Vulnerabilities > Intel

DATE CVE VULNERABILITY TITLE RISK
2021-07-14 CVE-2021-0144 Insecure Default Initialization of Resource vulnerability in Intel products
Insecure default variable initialization for the Intel BSSA DFT feature may allow a privileged user to potentially enable an escalation of privilege via local access.
local
low complexity
intel CWE-1188
4.6
2021-06-17 CVE-2021-0143 Incorrect Default Permissions vulnerability in Intel Brand Verification Tool
Improper permissions in the installer for the Intel(R) Brand Verification Tool before version 11.0.0.1225 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-276
4.6
2021-06-09 CVE-2020-24473 Out-Of-Bounds Write vulnerability in Intel Baseboard Management Controller Firmware 2.18
Out of bounds write in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-787
4.6
2021-06-09 CVE-2020-24474 Classic Buffer Overflow vulnerability in Intel Baseboard Management Controller Firmware 2.18
Buffer overflow in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authenticated user to potentially enable escalation of privilege via adjacent access.
low complexity
intel CWE-120
5.2
2021-06-09 CVE-2020-24475 Improper Initialization vulnerability in Intel Baseboard Management Controller Firmware 2.18
Improper initialization in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authenticated user to potentially enable denial of service via local access.
local
low complexity
intel CWE-665
2.1
2021-06-09 CVE-2020-24489 Incomplete Cleanup vulnerability in multiple products
Incomplete cleanup in some Intel(R) VT-d products may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel debian CWE-459
4.6
2021-06-09 CVE-2021-0001 Information Exposure Through Discrepancy vulnerability in Intel products
Observable timing discrepancy in Intel(R) IPP before version 2020 update 1 may allow authorized user to potentially enable information disclosure via local access.
local
low complexity
intel CWE-203
2.1
2021-06-09 CVE-2021-0051 Improper Input Validation vulnerability in Intel Server Platform Services
Improper input validation in the Intel(R) SPS versions before SPS_E5_04.04.04.023.0, SPS_E5_04.04.03.228.0 or SPS_SoC-A_05.00.03.098.0 may allow a privileged user to potentially enable denial of service via local access.
local
low complexity
intel CWE-20
2.1
2021-06-09 CVE-2021-0052 Improper Privilege Management vulnerability in Intel Computing Improvement Program
Incorrect default privileges in the Intel(R) Computing Improvement Program before version 2.4.6522 may allow an authenticated user to potentially enable an escalation of privilege via local access.
local
low complexity
intel CWE-269
4.6
2021-06-09 CVE-2021-0054 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Intel products
Improper buffer restrictions in system firmware for some Intel(R) NUCs may allow a privileged user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-119
4.6