DEBIAN-CVE-2022-21151

Processor optimization removal or modification of security-critical code for some IntelR Processors may allow an authenticated user to potentially enable information disclosure via local access...

CVE-2021-0159

Improper input validation in the BIOS authenticated code module for some IntelR Processors may allow a privileged user to potentially enable aescalation of privilege via local access...

Information disclosure

Processor optimization removal or modification of security-critical code for some IntelR Processors may allow an authenticated user to potentially enable information disclosure via local access...

UBUNTU-CVE-2022-21151

Processor optimization removal or modification of security-critical code for some IntelR Processors may allow an authenticated user to potentially enable information disclosure via local access...

CVE-2022-21151

Processor optimization removal or modification of security-critical code for some IntelR Processors may allow an authenticated user to potentially enable information disclosure via local access...

CVE-2021-0188

Return of pointer value outside of expected range in the BIOS firmware for some IntelR Processors may allow a privileged user to potentially enable aescalation of privilege via local access...

CVE-2021-0159

CVE-2021-0159 concerns Intel BIOS firmware: improper input validation in the BIOS authenticated code module for certain Intel CPUs may allow a local privileged user to escalate privileges. The vulnerability is documented by Intel’s advisory INTEL-SA-00601 (and related Intel security notes) and su...

CVE-2021-33103

Unintended intermediary in the BIOS authenticated code module for some IntelR Processors may allow a privileged user to potentially enable aescalation of privilege via local access...

CVE-2021-0190

CVE-2021-0190 is an Intel BIOS/BIOS-authenticated-code vulnerability: uncaught exceptions in BIOS firmware may allow a locally privileged user to escalate privileges. Public sources in the connected documents identify this as a local-privilege-escalation issue affecting Intel CPUs, with several v...

CVE-2021-0153

CVE-2021-0153 describes an out-of-bounds write in the BIOS firmware for some Intel processors that could allow a locally authenticated attacker to escalate privileges. The Intel advisory (INTEL-SA-00601) confirms a BIOS/firmware issue with escalation potential and recommends vendor-provided BIOS ...

CVE-2022-21151

CVE-2022-21151 involves Intel processors where optimization/removal of security-critical code in the processor microcode can allow an authenticated local attacker to cause information disclosure. Affected vectors are local access with low attack complexity and no user interaction. Public docs con...

CVE-2022-21151

Processor optimization removal or modification of security-critical code for some IntelR Processors may allow an authenticated user to potentially enable information disclosure via local access...

CVE-2022-21151

Processor optimization removal or modification of security-critical code for some IntelR Processors may allow an authenticated user to potentially enable information disclosure via local access...

CVE-2022-0004

CVE-2022-0004 concerns Intel® Boot Guard and Intel® TXT. The issue arises from hardware debug modes and a processor INIT setting that allow an unauthenticated user to potentially bypass protections and escalate privileges via physical access. Intel lists affected generations (10th–12th Gen Core, ...

CVE-2022-0004

Hardware debug modes and processor INIT setting that allow override of locks for some IntelR Processors in IntelR Boot Guard and IntelR TXT may allow an unauthenticated user to potentially enable escalation of privilege via physical access...

The vulnerability of the SEV-SNP secure nested paging implementation for virtual machines running on AMD processor-based servers allows a attacker to disclose protected information by executing attacks through auxiliary channels.

The vulnerability of the SEV-SNP secure nested paging implementation for virtual machines running on AMD processor-based servers is related to data encryption errors. Exploiting this vulnerability can allow attackers to disclose sensitive information by launching attacks through secondary channel...

Qualcomm多款产品 安全漏洞

The Qualcomm Snapdragon SOC Snapdragon Processor is a chip from Qualcomm Incorporated USA that is used in mobile devices to process information. The Qualcomm chip suffers from a security vulnerability that stems from a conditional contention security issue in the use of the NB1 component for PDCP...

Vulnerabilities fixed in Intel processors and -chipsets

Intel has fixed vulnerabilities in several processors and chipsets. A local malicious party could potentially exploit them to cause a denial-of-service, gain gain access to system data or obtain elevated privileges. For the vulnerability with reference CVE-2021-33149 no security updates have been...

dotnet: malicious content causes high CPU and memory usage

A flaw was found in dotnet. The Microsoft Security Advisory describes the issue of a malicious client that can send MyCookie=chunks-2147483647 without the actual cookie chunks, causing large allocations, exceptions, and excess CPU utilization on the server when it tries to read or delete that man...

dotnet: malicious content causes high CPU and memory usage

A flaw was found in dotnet. The Microsoft Security Advisory describes the issue of a malicious client that can send MyCookie=chunks-2147483647 without the actual cookie chunks, causing large allocations, exceptions, and excess CPU utilization on the server when it tries to read or delete that man...