401 matches found
SUSE CVE-2022-1852
A NULL pointer dereference flaw was found in the Linux kernel's KVM module, which can lead to a denial of service in the x86emulateinsn in arch/x86/kvm/emulate.c. This flaw occurs while executing an illegal instruction in guest in the Intel CPU...
CVE-2024-21831
Uncontrolled search path in some IntelR Processor Diagnostic Tool software before version 4.1.9.41 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2024-21774
Uncontrolled search path in some IntelR Processor Identification Utility software before versions 6.10.34.1129, 7.1.6 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2024-21774
Intel Processor Identification Utility is affected by CVE-2024-21774 due to an uncontrolled search path that could allow privilege escalation on an authenticated local attacker. Vulnerable versions are prior to 6.10.34.1129 (Legacy) and prior to 7.1.6. A fix is available: upgrade to 6.10.34.1129 ...
CVE-2024-21831
CVE-2024-21831 affects Intel® Processor Diagnostic Tool (IPDT) software prior to version 4.1.9.41. The issue is an uncontrolled search path that may allow an authenticated local user to escalate privileges. The advisory cites a CVSS v3.1 base score of 6.7 (Medium) with local access required, high...
CVE-2024-21831
Uncontrolled search path in some IntelR Processor Diagnostic Tool software before version 4.1.9.41 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2024-21831
Uncontrolled search path in some IntelR Processor Diagnostic Tool software before version 4.1.9.41 may allow an authenticated user to potentially enable escalation of privilege via local access...
Intel Processor Identification Utility 安全漏洞
Intel Processor Identification Utility is a processor identification utility from Intel Corporation USA. The program supports the display of graphics information, chipset information, processor supported technologies, and other information. A security vulnerability previously existed in Intel...
Intel Processor Diagnostic Tool 安全漏洞
Intel Processor Diagnostic Tool IPDT is a processor functionality diagnostic tool from Intel Corporation USA. A security vulnerability previously existed in Intel Processor Diagnostic Tool version 4.1.9.41, which stemmed from an uncontrolled search path issue. It could allow an authenticated user...
Intel® Processor Diagnostic Tool Advisory
Summary: A potential security vulnerability in some Intel® Processor Diagnostic Tool software may allow escalation of privilege. Intel is releasing updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2024-21831 Description: Uncontrolled search path in some Intel®...
Intel® Processor Identification Utility Software Advisory
Summary: Potential security vulnerability in some Intel® Processor Identification Utility software may allow escalation of privilege. Intel is releasing software updates to mitigate these potential vulnerability. Vulnerability Details: CVEID: CVE-2024-21774 Description: Uncontrolled search path i...
RHEL 5 : hw (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - hw: TSX Transaction Asynchronous Abort TAA CVE-2019-11135 - hw: Fast forward store predictor CVE-2020-869...
2024.1 IPU - BIOS Advisory
Summary: A potential security vulnerability in BIOS firmware for some Intel® Processors may allow escalation of privilege. Intel is releasing BIOS updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2023-32282 Description: Race condition in BIOS firmware for some...
2024.1 IPU - Intel® Processor Bus Lock Advisory
Summary: A potential security vulnerability in the bus lock regulator mechanism for some Intel® Processors may allow denial of service. Intel is releasing firmware updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2023-39368 Description: Protection mechanism...
2024.1 IPU - Intel® Processor Return Predictions Advisory
Summary: A potential security vulnerability in some Intel® Processors may allow information disclosure. Intel is releasing a firmware update to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2023-38575 Description: Non-transparent sharing of return predictor targets...
The vulnerability of Intel SGX DCAP microprogramming software arises from insufficient validation of input data, allowing attackers to gain unauthorized access to protected information.
The vulnerability of Intel SGX DCAP microprogramming software is related to insufficient validation of input data. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...
CLSA-2023-1701444720 microcode_ctl: Fix of 4 CVEs
Update Intel CPU microcode to microcode-20231114 release, addresses CVE-2022-40982 INTEL-SA-00828, CVE-2022-41804 INTEL-SA-00837, CVE-2023-23908 INTEL-SA-00836, CVE-2023-23583 INTEL-SA-00950: - Addition of 06-9a-04/0x40 microcode in 06-9a-04 at revision 0x5; - Addition of 06-ba-02/0xe0 microcode...
hw: Intel: Gather Data Sampling (GDS) side channel vulnerability
A Gather Data Sampling GDS transient execution side-channel vulnerability was found affecting certain Intel processors. This issue may allow a local attacker using gather instruction load from memory to infer stale data from previously used vector registers on the same physical core...
Debian DSA-5563-1 : intel-microcode - security update
The remote Debian 11 / 12 host has a package installed that is affected by a vulnerability as referenced in the dsa-5563 advisory. - Sequence of processor instructions leads to unexpected behavior for some IntelR Processors may allow an authenticated user to potentially enable escalation of...
hw: Intel: Gather Data Sampling (GDS) side channel vulnerability
A Gather Data Sampling GDS transient execution side-channel vulnerability was found affecting certain Intel processors. This issue may allow a local attacker using gather instruction load from memory to infer stale data from previously used vector registers on the same physical core...