Lucene search
K

192409 matches found

ATTACKERKB
ATTACKERKB
added 2026/02/10 5:51 p.m.4 views

CVE-2026-21234

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally...

7CVSS5.7AI score0.00261EPSS
Exploits0References2Affected Software14
ATTACKERKB
ATTACKERKB
added 2026/02/10 5:51 p.m.2 views

CVE-2026-21246

Heap-based buffer overflow in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally...

7.8CVSS5.8AI score0.00417EPSS
Exploits0References2Affected Software20
ATTACKERKB
ATTACKERKB
added 2026/02/10 5:51 p.m.4 views

CVE-2026-21518

Improper neutralization of special elements used in a command 'command injection' in GitHub Copilot and Visual Studio Code allows an unauthorized attacker to bypass a security feature over a network...

8.8CVSS5.6AI score0.01357EPSS
Exploits0References2Affected Software2
RedHat Linux
RedHat Linux
added 2026/02/10 5:46 p.m.4 views

pyasn1: pyasn1: Denial of Service due to memory exhaustion from malformed RELATIVE-OID

A flaw was found in pyasn1, a generic ASN.1 library for Python. A remote attacker could exploit this vulnerability by sending a specially crafted RELATIVE-OID with excessive continuation octets. This input validation vulnerability leads to memory exhaustion, resulting in a Denial of Service DoS f...

7.5CVSS5.7AI score0.00679EPSS
Exploits0References7
NVD
NVD
added 2026/02/10 5:16 p.m.7 views

CVE-2025-35998

Missing protection mechanism for alternate hardware interface in the IntelR Quick Assist Technology for some IntelR Platforms within Ring 0: Kernel may allow an escalation of privilege. System software adversary with a privileged user combined with a low complexity attack may enable escalation of...

7.9CVSS0.00151EPSS
Exploits0References5
NVD
NVD
added 2026/02/10 5:16 p.m.9 views

CVE-2025-32008

Out-of-bounds write in the firmware for the IntelR AMT and IntelR Standard Manageability within Ring 3: User Applications may allow a denial of service. Network adversary with an unauthenticated user combined with a low complexity attack may enable denial of service. This result may potentially...

8.7CVSS0.00274EPSS
Exploits0References1
NVD
NVD
added 2026/02/10 5:16 p.m.10 views

CVE-2025-31648

Improper handling of values in the microcode flow for some IntelR Processor Family may allow an escalation of privilege. Startup code and smm adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local...

3.9CVSS0.00133EPSS
Exploits0References1
NVD
NVD
added 2026/02/10 5:16 p.m.8 views

CVE-2025-31944

Race condition for some TDX Module before version tdx1.5 within Ring 0: Hypervisor may allow a denial of service. Authorized adversary with a privileged user combined with a high complexity attack may enable denial of service. This result may potentially occur via local access when attack...

5.6CVSS0.00074EPSS
Exploits0References1
NVD
NVD
added 2026/02/10 5:16 p.m.10 views

CVE-2025-31655

Incorrect default permissions for some IntelR Battery Life Diagnostic Tool within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable escalation of privilege. This result may...

6.7CVSS0.00081EPSS
Exploits0References1
OSV
OSV
added 2026/02/10 5:16 p.m.3 views

ALPINE-CVE-2025-31648

Improper handling of values in the microcode flow for some IntelR Processor Family may allow an escalation of privilege. Startup code and smm adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local...

1.8CVSS5.4AI score0.00133EPSS
Exploits0References1
NVD
NVD
added 2026/02/10 5:16 p.m.12 views

CVE-2025-27560

Loop with unreachable exit condition 'infinite loop' for some IntelR Platform within Ring 0: Kernel may allow a denial of service. System software adversary with a privileged user combined with a low complexity attack may enable denial of service. This result may potentially occur via local acces...

6.7CVSS0.00113EPSS
Exploits0References1
NVD
NVD
added 2026/02/10 5:16 p.m.16 views

CVE-2025-24851

Uncaught exception in the firmware for some 100GbE IntelR Ethernet Controller E810 before version cvl fw 1.7.8.x within Ring 0: Bare Metal OS may allow a denial of service. System software adversary with a privileged user combined with a low complexity attack may enable denial of service. This...

6.7CVSS0.00113EPSS
Exploits0References1
NVD
NVD
added 2026/02/10 5:16 p.m.10 views

CVE-2025-20080

Null pointer dereference in the firmware for some IntelR AMT and IntelR Standard Manageability within Ring 0: Kernel may allow a denial of service. Network adversary with an unauthenticated user combined with a high complexity attack may enable denial of service. This result may potentially occur...

8.2CVSS0.00231EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/02/10 5:16 p.m.8 views

CVE-2025-31648

Improper handling of values in the microcode flow for some IntelR Processor Family may allow an escalation of privilege. Startup code and smm adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local...

3.9CVSS5.9AI score0.00133EPSS
Exploits0References4
OSV
OSV
added 2026/02/10 5:16 p.m.4 views

UBUNTU-CVE-2025-31648

Improper handling of values in the microcode flow for some IntelR Processor Family may allow an escalation of privilege. Startup code and smm adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local...

3.9CVSS5.7AI score0.00133EPSS
Exploits0References5
CVE
CVE
added 2026/02/10 4:26 p.m.11 views

CVE-2025-35998

The CVE-2025-35998 entry concerns Intel’s Quick Assist Technology. A missing protection mechanism for an alternate hardware interface in Intel Quick Assist on certain Intel platforms can allow a local, privilege escalation from Ring 0. The attack would require a privileged user, low complexity, n...

7.9CVSS5.3AI score0.00151EPSS
Exploits0References5
CVE
CVE
added 2026/02/10 4:25 p.m.12 views

CVE-2025-32007

The CVE describes an out-of-bounds read in some Intel TDX prior to tdx module 1.5.24, within the Ring 0 Hypervisor. It may allow an information disclosure. An authorized adversary with privileged user access, using a low-complexity local attack with no user interaction, could exploit this to expo...

5.6CVSS5.3AI score0.00115EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/10 4:25 p.m.6 views

CVE-2025-32003

Out-of-bounds read in the firmware for some 100GbE IntelR Ethernet Network Adapter E810 before version cvl fw 1.7.6, cpk 1.3.7 within Ring 0: Bare Metal OS may allow a denial of service. Network adversary with an authenticated user combined with a low complexity attack may enable denial of servic...

6.5CVSS5.4AI score0.0024EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/02/10 4:25 p.m.4 views

CVE-2025-31648

Improper handling of values in the microcode flow for some IntelR Processor Family may allow an escalation of privilege. Startup code and smm adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local...

3.9CVSS5.4AI score0.00133EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/02/10 4:25 p.m.7 views

CVE-2025-31648

Improper handling of values in the microcode flow for some IntelR Processor Family may allow an escalation of privilege. Startup code and smm adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local...

3.9CVSS5AI score0.00133EPSS
Exploits0
Rows per page
Query Builder