Lucene search
+L

463 matches found

osv
osv
•added 2025/11/11 5:15 p.m.•5 views

CVE-2025-24862

Unrestricted upload of file with dangerous type for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with a privileged user combined with a high complexity attack may enable data...

2CVSS5.7AI score0.00199EPSS
Exploits0References1
osv
osv
•added 2025/11/11 5:15 p.m.•4 views

CVE-2025-24847

Improper input validation for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an information disclosure. Unprivileged software adversary with a privileged user combined with a low complexity attack may enable data exposure. This result may...

5.7CVSS5.7AI score0.0031EPSS
Exploits0References1
nvd
nvd
•added 2025/11/11 5:15 p.m.•4 views

CVE-2025-24847

Improper input validation for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an information disclosure. Unprivileged software adversary with a privileged user combined with a low complexity attack may enable data exposure. This result may...

5.7CVSS0.0031EPSS
Exploits0References1
nvd
nvd
•added 2025/11/11 5:15 p.m.•7 views

CVE-2025-24862

Unrestricted upload of file with dangerous type for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with a privileged user combined with a high complexity attack may enable data...

2CVSS0.00199EPSS
Exploits0References1
osv
osv
•added 2025/11/11 5:15 p.m.•6 views

CVE-2025-24299

Improper input validation for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable escalation of privilege. This...

8.7CVSS5.7AI score0.00316EPSS
Exploits0References1
osv
osv
•added 2025/11/11 5:15 p.m.•6 views

CVE-2025-24314

Improper access control for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an information disclosure. Unprivileged software adversary with a privileged user combined with a high complexity attack may enable data exposure. This result may...

4.4CVSS5.7AI score0.00245EPSS
Exploits0References1
nvd
nvd
•added 2025/11/11 5:15 p.m.•8 views

CVE-2025-24307

Improper privilege management for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable data manipulation. This...

2.3CVSS0.00182EPSS
Exploits0References1
nvd
nvd
•added 2025/11/11 5:15 p.m.•4 views

CVE-2025-20614

External control of file name or path for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with a privileged user combined with a low complexity attack may enable escalation of privileg...

6.7CVSS0.00138EPSS
Exploits0References1
osv
osv
•added 2025/11/11 5:15 p.m.•5 views

CVE-2025-20050

Uncontrolled search path for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable local code execution. This...

5.4CVSS5.8AI score0.00138EPSS
Exploits0References1
nvd
nvd
•added 2025/11/11 5:15 p.m.•5 views

CVE-2025-20050

Uncontrolled search path for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable local code execution. This...

6.7CVSS0.00138EPSS
Exploits0References1
vulnrichment
vulnrichment
•added 2025/11/11 4:50 p.m.•4 views

CVE-2025-24862

Unrestricted upload of file with dangerous type for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with a privileged user combined with a high complexity attack may enable data...

2CVSS6.5AI score0.00199EPSS
Exploits0References1
cvelist
cvelist
•added 2025/11/11 4:50 p.m.•8 views

CVE-2025-24862

Unrestricted upload of file with dangerous type for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with a privileged user combined with a high complexity attack may enable data...

2CVSS0.00199EPSS
Exploits0References1
cve
cve
•added 2025/11/11 4:50 p.m.•14 views

CVE-2025-24862

Intel CIP software prior to WIN_DCA_2.4.0.11001 contains CVE-2025-24862: an unrestricted upload of a dangerous file type in Ring 3 User Applications, potentially enabling privilege escalation and data manipulation. The issue requires network access with internal knowledge and passive user interac...

2CVSS6.5AI score0.00199EPSS
Exploits0References1Affected Software1
cvelist
cvelist
•added 2025/11/11 4:50 p.m.•11 views

CVE-2025-24848

Protection mechanism failure for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This...

6.3CVSS0.0012EPSS
Exploits0References1
cve
cve
•added 2025/11/11 4:50 p.m.•12 views

CVE-2025-24848

Intel CIP software prior to WIN_DCA_2.4.0.11001 suffers a protection mechanism failure in Ring 3 (User Applications) that may allow an Elevation of Privilege by a local attacker with privileged user context and high attack complexity. Affected products are IntelĀ® CIP software before WIN_DCA_2.4.0...

6.3CVSS6.1AI score0.0012EPSS
Exploits0References1Affected Software1
cve
cve
•added 2025/11/11 4:49 p.m.•12 views

CVE-2025-24847

Intel CIP software prior to WIN_DCA_2.4.0.11001 is affected by an improper input validation vulnerability in Ring 3 User Applications that can lead to information disclosure. Unprivileged adversaries with a privileged user and low attack complexity, potentially via network access with passive use...

5.7CVSS5.8AI score0.0031EPSS
Exploits0References1Affected Software1
cve
cve
•added 2025/11/11 4:49 p.m.•13 views

CVE-2025-24838

Intel CIP software prior to WIN_DCA_2.4.0.11001 contains multiple CVEs, including CVE-2025-24838, describing improper privilege management in Ring 3 User Applications that may allow privilege escalation. A low-privileged, authenticated user could exploit this with a low-complexity attack, potenti...

8.8CVSS6.4AI score0.00269EPSS
Exploits0References1Affected Software1
vulnrichment
vulnrichment
•added 2025/11/11 4:49 p.m.•3 views

CVE-2025-24834

Protection mechanism failure for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an information disclosure. Unprivileged software adversary with an unauthenticated user combined with a low complexity attack may enable data exposure. This result...

6.5CVSS6AI score0.00206EPSS
Exploits0References1
cvelist
cvelist
•added 2025/11/11 4:49 p.m.•7 views

CVE-2025-24516

Improper access control for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an information disclosure. Unprivileged software adversary with a privileged user combined with a low complexity attack may enable data exposure. This result may...

6.8CVSS0.00178EPSS
Exploits0References1
cve
cve
•added 2025/11/11 4:49 p.m.•10 views

CVE-2025-24516

Intel CIP software prior to WIN_DCA_2.4.0.11001 is affected by an improper access control vulnerability that may cause information disclosure. The issue allows an unprivileged user, combined with a privileged user and a low-complexity attack, to expose data via adjacent access without user intera...

6.8CVSS5.8AI score0.00178EPSS
Exploits0References1
Rows per page
Query Builder