Vulnerabilities > Intel
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-18 | CVE-2022-26373 | Non-transparent sharing of return predictor targets between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access. | 5.5 |
| 2022-08-18 | CVE-2022-26374 | Uncontrolled Search Path Element vulnerability in Intel Single Event API Uncontrolled search path in the installation binaries for Intel(R) SEAPI all versions may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2022-08-18 | CVE-2022-26844 | Insufficiently Protected Credentials vulnerability in Intel Single Event API Insufficiently protected credentials in the installation binaries for Intel(R) SEAPI in all versions may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2022-08-18 | CVE-2022-27500 | Incorrect Default Permissions vulnerability in Intel Support Incorrect default permissions for the Intel(R) Support Android application before 21.07.40 may allow an authenticated user to potentially enable information disclosure via local access. | 5.5 |
| 2022-08-18 | CVE-2022-28696 | Uncontrolled Search Path Element vulnerability in Intel Distribution for Python 2017/2018/2019 Uncontrolled search path in the Intel(R) Distribution for Python before version 2022.0.3 may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2022-08-18 | CVE-2022-28709 | Unspecified vulnerability in Intel Ethernet Controller E810 Firmware Improper access control in the firmware for some Intel(R) E810 Ethernet Controllers before version 1.6.1.9 may allow a privileged user to potentially enable denial of service via local access. | 4.4 |
| 2022-08-18 | CVE-2022-29507 | Insufficiently Protected Credentials vulnerability in Intel Team Blue Insufficiently protected credentials in the Intel(R) Team Blue mobile application in all versions may allow an authenticated user to potentially enable information disclosure via local access. | 5.5 |
| 2022-08-18 | CVE-2022-30296 | Insufficiently Protected Credentials vulnerability in Intel Datacenter Group Event Insufficiently protected credentials in the Intel(R) Datacenter Group Event iOS application, all versions, may allow an unauthenticated user to potentially enable information disclosure via network access. | 7.5 |
| 2022-08-03 | CVE-2022-32292 | Out-of-bounds Write vulnerability in multiple products In ConnMan through 1.41, remote attackers able to send HTTP requests to the gweb component are able to exploit a heap-based buffer overflow in received_data to execute code. | 9.8 |
| 2022-08-03 | CVE-2022-32293 | Use After Free vulnerability in multiple products In ConnMan through 1.41, a man-in-the-middle attack against a WISPR HTTP query could be used to trigger a use-after-free in WISPR handling, leading to crashes or code execution. | 8.1 |