Vulnerabilities > Intel > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-12-18 CVE-2019-11086 Improper Input Validation vulnerability in Intel Active Management Technology Firmware
Insufficient input validation in subsystem for Intel(R) AMT before version 12.0.45 may allow an unauthenticated user to potentially enable escalation of privilege via physical access.
low complexity
intel CWE-20
6.8
2019-12-18 CVE-2019-0168 Improper Input Validation vulnerability in Intel products
Insufficient input validation in the subsystem for Intel(R) CSME before versions 11.8.70, 12.0.45 and 13.0.10; Intel(R) TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable information disclosure via local access.
local
low complexity
intel CWE-20
4.4
2019-12-18 CVE-2019-0165 Improper Input Validation vulnerability in Intel Converged Security Management Engine Firmware
Insufficient Input validation in the subsystem for Intel(R) CSME before versions 12.0.45,13.0.10 and 14.0.10 may allow a privileged user to potentially enable denial of service via local access.
local
low complexity
intel CWE-20
4.4
2019-12-16 CVE-2019-14612 Out-of-bounds Write vulnerability in Intel products
Out of bounds write in firmware for Intel(R) NUC(R) may allow a privileged user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-787
6.7
2019-12-16 CVE-2019-14611 Integer Overflow or Wraparound vulnerability in Intel products
Integer overflow in firmware for Intel(R) NUC(R) may allow a privileged user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-190
6.7
2019-12-16 CVE-2019-14609 Improper Input Validation vulnerability in Intel products
Improper input validation in firmware for Intel(R) NUC(R) may allow a privileged user to potentially enable escalation of privilege via local access.
local
low complexity
intel CWE-20
6.7
2019-12-16 CVE-2019-14607 Improper Check for Unusual or Exceptional Conditions vulnerability in Intel products
Improper conditions check in multiple Intel® Processors may allow an authenticated user to potentially enable partial escalation of privilege, denial of service and/or information disclosure via local access.
local
low complexity
intel CWE-754
5.3
2019-12-16 CVE-2019-14604 NULL Pointer Dereference vulnerability in Intel Quartus Prime
Null pointer dereference in the FPGA kernel driver for Intel(R) Quartus(R) Prime Pro Edition before version 19.3 may allow an authenticated user to potentially enable denial of service via local access.
local
low complexity
intel CWE-476
5.5
2019-12-16 CVE-2019-11165 Improper Check for Unusual or Exceptional Conditions vulnerability in Intel Field Programmable Gate Array Software Development KIT for Opencl
Improper conditions check in the Linux kernel driver for the Intel(R) FPGA SDK for OpenCL(TM) Pro Edition before version 19.4 may allow an authenticated user to potentially enable denial of service via local access.
local
low complexity
intel CWE-754
5.5
2019-12-16 CVE-2019-11157 Unspecified vulnerability in Intel products
Improper conditions check in voltage settings for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege and/or information disclosure via local access.
local
low complexity
intel
6.7