Vulnerabilities > Intel
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-04-03 | CVE-2018-3689 | Unspecified vulnerability in Intel Software Guard Extensions AESM daemon in Intel Software Guard Extensions Platform Software Component for Linux before 2.1.102 can effectively be disabled by a local attacker creating a denial of services like remote attestation provided by the AESM. | 5.5 |
| 2018-03-27 | CVE-2018-9056 | Information Exposure vulnerability in multiple products Systems with microprocessors utilizing speculative execution may allow unauthorized disclosure of information to an attacker with local user access via a side-channel attack on the directional branch predictor, as demonstrated by a pattern history table (PHT), aka BranchScope. | 5.6 |
| 2018-03-26 | CVE-2014-2312 | Link Following vulnerability in Intel Thermald The main function in android_main.cpp in thermald allows local users to write to arbitrary files via a symlink attack on /tmp/thermald.pid. | 5.5 |
| 2018-03-20 | CVE-2018-3626 | Information Exposure vulnerability in Intel SGX SDK Edger8r tool in the Intel SGX SDK before version 2.1.2 (Linux) and 1.9.6 (Windows) may generate code that is susceptible to a side channel potentially allowing a local user to access unauthorized information. | 4.7 |
| 2018-03-20 | CVE-2017-5736 | Improper Privilege Management vulnerability in Intel Software Guard Extensions Platform Software Component An elevation of privilege in Intel Software Guard Extensions Platform Software Component before 1.9.105.42329 allows a local attacker to execute arbitrary code as administrator. | 8.8 |
| 2018-02-02 | CVE-2017-5727 | NULL Pointer Dereference vulnerability in Intel Graphics Driver Pointer dereference in subsystem in Intel Graphics Driver 15.40.x.x, 15.45.x.x, 15.46.x.x allows unprivileged user to elevate privileges via local access. | 7.8 |
| 2018-01-23 | CVE-2015-1142857 | 7PK - Security Features vulnerability in multiple products On multiple SR-IOV cars it is possible for VF's assigned to guests to send ethernet flow control pause frames via the PF. | 8.6 |
| 2018-01-18 | CVE-2017-5699 | Improper Input Validation vulnerability in Intel Minnowboard 3 Firmware Input validation error in Intel MinnowBoard 3 Firmware versions prior to 0.65 allow local attacker to cause denial of service via UEFI APIs. | 5.5 |
| 2018-01-18 | CVE-2017-5696 | Untrusted Search Path vulnerability in Intel Graphics Driver Untrusted search path in Intel Graphics Driver 15.40.x.x, 15.45.x.x, and 21.20.x.x allows unprivileged user to elevate privileges via local access. | 7.8 |
| 2018-01-09 | CVE-2018-3610 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Intel Driver & Support Assistant SEMA driver in Intel Driver and Support Assistant before version 3.1.1 allows a local attacker the ability to read and writing to Memory Status registers potentially allowing information disclosure or a denial of service condition. | 6.0 |