Vulnerabilities > Intel > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-10-10 | CVE-2018-12173 | Incorrect Permission Assignment for Critical Resource vulnerability in Intel products Insufficient access protection in firmware in Intel Server Board, Intel Server System and Intel Compute Module before firmware version 00.01.0014 may allow an unauthenticated attacker to potentially execute arbitrary code resulting in information disclosure, escalation of privilege and/or denial of service via local access. | 7.6 |
| 2018-10-10 | CVE-2018-12152 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Intel Graphics Driver Pointer corruption in Unified Shader Compiler in Intel Graphics Drivers before 10.18.x.5056 (aka 15.33.x.5056), 10.18.x.5057 (aka 15.36.x.5057) and 20.19.x.5058 (aka 15.40.x.5058) may allow an unauthenticated remote user to potentially execute arbitrary WebGL code via local access. | 7.8 |
| 2018-10-10 | CVE-2018-12131 | Incorrect Permission Assignment for Critical Resource vulnerability in Intel products Permissions in the driver pack installers for Intel NVMe before version 4.0.0.1007 and Intel RSTe before version 4.7.0.2083 may allow an authenticated user to potentially escalate privilege via local access. | 7.8 |
| 2018-09-21 | CVE-2018-12169 | Improper Authentication vulnerability in multiple products Platform sample code firmware in 4th Generation Intel Core Processor, 5th Generation Intel Core Processor, 6th Generation Intel Core Processor, 7th Generation Intel Core Processor and 8th Generation Intel Core Processor contains a logic error which may allow physical attacker to potentially bypass firmware authentication. | 7.6 |
| 2018-09-12 | CVE-2018-3669 | Unspecified vulnerability in Intel Centrino Firmware A STOP error (BSoD) in the ibtfltcoex.sys driver for Intel Centrino Wireless N and Intel Centrino Advanced N adapters may allow an unauthenticated user to potentially send a malformed L2CAP Connection Request is sent to the Intel Bluetooth device via the network. | 7.5 |
| 2018-09-12 | CVE-2018-3655 | Unspecified vulnerability in Intel products A vulnerability in a subsystem in Intel CSME before version 11.21.55, Intel Server Platform Services before version 4.0 and Intel Trusted Execution Engine Firmware before version 3.1.55 may allow an unauthenticated user to potentially modify or disclose information via physical access. low complexity intel | 7.3 |
| 2018-09-12 | CVE-2018-3643 | Unspecified vulnerability in Intel products A vulnerability in Power Management Controller firmware in systems using specific Intel(R) Converged Security and Management Engine (CSME) before version 11.8.55, 11.11.55, 11.21.55, 12.0.6 or Intel(R) Server Platform Services firmware before version 4.x.04 may allow an attacker with administrative privileges to uncover certain platform secrets via local access or to potentially execute arbitrary code. | 8.2 |
| 2018-09-12 | CVE-2018-12176 | Improper Input Validation vulnerability in Intel products Improper input validation in firmware for Intel NUC Kits may allow a privileged user to potentially execute arbitrary code resulting in information disclosure, escalation of privilege and/or denial of service via local access. | 8.2 |
| 2018-09-12 | CVE-2018-12175 | Incorrect Default Permissions vulnerability in Intel Distribution for Python 2018 Default install directory permissions in Intel Distribution for Python (IDP) version 2018 may allow an unprivileged user to escalate privileges via local access. | 7.8 |
| 2018-09-12 | CVE-2018-12168 | Incorrect Permission Assignment for Critical Resource vulnerability in Intel Computing Improvement Program 2.1.03638 Privilege escalation in file permissions in Intel Computing Improvement Program before version 2.2.0.03942 may allow an authenticated user to potentially execute code as administrator via local access. | 7.8 |