125265 matches found
CVE-2025-35969
Uncontrolled search path for some IntelR Server Firmware Update Utility Software before version 16.0.12. within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an authenticated user combined with a high complexity attack may enable escalation of...
DEBIAN-CVE-2025-35979
Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some IntelR Processors within VMX non-root guest operation may allow an information disclosure. Unprivileged software adversary with an authenticated user combined with a...
CVE-2025-27723
Use after free for some Linux kernel driver for the IntelR Ethernet 800 series before version 2.3.14 within Ring 0: Kernel may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may...
CVE-2025-35979
Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some IntelR Processors within VMX non-root guest operation may allow an information disclosure. Unprivileged software adversary with an authenticated user combined with a...
UBUNTU-CVE-2025-35979
Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some IntelR Processors within VMX non-root guest operation may allow an information disclosure. Unprivileged software adversary with an authenticated user combined with a...
CVE-2026-41103
CVE-2026-41103 concerns the Microsoft SSO Plugin for Jira & Confluence, where an incorrect authentication algorithm implementation allows privilege elevation over a network. The risk is described as network-exploitable with no user interaction, high confidentiality and integrity impact, and no av...
CVE-2026-41103
Incorrect implementation of authentication algorithm in Microsoft SSO Plugin for Jira & Confluence allows an unauthorized attacker to elevate privileges over a network...
CVE-2025-36515
CVE-2025-36515 affects AI Playground software prior to 3.0.0 alpha. The issue is an Uncontrolled search path vulnerability in Ring 3: User Applications that can lead to privilege escalation. An unprivileged adversary with an authenticated user and high attack complexity could exploit a local atta...
CVE-2025-36515
Uncontrolled search path for some AI Playground software before version 3.0.0 alpha within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable escalation of privilege. This...
CVE-2025-36510
CVE-2025-36510 describes an issue in Display Virtualization for Windows OS driver software within Ring 2: Device Drivers where improper buffer restrictions can allow a denial of service. The vulnerability is exploitable locally by an unprivileged, authenticated user with low attack complexity and...
CVE-2025-36510
Improper buffer restrictions for some Display Virtualization for Windows OS driver software within Ring 2: Device Drivers may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may...
CVE-2025-35991
The CVE-2025-35991 entry describes an improper initialization in the UEFI firmware for some Intel platforms (Ring 0: Bare Metal OS) that may allow information disclosure. The issue requires a local attacker with privileged access and high attack complexity, with no user interaction, and could imp...
CVE-2025-35991
Improper initialization in the UEFI firmware for some Intel platforms within Ring 0: Bare Metal OS may allow an information disclosure. System software adversary with a privileged user combined with a high complexity attack may enable data exposure. This result may potentially occur via local...
CVE-2025-35990
CVE-2025-35990 affects Intel Endpoint Management Assistant (EMA) software prior to version 1.14.5. The vulnerability arises from improper input validation in Ring 3 user-space components, enabling an unauthenticated, low-complexity attacker with adjacent access to cause an escalation of privilege...
CVE-2025-35990
Improper input validation for some Intel Endpoint Management Assistant EMA software before version 1.14.5 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an unauthenticated user combined with a low complexity attack may enable escalation...
CVE-2025-35990
Improper input validation for some Intel Endpoint Management Assistant EMA software before version 1.14.5 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an unauthenticated user combined with a low complexity attack may enable escalation...
CVE-2025-35979
CVE-2025-35979 describes a vulnerability in certain Intel processors where shared microarchitectural predictor state can influence transient execution, enabling information disclosure in VMX non-root (guest) operation. An unprivileged, authenticated user with high-complexity capabilities and loca...
CVE-2025-35979
Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some IntelR Processors within VMX non-root guest operation may allow an information disclosure. Unprivileged software adversary with an authenticated user combined with a...
CVE-2025-35979
Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some IntelR Processors within VMX non-root guest operation may allow an information disclosure. Unprivileged software adversary with an authenticated user combined with a...
CVE-2025-35979
Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some IntelR Processors within VMX non-root guest operation may allow an information disclosure. Unprivileged software adversary with an authenticated user combined with a...