Lucene search
K

111 matches found

NVD
NVD
added 2026/02/10 8:16 p.m.9 views

CVE-2024-36355

Improper input validation in the SMM handler could allow an attacker with Ring0 access to write to SMRAM and modify execution flow for S3 sleep wake up, potentially resulting in arbitrary code execution...

7CVSS0.00153EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/10 7:28 p.m.4 views

CVE-2024-36355

Improper input validation in the SMM handler could allow an attacker with Ring0 access to write to SMRAM and modify execution flow for S3 sleep wake up, potentially resulting in arbitrary code execution...

7CVSS6.2AI score0.00153EPSS
Exploits0References2
CVE
CVE
added 2026/02/10 7:28 p.m.12 views

CVE-2024-36355

CVE-2024-36355 is an AMD SMM-related vulnerability: improper input validation in the System Management Mode (SMM) handler can enable a Ring0 attacker to write to SMRAM and alter execution flow during S3 wake, potentially allowing arbitrary code execution. Affected context appears in AMD EPYC/embe...

7CVSS6.2AI score0.00153EPSS
Exploits0References2
NVD
NVD
added 2026/02/10 5:16 p.m.11 views

CVE-2025-32467

Use of uninitialized variable for some TDX Module before version tdx1.5 within Ring 0: Hypervisor may allow an information disclosure. Authorized adversary with a privileged user combined with a high complexity attack may enable data exposure. This result may potentially occur via local access wh...

5.6CVSS0.00098EPSS
Exploits0References1
NVD
NVD
added 2026/02/10 5:16 p.m.12 views

CVE-2025-32007

Out-of-bounds read for some TDX before version tdx module 1.5.24 within Ring 0: Hypervisor may allow an information disclosure. Authorized adversary with a privileged user combined with a low complexity attack may enable data exposure. This result may potentially occur via local access when attac...

5.6CVSS0.00115EPSS
Exploits0References1
NVD
NVD
added 2026/02/10 5:16 p.m.10 views

CVE-2025-30513

Race condition for some TDX Module within Ring 0: Hypervisor may allow an escalation of privilege. System software adversary with a privileged user combined with a low complexity attack may enable escalation of privilege. This result may potentially occur via local access when attack requirements...

8.3CVSS0.00122EPSS
Exploits0References1
NVD
NVD
added 2026/02/10 5:16 p.m.12 views

CVE-2025-30508

Improper authorization in the IntelR Quick Assist Technology for some IntelR Platforms within Ring 0: Kernel may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may potentially...

6.8CVSS0.0009EPSS
Exploits0References1
NVD
NVD
added 2026/02/10 5:16 p.m.23 views

CVE-2025-27560

Loop with unreachable exit condition 'infinite loop' for some IntelR Platform within Ring 0: Kernel may allow a denial of service. System software adversary with a privileged user combined with a low complexity attack may enable denial of service. This result may potentially occur via local acces...

6.7CVSS0.00113EPSS
Exploits0References1
NVD
NVD
added 2026/02/10 5:16 p.m.6 views

CVE-2025-27572

Exposure of sensitive information during transient execution for some TDX within Ring 0: Hypervisor may allow an information disclosure. Authorized adversary with a privileged user combined with a high complexity attack may enable data exposure. This result may potentially occur via local access...

5.6CVSS0.00105EPSS
Exploits0References1
NVD
NVD
added 2026/02/10 5:16 p.m.16 views

CVE-2025-24851

Uncaught exception in the firmware for some 100GbE IntelR Ethernet Controller E810 before version cvl fw 1.7.8.x within Ring 0: Bare Metal OS may allow a denial of service. System software adversary with a privileged user combined with a low complexity attack may enable denial of service. This...

6.7CVSS0.00113EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/10 4:26 p.m.3 views

CVE-2025-35998

Missing protection mechanism for alternate hardware interface in the IntelR Quick Assist Technology for some IntelR Platforms within Ring 0: Kernel may allow an escalation of privilege. System software adversary with a privileged user combined with a low complexity attack may enable escalation of...

7.9CVSS5.3AI score0.00151EPSS
Exploits0References1
CVE
CVE
added 2026/02/10 4:26 p.m.13 views

CVE-2025-35998

The CVE-2025-35998 entry concerns Intel’s Quick Assist Technology. A missing protection mechanism for an alternate hardware interface in Intel Quick Assist on certain Intel platforms can allow a local, privilege escalation from Ring 0. The attack would require a privileged user, low complexity, n...

7.9CVSS5.3AI score0.00151EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/02/10 4:26 p.m.22 views

CVE-2025-35998

Missing protection mechanism for alternate hardware interface in the IntelR Quick Assist Technology for some IntelR Platforms within Ring 0: Kernel may allow an escalation of privilege. System software adversary with a privileged user combined with a low complexity attack may enable escalation of...

7.9CVSS0.00151EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/10 4:25 p.m.4 views

CVE-2025-32467

Use of uninitialized variable for some TDX Module before version tdx1.5 within Ring 0: Hypervisor may allow an information disclosure. Authorized adversary with a privileged user combined with a high complexity attack may enable data exposure. This result may potentially occur via local access wh...

5.6CVSS5.3AI score0.00098EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/10 4:25 p.m.26 views

CVE-2025-32467

Use of uninitialized variable for some TDX Module before version tdx1.5 within Ring 0: Hypervisor may allow an information disclosure. Authorized adversary with a privileged user combined with a high complexity attack may enable data exposure. This result may potentially occur via local access wh...

5.6CVSS0.00098EPSS
Exploits0References1
CVE
CVE
added 2026/02/10 4:25 p.m.20 views

CVE-2025-32467

The CVE-2025-32467 entry concerns use of an uninitialized variable in some TDX Module before tdx1.5, within Ring 0: Hypervisor, potentially enabling information disclosure. Documents state an authorized adversary with privileged access and high attack complexity may cause data exposure via local ...

5.6CVSS5.3AI score0.00098EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/10 4:25 p.m.5 views

CVE-2025-32007

Out-of-bounds read for some TDX before version tdx module 1.5.24 within Ring 0: Hypervisor may allow an information disclosure. Authorized adversary with a privileged user combined with a low complexity attack may enable data exposure. This result may potentially occur via local access when attac...

5.6CVSS5.3AI score0.00115EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/10 4:25 p.m.27 views

CVE-2025-31944

Race condition for some TDX Module before version tdx1.5 within Ring 0: Hypervisor may allow a denial of service. Authorized adversary with a privileged user combined with a high complexity attack may enable denial of service. This result may potentially occur via local access when attack...

5.6CVSS0.00074EPSS
Exploits0References1
CVE
CVE
added 2026/02/10 4:25 p.m.16 views

CVE-2025-31944

CVE-2025-31944 concerns a race condition in certain Intel TDX Module implementations prior to tdx1.5, within Ring 0 hypervisor code. The issue may allow a denial of service when a privileged local attacker with high complexity performs a deliberate race condition under local access, with no user ...

5.6CVSS5.4AI score0.00074EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/10 4:25 p.m.3 views

CVE-2025-30513

Race condition for some TDX Module within Ring 0: Hypervisor may allow an escalation of privilege. System software adversary with a privileged user combined with a low complexity attack may enable escalation of privilege. This result may potentially occur via local access when attack requirements...

8.3CVSS5.3AI score0.00122EPSS
Exploits0References1
Rows per page
Query Builder