Vulnerabilities > Intel > Xeon Platinum 8354H Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-16 | CVE-2022-26837 | Improper Input Validation vulnerability in Intel products Improper input validation in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access. | 7.0 |
| 2023-02-16 | CVE-2022-30539 | Use After Free vulnerability in Intel products Use after free in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access. | 6.7 |
| 2023-02-16 | CVE-2022-32231 | Improper Initialization vulnerability in Intel products Improper initialization in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access. | 6.7 |
| 2022-08-18 | CVE-2021-33060 | Out-of-bounds Write vulnerability in multiple products Out-of-bounds write in the BIOS firmware for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege via local access. | 7.8 |
| 2022-08-18 | CVE-2022-26373 | Non-transparent sharing of return predictor targets between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access. | 5.5 |
| 2022-05-12 | CVE-2021-0159 | Improper Input Validation vulnerability in Intel products Improper input validation in the BIOS authenticated code module for some Intel(R) Processors may allow a privileged user to potentially enable aescalation of privilege via local access. | 7.8 |
| 2022-05-12 | CVE-2021-33123 | Unspecified vulnerability in Intel products Improper access control in the BIOS authenticated code module for some Intel(R) Processors may allow a privileged user to potentially enable aescalation of privilege via local access. | 7.8 |
| 2022-05-12 | CVE-2021-33124 | Out-of-bounds Write vulnerability in Intel products Out-of-bounds write in the BIOS authenticated code module for some Intel(R) Processors may allow a privileged user to potentially enable aescalation of privilege via local access. | 6.7 |
| 2022-05-12 | CVE-2022-21151 | Processor optimization removal or modification of security-critical code for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. | 5.5 |
| 2021-11-17 | CVE-2021-0186 | Improper Input Validation vulnerability in Intel products Improper input validation in the Intel(R) SGX SDK applications compiled for SGX2 enabled processors may allow a privileged user to potentially escalation of privilege via local access. | 6.7 |