Fedora 38 : microcode_ctl (2023-3dfc0123b0)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-3dfc0123b0 advisory. - Update to upstream 2.1-42. 20231114 - Update of 06-6a-06/0x87 ICX-SP D0 microcode from revision 0xd0003a5 up to 0xd0003b9; - Update of 06-6c-01/0x10 ICL-D ...

CVE-2023-25756

The CVE-2023-25756 issue affects Intel BIOS firmware across multiple processors, caused by an out-of-bounds read that may allow an authenticated user to escalate privileges via adjacent access. Documents from Intel (INTEL-SA-00924) confirm the vulnerability in BIOS software and propose updates to...

Intel NUC BIOS firmware security vulnerability

The Intel NUC is a small minicomputer from Intel Corporation USA. A security vulnerability exists in the Intel NUC BIOS firmware. An attacker exploiting this vulnerability could result in elevated privileges or information disclosure...

2023.4 IPU - Intel® Processor Advisory

Summary: A potential security vulnerability in some Intel® Processors may allow escalation of privilege and/or information disclosure and/or denial of service via local access. Intel is releasing firmware updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2023-235...

The vulnerability of Intel microprogramming software allows a hacker to elevate their privileges from the third level to the zero-level protection ring (CPL0), thereby gaining access to confidential information or causing service failures.

The vulnerability of Intel microprogramming software is related to errors in interpreting redundant prefixes. Exploiting this vulnerability can allow attackers to enhance their privileges from the third level to the zero-level protection ring, CPL0, gain access to confidential information, or cau...

F5 Networks BIG-IP : Intel processor vulnerability (K000133630)

The version of F5 Networks BIG-IP installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the K000133630 advisory. - Improper access control in the BIOS firmware for some IntelR Processors may allow a privileged user to potentially...

Oracle Linux 5 : ELSA-2012-0721-1: / kernel (ELSA-2012-07211)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2012-07211 advisory. - The x86-64 kernel system-call functionality in Xen 4.1.2 and earlier, as used in Citrix XenServer 6.0.2 and earlier and other products; Oracle Solar...

The Bug Report – August 2023 Edition

The Bug Report – August 2023 Edition By Charles McFarland · September 06, 2023 Why am I here? Welcome back to The Bug Report, the hotter-than-hell Texas edition! For those still unfamiliar with our monthly escapades, every month our trusty Advanced Research Center vulnerability research team...

Ubuntu: Security Advisory (USN-6329-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-6332-1: Linux kernel (Azure) vulnerabilities

Daniel Moghimi discovered that some IntelR Processors did not properly clear microarchitectural state after speculative execution of various instructions. A local unprivileged user could use this to obtain to sensitive information. CVE-2022-40982 William Zhao discovered that the Traffic Control T...

Vulnerability of Intel processor BIOS microprogramming software, allowing attackers to enhance their privileges

The vulnerability of Intel processor BIOS microprogramming software is related to insufficient verification of data entered by users. Exploiting this vulnerability can allow attackers to enhance their privileges...

Intel BIOS firmware security vulnerability

Intel BIOS firmware is a set of programs from the U.S.-based Intel Corporation that are solidified onto a ROM chip on the motherboard inside a computer. A security vulnerability exists in the IntelR Processors BIOS firmware that originates from improper initialization. An attacker could exploit t...

Intel 2023.3 IPU – BIOS August 2023 Security Updates

Intel has informed HP of potential vulnerabilities identified for some Intel® Processors and/or supporting BIOS firmware, which might allow escalation of privilege, information disclosure, or denial of service. Intel is releasing firmware updates and prescriptive guidance to mitigate these...

USN-6221-1: Linux kernel vulnerabilities

It was discovered that a race condition existed in the overlay file system implementation in the Linux kernel. A local attacker could use this to cause a denial of service system crash. CVE-2021-20321 It was discovered that the virtual terminal vt device implementation in the Linux kernel contain...

Ubuntu: Security Advisory (USN-6205-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-6193-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2022-33894

Improper input validation in the BIOS firmware for some IntelR Processors may allow a privileged user to potentially enable escalation of privilege via local access...

CVE-2022-33894

Improper input validation in the BIOS firmware for some IntelR Processors may allow a privileged user to potentially enable escalation of privilege via local access...

K29421535: Intel processor vulnerability CVE-2021-33117

Security Advisory Description Improper access control for some 3rd Generation IntelR XeonR Scalable Processors before BIOS version MR7, may allow a local attacker to potentially enable information disclosure via local access. CVE-2021-33117 Impact This vulnerability may potentially allow a local...

K52259753: Intel Processor vulnerability CVE-2022-26373

Security Advisory Description Non-transparent sharing of return predictor targets between contexts in some IntelR Processors may allow an authorized user to potentially enable information disclosure via local access. CVE-2022-26373 Impact There is no impact; F5 products are not affected by this...