Vulnerabilities > Intel > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2018-01-04 | CVE-2017-5753 | Information Exposure Through Discrepancy vulnerability in multiple products Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis. | 4.7 |
2017-11-16 | CVE-2017-5738 | Information Exposure vulnerability in Intel Unite 3.1.32.12/3.1.41.18/3.1.45.26 Escalation of privilege vulnerability in admin portal for Intel Unite App versions 3.1.32.12, 3.1.41.18 and 3.1.45.26 allows an attacker with network access to cause a denial of service and/or information disclosure. | 6.4 |
2017-10-11 | CVE-2017-5722 | Improper Privilege Management vulnerability in Intel products Incorrect policy enforcement in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows attackers with local or physical access to bypass enforcement of integrity protections via manipulation of firmware storage. | 4.4 |
2017-10-11 | CVE-2017-5721 | Improper Input Validation vulnerability in Intel products Insufficient input validation in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows local attackers to execute arbitrary code via manipulation of memory. | 4.4 |
2017-10-11 | CVE-2017-5701 | Unspecified vulnerability in Intel products Insecure platform configuration in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows an attacker with physical presence to run arbitrary code via unauthorized firmware modification during BIOS Recovery. local intel | 4.4 |
2017-09-05 | CVE-2017-5698 | Unspecified vulnerability in Intel products Intel Active Management Technology, Intel Standard Manageability, and Intel Small Business Technology firmware versions 11.0.25.3001 and 11.0.26.3000 anti-rollback will not prevent upgrading to firmware version 11.6.x.1xxx which is vulnerable to CVE-2017-5689 and can be performed by a local user with administrative privileges. | 4.4 |
2017-08-09 | CVE-2017-5694 | Unspecified vulnerability in Intel SSD PRO 6000P Firmware Psf104P/Psf109P Data corruption vulnerability in firmware in Intel Solid-State Drive Professional PSF104P, PSF109P allows local users to cause a denial of service via unspecified vectors. | 4.9 |
2017-06-14 | CVE-2017-5697 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Intel Active Management Technology Firmware Insufficient clickjacking protection in the Web User Interface of Intel AMT firmware versions before 9.1.40.1000, 9.5.60.1952, 10.0.50.1004, 11.0.0.1205, and 11.6.25.1129 potentially allowing a remote attacker to hijack users web clicks via attacker's crafted web page. | 6.5 |
2017-03-07 | CVE-2017-5681 | Unspecified vulnerability in Intel Quickassist Technology Engine 0.5.18 The RSA-CRT implementation in the Intel QuickAssist Technology (QAT) Engine for OpenSSL versions prior to 0.5.19 may allow remote attackers to obtain private RSA keys by conducting a Lenstra side-channel attack. | 5.0 |
2017-02-27 | CVE-2016-8105 | Denial of Service vulnerability in Intel X710 Series Driver and Xl710 Series Driver Drivers for the Intel Ethernet Controller X710 and Intel Ethernet Controller XL710 families before version 22.0 are vulnerable to a denial of service in certain layer 2 network configurations. low complexity intel | 6.1 |