Vulnerabilities > Intel > High

DATE CVE VULNERABILITY TITLE RISK
2019-05-17 CVE-2019-0090 Unspecified vulnerability in Intel products
Insufficient access control vulnerability in subsystem for Intel(R) CSME before versions 11.x, 12.0.35 Intel(R) TXE 3.x, 4.x, Intel(R) Server Platform Services 3.x, 4.x, Intel(R) SPS before version SPS_E3_05.00.04.027.0 may allow an unauthenticated user to potentially enable escalation of privilege via physical access.
high complexity
intel
7.1
2019-05-17 CVE-2019-0086 Incorrect Permission Assignment for Critical Resource vulnerability in Intel products
Insufficient access control vulnerability in Dynamic Application Loader software for Intel(R) CSME before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 and Intel(R) TXE 3.1.65, 4.0.15 may allow an unprivileged user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-732
7.8
2019-05-17 CVE-2018-3701 Incorrect Permission Assignment for Critical Resource vulnerability in Intel Proset/Wireless Wifi
Improper directory permissions in the installer for Intel(R) PROSet/Wireless WiFi Software version 20.100 and earlier may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-732
7.8
2019-04-17 CVE-2019-0163 Improper Input Validation vulnerability in Intel I5-5350U Firmware
Insufficient input validation in system firmware for Intel(R) Broadwell U i5 vPro before version MYBDWi5v.86A may allow an authenticated user to potentially enable escalation of privilege, denial of service, and/or information disclosure via local access.
local
low complexity
intel CWE-20
8.2
2019-04-17 CVE-2019-0158 Unspecified vulnerability in Intel Graphics Performance Analyzer 18.4
Insufficient path checking in the installation package for Intel(R) Graphics Performance Analyzer for Linux version 18.4 and before may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel
7.8
2019-04-17 CVE-2018-18094 Incorrect Permission Assignment for Critical Resource vulnerability in Intel Media SDK 2017/2018
Improper directory permissions in installer for Intel(R) Media SDK before 2018 R2.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-732
7.8
2019-03-14 CVE-2019-0135 Permissions, Privileges, and Access Controls vulnerability in multiple products
Improper permissions in the installer for Intel(R) Accelerated Storage Manager in Intel(R) RSTe before version 5.5.0.2015 may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel lenovo CWE-264
7.8
2019-03-14 CVE-2019-0129 Permissions, Privileges, and Access Controls vulnerability in Intel USB 3.0 Creator Utility
Improper permissions for Intel(R) USB 3.0 Creator Utility all versions may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-264
7.8
2019-03-14 CVE-2019-0122 Double Free vulnerability in Intel Software Guard Extensions SDK
Double free in Intel(R) SGX SDK for Linux before version 2.2 and Intel(R) SGX SDK for Windows before version 2.1 may allow an authenticated user to potentially enable information disclosure or denial of service via local access.
local
low complexity
intel CWE-415
7.1
2019-03-14 CVE-2019-0121 Permissions, Privileges, and Access Controls vulnerability in Intel Matrix Storage Manager 8.9.0.1023
Improper permissions in Intel(R) Matrix Storage Manager 8.9.0.1023 and before may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-264
7.8