a denial of service attack.

  • CVE-2018-3665MedJun 21, 2018
    risk 0.36cvss 5.6epss 0.01

    System software utilizing Lazy FP state restore technique on systems using Intel Core-based microprocessors may potentially allow a local process to infer data from another process through a speculative execution side channel.

  • CVE-2018-3661MedMay 15, 2018
    risk 0.36cvss 5.5epss 0.00

    Buffer overflow in Intel system Configuration utilities selview.exe and syscfg.exe before version 14 build 11 allows a local user to crash these services potentially resulting in a denial of service.

  • CVE-2018-3634MedMay 15, 2018
    risk 0.36cvss 5.5epss 0.00

    Parameter corruption in NDIS filter driver in Intel Online Connect Access 1.9.22.0 allows an attacker to cause a denial of service via local access.

  • CVE-2018-3689MedApr 3, 2018
    risk 0.36cvss 5.5epss 0.00

    AESM daemon in Intel Software Guard Extensions Platform Software Component for Linux before 2.1.102 can effectively be disabled by a local attacker creating a denial of services like remote attestation provided by the AESM.

Page 9 of 43