CVE-2020-12374

Buffer overflow in the BMC firmware for some IntelR Server Boards, Server Systems and Compute Modules before version 2.47 may allow a privileged user to potentially enable escalation of privilege via local access...

CVE-2020-12375

Heap overflow in the BMC firmware for some IntelR Server Boards, Server Systems and Compute Modules before version 2.47 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2020-12300

Uninitialized pointer in BIOS firmware for IntelR Server Board Families S2600CW, S2600KP, S2600TP, and S2600WT may allow a privileged user to potentially enable escalation of privilege via local access...

CVE-2020-24475

Improper initialization in the BMC firmware for some IntelR Server Boards, Server Systems and Compute Modules before version 2.48.ce3e3bd2 may allow an authenticated user to potentially enable denial of service via local access...

CVE-2023-25776

Improper input validation in some IntelR Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local access...

CVE-2023-25075

Unquoted search path in the installer for some Intel Server Configuration Utility software before version 16.0.9 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2023-29164

Improper access control in BMC Firmware for the IntelR Server Board S2600WF, IntelR Server Board S2600ST, IntelR Server Board S2600BP, before version 02.01.0017 and IntelR Server Board M50CYP and IntelR Server Board D50TNP before version R01.01.0009 may allow an authenticated user to enable...

CVE-2023-31189

Improper authentication in some IntelR Server Product OpenBMC firmware before version egs-1.09 may allow an authenticated user to enable escalation of privilege via local access...

CVE-2024-34167

Uncontrolled search path for the IntelR Server Board S2600ST Family BIOS and Firmware Update software all versions may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2024-39285

Improper access control in UEFI firmware in some IntelR Server M20NTP Family may allow a privileged user to potentially enable information disclosure via local access...

CVE-2024-39811

Improper input validation in firmware for some IntelR Server M20NTP Family UEFI may allow a privileged user to potentially enable escalation of privilege via local access...

CVE-2023-25545

Improper buffer restrictions in some IntelR Server Board BMC firmware before version 2.90 may allow a privileged user to enable escalation of privilege via local access...

CVE-2023-49144

Out of bounds read in OpenBMC Firmware for some IntelR Server Platforms before versions egs-1.15-0, bhs-0.27 may allow a privileged user to potentially enable information disclosure via local access...

CVE-2023-31276

Heap-based buffer overflow in BMC Firmware for the IntelR Server Board S2600WF, IntelR Server Board S2600ST, IntelR Server Board S2600BP, before version 02.01.0017 and IntelR Server Board M50CYP and IntelR Server Board D50TNP before version R01.01.0009 may allow a privileged user to enable...

CVE-2021-0185

Improper input validation in the firmware for some IntelR Server Board M10JNP Family before version 7.216 may allow a privileged user to potentially enable an escalation of privilege via local access...

CVE-2022-33945

Improper input validation in some IntelR Server board and IntelR Server System BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access...

CVE-2024-39609

Improper Access Control in UEFI firmware for some IntelR Server Board M70KLP may allow a privileged user to potentially enable escalation of privilege via local access...

CVE-2025-24918

Improper link resolution before file access 'link following' for some IntelR Server Configuration Utility software and IntelR Server Firmware Update Utility software before version 16.0.12. within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an...

CVE-2025-24918

Improper link resolution before file access 'link following' for some IntelR Server Configuration Utility software and IntelR Server Firmware Update Utility software before version 16.0.12. within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an...

CVE-2025-24918

Improper link resolution before file access 'link following' for some IntelR Server Configuration Utility software and IntelR Server Firmware Update Utility software before version 16.0.12. within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an...