Vulnerabilities > Improper Input Validation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-10 | CVE-2023-31162 | Improper Input Validation vulnerability in Selinc products An Improper Input Validation vulnerability in the Schweitzer Engineering Laboratories Real-Time Automation Controller (SEL RTAC) Web Interface could allow a remote authenticated attacker to arbitrarily alter the content of a configuration file. See SEL Service Bulletin dated 2022-11-15 for more details. | 4.3 |
| 2023-05-10 | CVE-2022-25976 | Improper Input Validation vulnerability in Intel Virtual Raid on CPU Improper input validation in the Intel(R) VROC software before version 7.7.6.1003 may allow an authenticated user to potentially enable denial of service via local access. | 5.5 |
| 2023-05-10 | CVE-2022-28699 | Improper Input Validation vulnerability in Intel products Improper input validation for some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access. | 6.7 |
| 2023-05-10 | CVE-2022-32577 | Improper Input Validation vulnerability in Intel products Improper input validation in BIOS Firmware for some Intel(R) NUC Kits before version PY0081 may allow a privileged user to potentially enable information disclosure or denial of service via local access | 6.0 |
| 2023-05-09 | CVE-2021-46754 | Improper Input Validation vulnerability in AMD products Insufficient input validation in the ASP (AMD Secure Processor) bootloader may allow an attacker with a compromised Uapp or ABL to coerce the bootloader into exposing sensitive information to the SMU (System Management Unit) resulting in a potential loss of confidentiality and integrity. | 9.1 |
| 2023-05-09 | CVE-2021-46756 | Improper Input Validation vulnerability in AMD products Insufficient validation of inputs in SVC_MAP_USER_STACK in the ASP (AMD Secure Processor) bootloader may allow an attacker with a malicious Uapp or ABL to send malformed or invalid syscall to the bootloader resulting in a potential denial of service and loss of integrity. | 9.1 |
| 2023-05-09 | CVE-2021-46773 | Improper Input Validation vulnerability in AMD products Insufficient input validation in ABL may enable a privileged attacker to corrupt ASP memory, potentially resulting in a loss of integrity or code execution. | 8.8 |
| 2023-05-09 | CVE-2021-46762 | Improper Input Validation vulnerability in AMD products Insufficient input validation in the SMU may allow an attacker to corrupt SMU SRAM potentially leading to a loss of integrity or denial of service. | 9.1 |
| 2023-05-09 | CVE-2021-46769 | Improper Input Validation vulnerability in AMD products Insufficient syscall input validation in the ASP Bootloader may allow a privileged attacker to execute arbitrary DMA copies, which can lead to code execution. | 8.8 |
| 2023-05-09 | CVE-2021-46775 | Improper Input Validation vulnerability in AMD products Improper input validation in ABL may enable an attacker with physical access, to perform arbitrary memory overwrites, potentially leading to a loss of integrity and code execution. | 6.8 |