Intel Processors 缓冲区错误漏洞

Intel Processors are a series of processors developed by the American company Intel. Intel Processors have a buffer overflow vulnerability, which stems from improper buffer limits and can lead to information leakage. System software attackers with privileged access can exploit this vulnerability...

2026.1 IPU, UEFI Reference Firmware Advisory

Summary: A potential security vulnerability in UEFI for some Intel Reference Platforms may allow escalation of privilege. Intel is releasing firmware updates to mitigate these potential vulnerability. Vulnerability Details: CVEID: CVE-2025-20096 Description: Improper input validation in the UEFI...

PT-2026-24496

Improper input validation in some UEFI firmware SMM module for the IntelR reference platforms may allow an escalation of privilege. System software adversary with a privileged user combined with a low complexity attack may enable local code execution. This result may potentially occur via local...

PT-2026-24492

Improper input validation in the UEFI WheaERST module for some IntelR reference platforms may allow an escalation of privilege. System software adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local...

PT-2026-24498

Name of the Vulnerable Software and Affected Versions UEFI PdaSmm module affected versions not specified Description A time-of-check time-of-use race condition exists in the UEFI PdaSmm module on certain Intel reference platforms, potentially leading to information disclosure. A system software...

PT-2026-24491

Improper buffer restrictions in some UEFI firmware for some IntelR reference platforms may allow an escalation of privilege. System software adversary with a privileged user combined with a high complexity attack may enable data manipulation. This result may potentially occur via local access whe...

Intel Processors 安全漏洞

Intel Processors are a series of processors developed by the American company Intel. There are security vulnerabilities in Intel Processors, which stem from race conditions between the check time and the use time. These vulnerabilities may lead to information leaks. System software attackers with...

K000160226: Intel 800 Series Ethernet vulnerability CVE-2025-24325

Security Advisory Description Improper input validation in the Linux kernel-mode driver for some IntelR 800 Series Ethernet before version 1.17.2 may allow an authenticated user to potentially enable escalation of privilege via local access. CVE-2025-24325 Impact This flaw allows an authenticated...

kernel: HID: intel-thc-hid: intel-thc: Fix incorrect pointer arithmetic in I2C regs save

In the Linux kernel, the following vulnerability has been resolved: HID: intel-thc-hid: intel-thc: Fix incorrect pointer arithmetic in I2C regs save Improper use of secondary pointer &dev-i2csubipregs caused kernel crash and out-of-bounds error: BUG: KASAN: slab-out-of-bounds in...

ALSA-2026:4012 Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Linux kernel: Use-after-free in device mapper due to race condition in zone reporting CVE-2025-38141 kernel: Linux kernel iouring: Local privilege escalation, information disclosure, or...

RHEL 10 : kernel (RHSA-2026:4012)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:4012 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Linux kernel: Use-after-free ...

Fedora 44 : microcode_ctl (2026-3b12e49fee)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-3b12e49fee advisory. - Update to upstream 2.1-51. 20260210 - Addition of 06-ae-01/0x97 GNR-D B0/B1 microcode at revision 0x10002f3; - Update of 06-6a-06/0x87 ICX-SP D0 microcode...

SUSE-SU-2026:20682-1 Security update for ucode-intel

This update for ucode-intel fixes the following issues: - Intel CPU Microcode was updated to the 20260210 release bsc1258046: - CVE-2024-24853: Updated fix for incorrect behavior order in transition between executive monitor and SMI transfer monitor STM in some IntelR Processor may allow a...

PT-2026-23747

🚨 CYBERDUDEBIVASH SENTINEL APEX ALERT 🚨 Threat: CVE-2022-4947 - Apache Web Server Remote Code Execution Vulnerability Intel Report: https://t.co/hceE9OcILS...

PQC-LEO: An Evaluation Framework for Post-Quantum Cryptographic Algorithms

Advances in quantum computing threaten digital communication security by undermining the foundations of current public-key cryptography through Shor's quantum algorithm. This has driven the development of Post-Quantum Cryptography PQC, a new set of algorithms resistant to quantum attacks. While...

CVE-2026-24502

Dell Command | Intel vPro Out of Band, versions prior to 4.7.0, contain an Uncontrolled Search Path Element vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges...

PT-2026-23417

Name of the Vulnerable Software and Affected Versions Everon affected versions not specified Description The software’s WebSocket endpoints do not have sufficient authentication, allowing attackers to impersonate charging stations and manipulate data sent to the backend. An unauthenticated attack...

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 : Intel Microcode vulnerability (USN-8068-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 host has a package installed that is affected by a vulnerability as referenced in the USN-8068-1 advisory. Sergiu Ghetie discovered that some Intel processors did not properly handle values in the microcode flow. ...

K000160225: Intel 800 Ethernet vulnerability CVE-2025-23241

Security Advisory Description Integer overflow or wraparound in the Linux kernel-mode driver for some IntelR 800 Series Ethernet before version 1.17.2 may allow an authenticated user to potentially enable denial of service via local access. CVE-2025-23241 Impact There is no impact; F5 products ar...

K000160224: Intel 800 Series Ethernet vulnerability CVE-2025-24484

Security Advisory Description Improper input validation in the Linux kernel-mode driver for some IntelR 800 Series Ethernet before version 1.17.2 may allow an authenticated user to potentially enable escalation of privilege via local access. CVE-2025-24484 Impact There is no impact; F5 products a...