Lucene search
+L

477 matches found

Prion
Prion
added 2019/01/10 8:29 p.m.15 views

Authorization

Insufficient write protection in firmware for IntelR OptaneTM SSD DC P4800X before version E2010435 may allow a privileged user to potentially enable a denial of service via local access...

2.1CVSS4.5AI score0.00288EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2019/01/10 8:29 p.m.5 views

CVE-2018-12166

Insufficient write protection in firmware for IntelR OptaneTM SSD DC P4800X before version E2010435 may allow a privileged user to potentially enable a denial of service via local access...

4.4CVSS5.8AI score0.00288EPSS
Exploits0References1
Prion
Prion
added 2019/01/10 8:29 p.m.19 views

Design/Logic Flaw

Firmware update routine in bootloader for IntelR OptaneTM SSD DC P4800X before version E2010435 may allow a privileged user to potentially enable a denial of service via local access...

2.1CVSS4.5AI score0.00288EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2019/01/10 8:29 p.m.4 views

CVE-2018-3703

Improper directory permissions in the installer for the IntelR SSD Data Center Tool for Windows before v3.0.17 may allow authenticated users to potentially enable an escalation of privilege via local access...

7.8CVSS5.8AI score0.00277EPSS
Exploits0References1
CVE
CVE
added 2019/01/10 8:0 p.m.50 views

CVE-2018-3703

Intel’s advisory for CVE-2018-3703 describes an elevation-of-privilege vulnerability in the Intel SSD Data Center Tool for Windows prior to v3.0.17 caused by improper directory permissions in the installer. The issue could let authenticated local users escalate privileges. A mitigation is to upda...

7.8CVSS7.7AI score0.00277EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/01/10 8:0 p.m.47 views

CVE-2018-12166

CVE-2018-12166 affects Intel® Optane™ SSD DC P4800X firmware prior to version E2010435. The issue is insufficient write protection that may allow a privileged local user to cause a denial of service. Intel’s advisory INTEL-SA-00175 confirms affected products and the recommended remediation: updat...

4.4CVSS4.4AI score0.00288EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/01/10 8:0 p.m.45 views

CVE-2018-12167

Intel Optane SSD DC P4800X firmware: CVE-2018-12167 involves the bootloader firmware update routine where a privileged local attacker could enable a denial of service. Affected pre-E2010435 revisions are vulnerable. Intel advisory INTEL-SA-00175 confirms the issue and provides remediation guidanc...

4.4CVSS4.4AI score0.00288EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/01/10 8:0 p.m.22 views

CVE-2018-12166

Insufficient write protection in firmware for IntelR OptaneTM SSD DC P4800X before version E2010435 may allow a privileged user to potentially enable a denial of service via local access...

4.5AI score0.00288EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/01/10 8:0 p.m.19 views

CVE-2018-12167

Firmware update routine in bootloader for IntelR OptaneTM SSD DC P4800X before version E2010435 may allow a privileged user to potentially enable a denial of service via local access...

4.5AI score0.00288EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/01/10 8:0 p.m.14 views

CVE-2018-3703

Improper directory permissions in the installer for the IntelR SSD Data Center Tool for Windows before v3.0.17 may allow authenticated users to potentially enable an escalation of privilege via local access...

7.8AI score0.00277EPSS
Exploits0References1
ThreatPost
ThreatPost
added 2019/01/09 4:16 p.m.28 views

Intel Patches High-Severity Privilege-Escalation Bugs

Intel on Tuesday patched three high-severity vulnerabilities that could allow the escalation of privileges across an array of products. Overall, the chip giant fixed five bugs – three rated high-severity, and two medium-severity. The most concerning of these bugs is an escalation-of-privilege...

4.6CVSS7.1AI score0.00349EPSS
Exploits2References9
Intel
Intel
added 2019/01/08 12:0 a.m.20 views

Intel® Optane™ SSD DC P4800X Advisory

Summary: A potential security vulnerability in Intel® Optane™ SSD DC P4800X may allow denial of service. Intel is releasing firmware updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2018-12166 Description: Insufficient write protection in firmware for IntelR...

4.4CVSS4.7AI score0.00288EPSS
Exploits0
OSV
OSV
added 2018/12/14 12:29 a.m.5 views

CVE-2018-18097

Improper directory permissions in Intel Solid State Drive Toolbox before 3.5.7 may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8CVSS5.8AI score0.00277EPSS
Exploits0References1
NVD
NVD
added 2018/11/20 7:29 p.m.24 views

CVE-2018-12037

An issue was discovered on Samsung 840 EVO and 850 EVO devices only in "ATA high" mode, not vulnerable in "TCG" or "ATA max" mode, Samsung T3 and T5 portable drives, and Crucial MX100, MX200 and MX300 devices. Absence of a cryptographic link between the password and the Disk Encryption Key allows...

4CVSS4.4AI score0.00229EPSS
Exploits0References3
Prion
Prion
added 2018/11/20 7:29 p.m.14 views

Code injection

An issue was discovered on Samsung 840 EVO and 850 EVO devices only in "ATA high" mode, not vulnerable in "TCG" or "ATA max" mode, Samsung T3 and T5 portable drives, and Crucial MX100, MX200 and MX300 devices. Absence of a cryptographic link between the password and the Disk Encryption Key allows...

1.9CVSS4.9AI score0.00229EPSS
Exploits0References3
Cvelist
Cvelist
added 2018/11/20 7:0 p.m.34 views

CVE-2018-12037

An issue was discovered on Samsung 840 EVO and 850 EVO devices only in "ATA high" mode, not vulnerable in "TCG" or "ATA max" mode, Samsung T3 and T5 portable drives, and Crucial MX100, MX200 and MX300 devices. Absence of a cryptographic link between the password and the Disk Encryption Key allows...

4.8AI score0.00229EPSS
Exploits0References3
CVE
CVE
added 2018/11/20 7:0 p.m.101 views

CVE-2018-12037

CVE-2018-12037 affects self-encrypting drives (TCG Opal/ATA‑based) where there is no cryptographic binding between the user password and the Disk Encryption Key, enabling full data access by someone with privileged access to the drive controller in ATA High mode. Affected devices per the sources ...

4CVSS5AI score0.00229EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2018/11/14 8:29 p.m.12 views

CVE-2018-19279

PRIMX ZoneCentral before 6.1.2236 on Windows sometimes leaks the plaintext of NTFS files. On non-SSD devices, this is limited to a 5-second window and file sizes less than 600 bytes. The effect on SSD devices may be greater...

4.3CVSS4.7AI score0.00212EPSS
Exploits0References1
Prion
Prion
added 2018/11/14 8:29 p.m.16 views

Design/Logic Flaw

PRIMX ZoneCentral before 6.1.2236 on Windows sometimes leaks the plaintext of NTFS files. On non-SSD devices, this is limited to a 5-second window and file sizes less than 600 bytes. The effect on SSD devices may be greater...

2.1CVSS4.8AI score0.00212EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2018/11/14 8:0 p.m.21 views

CVE-2018-19279

PRIMX ZoneCentral before 6.1.2236 on Windows sometimes leaks the plaintext of NTFS files. On non-SSD devices, this is limited to a 5-second window and file sizes less than 600 bytes. The effect on SSD devices may be greater...

4.7AI score0.00212EPSS
Exploits0References1
Rows per page
Query Builder