CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

109 matches found

EUVD•added 2026/05/12 6:30 p.m.•4 views

EUVD-2025-209793

Improper initialization in the UEFI firmware for some Intel platforms within Ring 0: Bare Metal OS may allow an information disclosure. System software adversary with a privileged user combined with a high complexity attack may enable data exposure. This result may potentially occur via local...

5.6CVSS5.7AI score0.00017EPSS

Exploits0References2

EUVD•added 2026/05/12 6:30 p.m.•4 views

EUVD-2025-209789

Use after free for some Linux kernel driver for the IntelR Ethernet 800 series before version 2.3.14 within Ring 0: Kernel may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may...

6.8CVSS5.7AI score0.00016EPSS

Exploits0References2

CVE•added 2026/05/12 4:35 p.m.•10 views

CVE-2025-35991

The CVE-2025-35991 entry describes an improper initialization in the UEFI firmware for some Intel platforms (Ring 0: Bare Metal OS) that may allow information disclosure. The issue requires a local attacker with privileged access and high attack complexity, with no user interaction, and could imp...

5.6CVSS5.7AI score0.00017EPSS

Exploits0References1

Cvelist•added 2026/05/12 4:35 p.m.•26 views

CVE-2025-35991

5.6CVSS0.00017EPSS

Exploits0References1

Positive Technologies•added 2026/05/12 12:0 a.m.•8 views

PT-2026-40079

5.6CVSS5.7AI score0.00017EPSS

Exploits0References2

Positive Technologies•added 2026/05/12 12:0 a.m.•6 views

PT-2026-40075

6.8CVSS5.7AI score0.00016EPSS

Exploits0References2

CVE•added 2026/04/18 12:12 a.m.•3 views

CVE-2026-40317

NovumOS (a custom 32-bit OS written in Zig/x86 Assembly) prior to version 0.24 is affected by a local privilege-escalation in the Syscall 12 JumpToUser interface. The vulnerability arises because JumpToUser accepts an arbitrary entry-point address from user-space without validation, enabling any ...

9.3CVSS6AI score0.00017EPSS

Exploits1References2Affected Software1

RedHat Linux•added 2026/04/07 4:8 p.m.•1 views

Intel (R): From CVEorg collector

Missing protection mechanism for alternate hardware interface in the Intel® Quick Assist Technology for some Intel® Platforms within Ring 0: Kernel may allow an escalation of privilege. System software adversary with a privileged user combined with a low complexity attack may enable escalation of...

7.9CVSS5.8AI score0.00006EPSS

Exploits0References5

F5 Networks•added 2026/02/20 5:15 a.m.•8 views

K000160096: Intel QuickAssist Technology vulnerability CVE-2025-35998

Security Advisory Description Missing protection mechanism for alternate hardware interface in the IntelR Quick Assist Technology for some IntelR Platforms within Ring 0: Kernel may allow an escalation of privilege. System software adversary with a privileged user combined with a low complexity...

7.9CVSS5.5AI score0.00006EPSS

Exploits0

Tenable Nessus•added 2026/02/17 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2025-35998

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Missing protection mechanism for alternate hardware interface in the IntelR Quick Assist Technology for some IntelR Platforms within Ring 0: Kernel may allow an...

7.9CVSS5.4AI score0.00006EPSS

Exploits0References2

RedhatCVE•added 2026/02/16 7:30 p.m.•5 views

CVE-2025-32007

Out-of-bounds read for some TDX before version tdx module 1.5.24 within Ring 0: Hypervisor may allow an information disclosure. Authorized adversary with a privileged user combined with a low complexity attack may enable data exposure. This result may potentially occur via local access when attac...

5.6CVSS5.4AI score0.00017EPSS

Exploits0References1

RedhatCVE•added 2026/02/16 7:30 p.m.•2 views

CVE-2025-32467

Use of uninitialized variable for some TDX Module before version tdx1.5 within Ring 0: Hypervisor may allow an information disclosure. Authorized adversary with a privileged user combined with a high complexity attack may enable data exposure. This result may potentially occur via local access wh...

5.6CVSS5.3AI score0.00017EPSS

Exploits0References1

RedhatCVE•added 2026/02/16 7:30 p.m.•3 views

CVE-2025-27708

Out-of-bounds read in the firmware for some IntelR Converged Security and Management Engine CSME Firmware FW within Ring 0: Kernel may allow an information disclosure. System software adversary with a privileged user combined with a low complexity attack may enable data exposure. This result may...

5.6CVSS5.4AI score0.00017EPSS

Exploits0References1

RedhatCVE•added 2026/02/16 7:30 p.m.•5 views

CVE-2025-27560

Loop with unreachable exit condition 'infinite loop' for some IntelR Platform within Ring 0: Kernel may allow a denial of service. System software adversary with a privileged user combined with a low complexity attack may enable denial of service. This result may potentially occur via local acces...

6.7CVSS5.4AI score0.00018EPSS

Exploits0References1

RedhatCVE•added 2026/02/16 7:30 p.m.•6 views

CVE-2025-31944

Race condition for some TDX Module before version tdx1.5 within Ring 0: Hypervisor may allow a denial of service. Authorized adversary with a privileged user combined with a high complexity attack may enable denial of service. This result may potentially occur via local access when attack...

5.6CVSS5.3AI score0.00014EPSS

Exploits0References1

RedhatCVE•added 2026/02/16 7:30 p.m.•4 views

CVE-2025-20080

Null pointer dereference in the firmware for some IntelR AMT and IntelR Standard Manageability within Ring 0: Kernel may allow a denial of service. Network adversary with an unauthenticated user combined with a high complexity attack may enable denial of service. This result may potentially occur...

8.2CVSS5.3AI score0.00082EPSS

Exploits0References1

RedhatCVE•added 2026/02/16 7:30 p.m.•5 views

CVE-2025-30513

Race condition for some TDX Module within Ring 0: Hypervisor may allow an escalation of privilege. System software adversary with a privileged user combined with a low complexity attack may enable escalation of privilege. This result may potentially occur via local access when attack requirements...

8.3CVSS5.4AI score0.00005EPSS

Exploits0References1

RedhatCVE•added 2026/02/16 1:25 p.m.•3 views

CVE-2025-30508

Improper authorization in the IntelR Quick Assist Technology for some IntelR Platforms within Ring 0: Kernel may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may potentially...

6.8CVSS5.4AI score0.00018EPSS

Exploits0References1

RedhatCVE•added 2026/02/13 1:22 p.m.•1 views

CVE-2025-27572

Exposure of sensitive information during transient execution for some TDX within Ring 0: Hypervisor may allow an information disclosure. Authorized adversary with a privileged user combined with a high complexity attack may enable data exposure. This result may potentially occur via local access...

5.6CVSS5.5AI score0.00018EPSS

Exploits0References1

NVD•added 2026/02/10 8:16 p.m.•4 views

CVE-2024-36355

Improper input validation in the SMM handler could allow an attacker with Ring0 access to write to SMRAM and modify execution flow for S3 sleep wake up, potentially resulting in arbitrary code execution...

7CVSS0.00007EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by