CVE-2025-48517

Insufficient Granularity of Access Control in SEV firmware could allow a privileged user with a malicious hypervisor to create a SEV-ES guest with an ASID in the range meant for SEV-SNP guests potentially resulting in a partial loss of confidentiality...

CVE-2025-48514

Insufficient Granularity of Access Control in SEV firmware can allow a privileged attacker to create a SEV-ES Guest to attack SNP guest, potentially resulting in a loss of confidentiality...

UBUNTU-CVE-2025-48514

Insufficient Granularity of Access Control in SEV firmware can allow a privileged attacker to create a SEV-ES Guest to attack SNP guest, potentially resulting in a loss of confidentiality...

CVE-2025-48517

Insufficient Granularity of Access Control in SEV firmware could allow a privileged user with a malicious hypervisor to create a SEV-ES guest with an ASID in the range meant for SEV-SNP guests potentially resulting in a partial loss of confidentiality...

EUVD-2024-22904

Malicious code in bioql PyPI...

EUVD-2022-33151

Malicious code in bioql PyPI...

PT-2025-32727 · Intel · Intel Pcie Switch

Name of the Vulnerable Software and Affected Versions: IntelR PCIe Switch software versions prior to MR4 1.0b1 Description: An improper access control issue exists in the firmware package and LED mode toggle tool for some IntelR PCIe Switch software. A privileged user may be able to escalate...

Linux Distros Unpatched Vulnerability : CVE-2022-48655

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: firmware: armscmi: Harden accesses to the reset domains Accessing reset domains descriptors ...

AMD Client Processor 安全漏洞

AMD Client Processor is a processor for client devices e.g., personal computers, laptops, etc. from UltraMicro Semiconductor AMD. A security vulnerability exists in AMD Client Processor that stems from incorrect access control in the DRTM firmware that could allow a privileged attacker to perform...

PT-2024-10968

Name of the Vulnerable Software and Affected Versions IntelR Ethernet Adapters and IntelR Ethernet Controller I225 Manageability firmware affected versions not specified Description The issue is related to improper access control in the firmware, which may allow an authenticated user to potential...

CVE-2023-28396

Improper access control in firmware for some IntelR ThunderbolTM Controllers versions before 41 may allow a privileged user to enable denial of service via local access...

PT-2023-6260 · Siemens · Simatic Cp 1623 +4

Name of the Vulnerable Software and Affected Versions: SIMATIC CP 1604 All versions SIMATIC CP 1616 All versions SIMATIC CP 1623 All versions SIMATIC CP 1626 All versions SIMATIC CP 1628 All versions Description: A vulnerability has been identified that exposes kernel memory of affected devices t...

PT-2023-12865 · Intel · Intel Processors

Name of the Vulnerable Software and Affected Versions: IntelR Processors affected versions not specified Description: The issue is related to improper access control in the BIOS firmware for some IntelR Processors. This may allow a privileged user to potentially enable escalation of privilege via...

Intel® AMT and Intel® Standard Manageability Advisory

Summary: Potential security vulnerabilities in the Intel® Active Management Technology AMT and Intel® Standard Manageability may allow escalation of privilege or information disclosure. Intel is releasing prescriptive guidance to mitigate these potential vulnerabilities. Vulnerability Details:...

UBUNTU-CVE-2021-0164

Improper access control in firmware for IntelR PROSet/Wireless Wi-Fi in multiple operating systems and KillerTM Wi-Fi in Windows 10 and 11 may allow an unauthenticated user to potentially enable escalation of privilege via local access...

CVE-2020-0525

Improper access control in firmware for the IntelR Ethernet I210 Controller series of network adapters before version 3.30 may allow a privileged user to potentially enable denial of service via local access...

PT-2016-3453 · Intel · Intel Server Board S2600Bp +7

Name of the Vulnerable Software and Affected Versions: IntelR Server Board S2600WTT version 0016 IntelR Server Board S1200RP affected versions not specified IntelR Server Board S1400FP affected versions not specified IntelR Server Board S1400SP affected versions not specified IntelR Server Board...