Lucene search
+L

219 matches found

NVD
NVD
added 2019/06/13 4:29 p.m.17 views

CVE-2019-11125

Insufficient input validation in system firmware for IntelR NUC Kit may allow a privileged user to potentially enable escalation of privilege, denial of service and/or information disclosure via local access...

6.7CVSS6.5AI score0.00392EPSS
Exploits0References3
Prion
Prion
added 2019/06/13 4:29 p.m.21 views

Input validation

Insufficient input validation in system firmware for IntelR NUC Kit may allow a privileged user to potentially enable escalation of privilege, denial of service and/or information disclosure via local access...

4.6CVSS6.4AI score0.00424EPSS
Exploits0References4
CVE
CVE
added 2019/06/13 3:36 p.m.73 views

CVE-2019-11128

The CVE-2019-11128 entry affects Intel® NUC firmware. Root cause: insufficient input validation in system firmware for Intel NUC Kit. Impact: escalation of privilege, denial of service, and/or information disclosure via local access (local attack vector). Intel advisory lists CVSS v3.0 base score...

6.7CVSS6.4AI score0.00424EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2019/06/13 3:36 p.m.26 views

CVE-2019-11124

Out of bound read/write in system firmware for IntelR NUC Kit may allow a privileged user to potentially enable escalation of privilege, denial of service and/or information disclosure via local access...

6.6AI score0.00392EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/06/13 3:36 p.m.19 views

CVE-2019-11129

Out of bound read/write in system firmware for IntelR NUC Kit may allow a privileged user to potentially enable escalation of privilege, denial of service and/or information disclosure via local access...

6.6AI score0.00392EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/06/13 3:36 p.m.15 views

CVE-2019-11126

Pointer corruption in system firmware for IntelR NUC Kit may allow a privileged user to potentially enable escalation of privilege, denial of service and/or information disclosure via local access...

6.8AI score0.00392EPSS
Exploits0References2
CNVD
CNVD
added 2019/06/13 12:0 a.m.5 views

Intel NUC Kit Buffer Overflow Vulnerability (CNVD-2019-25502)

The Intel NUC Kit is a small desktop computer from Intel Corporation USA. A buffer overflow vulnerability exists in the system firmware in the Intel NUC Kit, which can be exploited by a local attacker to elevate privileges, cause a denial of service and/or disclose information...

6.7CVSS6.9AI score0.00392EPSS
Exploits0References1
OSV
OSV
added 2019/05/29 8:29 p.m.5 views

CVE-2019-6321

HP has identified a security vulnerability with some versions of Workstation BIOS UEFI Firmware where the runtime BIOS code could be tampered with if the TPM is disabled. This vulnerability relates to Workstations whose TPM is disabled by default...

7.2CVSS7.1AI score0.01452EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/05/15 12:0 a.m.37 views

Debian DSA-4444-1 : linux - security update (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)

Multiple researchers have discovered vulnerabilities in the way the Intel processor designs have implemented speculative forwarding of data filled into temporary microarchitectural structures buffers. This flaw could allow an attacker controlling an unprivileged process to read sensitive...

5.9CVSS6.5AI score0.01553EPSS
Exploits0References9
Prion
Prion
added 2019/04/17 6:29 p.m.26 views

Input validation

Insufficient input validation in system firmware for IntelR Broadwell U i5 vPro before version MYBDWi5v.86A may allow an authenticated user to potentially enable escalation of privilege, denial of service, and/or information disclosure via local access...

4.6CVSS7.7AI score0.0036EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/04/17 5:3 p.m.29 views

CVE-2019-0163

Insufficient input validation in system firmware for IntelR Broadwell U i5 vPro before version MYBDWi5v.86A may allow an authenticated user to potentially enable escalation of privilege, denial of service, and/or information disclosure via local access...

7.9AI score0.0036EPSS
Exploits0References1
CNVD
CNVD
added 2019/03/29 12:0 a.m.1 views

EDK2 Buffer Overflow Vulnerability

EDK2 is a set of cross-platform firmware development environment based on UEFI and PI specifications. A buffer overflow vulnerability exists in the system firmware of EDK2. An attacker could exploit this vulnerability to elevate privileges and cause a denial of service...

9.8CVSS7.2AI score0.01338EPSS
Exploits0References1
NVD
NVD
added 2019/03/27 8:29 p.m.23 views

CVE-2018-12179

Improper configuration in system firmware for EDK II may allow unauthenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access...

7.8CVSS7.7AI score0.00416EPSS
Exploits0References3
OSV
OSV
added 2019/03/27 8:29 p.m.2 views

DEBIAN-CVE-2018-12179

Improper configuration in system firmware for EDK II may allow unauthenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access...

7.8CVSS6.5AI score0.00416EPSS
Exploits0References1
OSV
OSV
added 2019/03/27 8:29 p.m.7 views

CVE-2019-0160

Buffer overflow in system firmware for EDK II may allow unauthenticated user to potentially enable escalation of privilege and/or denial of service via network access...

9.8CVSS9.7AI score
Exploits0References1
Prion
Prion
added 2019/03/27 8:29 p.m.23 views

Buffer overflow

Buffer overflow in system firmware for EDK II may allow unauthenticated user to potentially enable escalation of privilege and/or denial of service via network access...

7.5CVSS8.7AI score0.01338EPSS
Exploits0References1Affected Software7
Prion
Prion
added 2019/03/27 8:29 p.m.16 views

Design/Logic Flaw

Improper configuration in system firmware for EDK II may allow unauthenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via local access...

4.6CVSS7.6AI score0.00416EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2019/03/27 8:29 p.m.29 views

CVE-2019-0160

Buffer overflow in system firmware for EDK II may allow unauthenticated user to potentially enable escalation of privilege and/or denial of service via network access...

9.8CVSS6.9AI score0.01338EPSS
Exploits0References2
CVE
CVE
added 2019/03/27 7:20 p.m.253 views

CVE-2019-0160

CVE-2019-0160 is a buffer overflow in EDK II system firmware (OVMF) that could allow an unauthenticated user to escalate privileges and/or cause a denial of service via network access. The issue is cited across multiple advisories (e.g., Ubuntu USN-6920-1, Oracle Linux ELSA-2019-2125, CentOS/CESA...

9.8CVSS9.5AI score0.01338EPSS
Exploits0References1Affected Software1
Debian CVE
Debian CVE
added 2019/03/27 7:20 p.m.23 views

CVE-2019-0160

Buffer overflow in system firmware for EDK II may allow unauthenticated user to potentially enable escalation of privilege and/or denial of service via network access...

9.8CVSS9AI score0.01338EPSS
Exploits0
Rows per page
Query Builder