31 matches found
EUVD-2025-93482
Uncontrolled search path for some FPGA Support Package for the Intel oneAPI DPC++C++ Compiler software before version 2025.0.1 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack m...
CVE-2025-32038
Uncontrolled search path for some FPGA Support Package for the Intel oneAPI DPC++C++ Compiler software before version 2025.0.1 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack m...
CVE-2025-32038
CVE-2025-32038 concerns an uncontrolled search path in the FPGA Support Package for the Intel oneAPI DPC++/C++ Compiler software prior to version 2025.0.1. Multiple sources (including Red Hat, Intel advisory INTEL-SA-01364) describe that, when Ring 3: User Applications executes, an unprivileged a...
FPGA Support Package for the Intel® oneAPI DPC++/C++ Compiler Software Advisory
Summary: A potential security vulnerability for some FPGA Support Package for the Intel® oneAPI DPC++/C++ Compiler software may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2025-32038 Description:...
CVE-2025-39681 x86/cpu/hygon: Add missing resctrl_cpu_detect() in bsp_init helper
In the Linux kernel, the following vulnerability has been resolved: x86/cpu/hygon: Add missing resctrlcpudetect in bspinit helper Since 923f3a2b48bd "x86/resctrl: Query LLC monitoring properties once during boot" resctrlcpudetect has been moved from common CPU initialization code to the...
CVE-2024-39365
Uncontrolled search path for the FPGA Support Package for the IntelR oneAPI DPC++/C++ Compiler software for Windows before version 2024.2 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2024-39365
Uncontrolled search path for the FPGA Support Package for the IntelR oneAPI DPC++/C++ Compiler software for Windows before version 2024.2 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2024-39365
Uncontrolled search path for the FPGA Support Package for the IntelR oneAPI DPC++/C++ Compiler software for Windows before version 2024.2 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2024-39365
CVE-2024-39365 affects the FPGA Support Package for the Intel(R) oneAPI DPC++/C++ Compiler on Windows prior to 2024.2. The root cause is an uncontrolled search path, potentially enabling privilege escalation with local access. Affected product is the FPGA Support Package for this compiler; remedi...
PT-2025-6173 · Wattsense · Wattsense Bridge
Name of the Vulnerable Software and Affected Versions: Wattsense Bridge devices versions prior to BSP 6.4.1 Description: A serial interface can be accessed with physical access to the PCB of Wattsense Bridge devices. After connecting to the interface, access to the bootloader is possible, as well...
FPGA Support Package for the Intel® oneAPI DPC++/C++ Compiler Software Advisory
Summary: A potential security vulnerability in the FPGA Support Package for the Intel® oneAPI DPC++/C++ Compiler software may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2024-39365 Description:...
PT-2025-6666 · Intel · Fpga Support Package For The Intel Oneapi Dpc++/C++ Compiler
Name of the Vulnerable Software and Affected Versions: FPGA Support Package for the IntelR oneAPI DPC++/C++ Compiler software for Windows versions prior to 2024.2 Description: The issue is related to an uncontrolled search path in the FPGA Support Package for the IntelR oneAPI DPC++/C++ Compiler...
Intel Binary Configuration Tool 代码问题漏洞
Intel Binary Configuration Tool is an Intel Corporation utility program for changing configuration settings embedded in Intel FSP Firmware Support Package binaries. A code issue vulnerability exists in Intel Binary Configuration Tool versions prior to 3.4.5 that stems from an uncontrolled search...
Intel Binary Configuration Tool 安全漏洞
Intel Binary Configuration Tool is a utility program from Intel Corporation that is used to change configuration settings embedded in Intel FSP Firmware Support Package binaries. A security vulnerability exists in Intel Binary Configuration Tool versions prior to 3.4.5 that stems from incorrect...
CVE-2023-30857
The CVE-2023-30857 issue concerns @aedart/support (Ion monorepo) with a prototype pollution risk in MetadataRecord when merged with a base class’ metadata via the meta decorator. Affected versions are prior to 0.6.1; the report notes exploitation likelihood is questionable because metadata can be...
CVE-2023-30857 @aedart/support possibly vulnerable to prototype pollution in metadata record, when using meta decorator
@aedart/support is the support package for Ion, a monorepo for JavaScript/TypeScript packages. Prior to version 0.6.1, there is a possible prototype pollution issue for the MetadataRecord, when merged with a base class' metadata object, in meta decorator from the @aedart/support package. The...
Debian: Security Advisory (DLA-2532-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
K04884013: NGINX Controller vulnerability CVE-2021-23019
Security Advisory Description The NGINX Controller Administrator password may be exposed in the systemd.txt file that is included in the NGINX support package. CVE-2021-23019 Impact The Administrator password is exposed in the NGINX support package. This password leak occurs only when you enabled...
CVE-2022-25652
Cryptographic issues in BSP due to improper hash verification in Snapdragon Wired Infrastructure and Networking...
CVE-2022-22445
An attacker that gains service access to the FSP POWER9 only or gains admin authority to a partition can compromise partition firmware...