Vulnerabilities > Intel

DATE CVE VULNERABILITY TITLE RISK
2022-07-12 CVE-2022-29901 Exposure of Resource to Wrong Sphere vulnerability in multiple products
Intel microprocessor generations 6 to 8 are affected by a new Spectre variant that is able to bypass their retpoline mitigation in the kernel to leak arbitrary data.
local
low complexity
intel xen fedoraproject vmware debian CWE-668
6.5
6.5
2022-06-15 CVE-2022-21166 Incomplete Cleanup vulnerability in multiple products
Incomplete cleanup in specific special register write operations for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
local
low complexity
xen fedoraproject intel vmware debian CWE-459
5.5
5.5
2022-06-15 CVE-2022-21180 Improper Input Validation vulnerability in Intel products
Improper input validation for some Intel(R) Processors may allow an authenticated user to potentially cause a denial of service via local access.
local
low complexity
intel CWE-20
5.5
5.5
2022-06-15 CVE-2022-24436 Information Exposure Through Discrepancy vulnerability in Intel *
Observable behavioral in power management throttling for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via network access.
network
low complexity
intel CWE-203
6.5
6.5
2022-06-15 CVE-2022-21123 Incomplete Cleanup vulnerability in multiple products
Incomplete cleanup of multi-core shared buffers for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
local
low complexity
xen fedoraproject intel vmware debian CWE-459
5.5
5.5
2022-06-15 CVE-2022-21125 Incomplete Cleanup vulnerability in multiple products
Incomplete cleanup of microarchitectural fill buffers on some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
local
low complexity
xen fedoraproject intel vmware debian CWE-459
5.5
5.5
2022-06-15 CVE-2022-21127 Incomplete Cleanup vulnerability in multiple products
Incomplete cleanup in specific special register read operations for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
local
low complexity
xen intel debian CWE-459
5.5
5.5
2022-05-12 CVE-2021-0126 Improper Input Validation vulnerability in Intel Manageability Commander
Improper input validation for the Intel(R) Manageability Commander before version 2.2 may allow an authenticated user to potentially enable escalation of privilege via adjacent access.
low complexity
intel CWE-20
8.0
8.0
2022-05-12 CVE-2021-0153 Out-of-bounds Write vulnerability in Intel products
Out-of-bounds write in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable aescalation of privilege via local access.
local
low complexity
intel CWE-787
7.8
7.8
2022-05-12 CVE-2021-0154 Improper Input Validation vulnerability in Intel products
Improper input validation in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable aescalation of privilege via local access.
local
low complexity
intel CWE-20
7.8
7.8