Vulnerabilities > Intel > Core I7 10510Y Firmware > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-09-14 CVE-2020-24457 Unspecified vulnerability in Intel products
Logic error in BIOS firmware for 8th, 9th and 10th Generation Intel(R) Core(TM) Processors may allow an unauthenticated user to potentially enable escalation of privilege, denial of service and/or information disclosure via physical access.
local
low complexity
intel
4.6
2020-06-15 CVE-2020-0529 Improper Initialization vulnerability in Intel products
Improper initialization in BIOS firmware for 8th, 9th and 10th Generation Intel(R) Core(TM) Processor families may allow an unauthenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-665
4.6
2020-06-15 CVE-2020-0528 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Intel products
Improper buffer restrictions in BIOS firmware for 7th, 8th, 9th and 10th Generation Intel(R) Core(TM) Processor families may allow an authenticated user to potentially enable escalation of privilege and/or denial of service via local access.
local
low complexity
intel CWE-119
4.6
2020-05-14 CVE-2020-0110 Out-of-bounds Write vulnerability in multiple products
In psi_write of psi.c, there is a possible out of bounds write due to a missing bounds check.
local
low complexity
google intel CWE-787
4.6
2020-01-28 CVE-2020-0549 Improper Resource Shutdown or Release vulnerability in multiple products
Cleanup errors in some data cache evictions for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
5.5
2020-01-28 CVE-2020-0548 Improper Resource Shutdown or Release vulnerability in Intel products
Cleanup errors in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
local
low complexity
intel CWE-404
5.5
2019-12-16 CVE-2019-14607 Improper Check for Unusual or Exceptional Conditions vulnerability in Intel products
Improper conditions check in multiple Intel® Processors may allow an authenticated user to potentially enable partial escalation of privilege, denial of service and/or information disclosure via local access.
local
low complexity
intel CWE-754
5.3
2019-12-16 CVE-2019-11157 Unspecified vulnerability in Intel products
Improper conditions check in voltage settings for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege and/or information disclosure via local access.
local
low complexity
intel
6.7
2019-11-14 CVE-2018-12207 Improper Input Validation vulnerability in multiple products
Improper invalidation for page table updates by a virtual guest operating system for multiple Intel(R) Processors may allow an authenticated user to potentially enable denial of service of the host system via local access.
6.5
2019-11-14 CVE-2019-11135 TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. 6.5