Lucene search
+L

40 matches found

CVE
CVE
added 2024/11/13 9:8 p.m.73 views

CVE-2024-29079

Intel VROC software up to version 8.6.0.3001 is affected by CVE-2024-29079 due to insufficient control flow management, which may allow an authenticated local user to escalate privileges. Affected: Intel® VROC software prior to 8.6.0.3001. Impact is privilege escalation with high confidentiality/...

7.8CVSS6.8AI score0.002EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/11/13 12:0 a.m.6 views

PT-2024-24609 · Intel · Intel Vroc

Name of the Vulnerable Software and Affected Versions: IntelR VROC software versions prior to 8.6.0.2003 Description: The issue is related to improper input validation in IntelR VROC software, which may allow an authenticated user to potentially enable denial of service via local access...

5.5CVSS6.8AI score0.00169EPSS
Exploits0References4
Lenovo
Lenovo
added 2024/11/12 4:10 p.m.4 views

Intel VROC Software Advisory - Lenovo Support US

No description provided...

7.3AI score
Exploits0
Intel
Intel
added 2024/11/12 12:0 a.m.15 views

Intel® VROC Software Advisory

Summary: Potential security vulnerabilities in some Intel® Virtual RAID on CPU Intel® VROC software may allow escalation of privilege and denial of service. Intel is releasing software updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2024-29079 Description:...

7.8CVSS7.4AI score0.002EPSS
Exploits0
NVD
NVD
added 2024/08/14 2:15 p.m.14 views

CVE-2024-23489

Uncontrolled search path for some IntelR VROC software before version 8.6.0.1191 may allow an authenticated user to potentially enable escalation of privilege via local access...

7.3CVSS0.00154EPSS
Exploits0References1
Intel
Intel
added 2024/06/06 12:0 a.m.41 views

Intel® VROC Software Advisory

Summary: Potential security vulnerabilities in some Intel® Virtual RAID on CPU VROC software may allow escalation of privilege. Intel is releasing software updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2023-31271 Description: Improper access control in som...

7.8CVSS7.2AI score0.00214EPSS
Exploits0
NVD
NVD
added 2024/02/14 2:15 p.m.29 views

CVE-2023-35003

Path transversal in some IntelR VROC software before version 8.0.8.1001 may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8CVSS6.7AI score0.00214EPSS
Exploits0References1
NVD
NVD
added 2024/02/14 2:15 p.m.27 views

CVE-2023-31271

Improper access control in some IntelR VROC software before version 8.0.8.1001 may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8CVSS6.7AI score0.00167EPSS
Exploits0References1
Prion
Prion
added 2024/02/14 2:15 p.m.20 views

Path traversal

Path transversal in some IntelR VROC software before version 8.0.8.1001 may allow an authenticated user to potentially enable escalation of privilege via local access...

3.5CVSS7.3AI score0.00214EPSS
Exploits0References1
CVE
CVE
added 2024/02/14 1:38 p.m.37 views

CVE-2023-34315

Intel VROC software prior to version 8.0.8.1001 contains an incorrect default permissions issue that could allow an authenticated local user to escalate privileges. The CVE-2023-34315 entry is confirmed by Intel’s advisory (INTEL-SA-00953) and NVD/NIST records, which cite a CVSSv3.1 base score of...

7.8CVSS6.7AI score0.00167EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/02/14 1:38 p.m.41 views

CVE-2023-31271

CVE-2023-31271 affects Intel® VROC software prior to version 8.0.8.1001, where improper access control may allow an authenticated local user to potentially escalate privileges. The Red Hat, NVD/NIST, and Intel advisory ecosystem corroborates the issue as a local-privilege-escalation vulnerability...

7.8CVSS6.7AI score0.00167EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/02/13 12:0 a.m.4 views

PT-2024-2742 · Intel · Intel Vroc

Name of the Vulnerable Software and Affected Versions: Intel VROC software versions prior to 8.0.8.1001 Description: The issue is related to improper access control in Intel VROC software, which may allow an authenticated user to potentially enable escalation of privilege via local access. This i...

7.8CVSS7.3AI score0.00167EPSS
Exploits0References8
NVD
NVD
added 2023/08/11 3:15 a.m.35 views

CVE-2022-45112

Improper access control in some IntelR VROC software before version 8.0.0.4035 may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8CVSS7.5AI score0.00153EPSS
Exploits0References1
OSV
OSV
added 2023/05/10 2:15 p.m.4 views

CVE-2022-25976

Improper input validation in the IntelR VROC software before version 7.7.6.1003 may allow an authenticated user to potentially enable denial of service via local access...

5.5CVSS5.8AI score0.00184EPSS
Exploits0References1
Prion
Prion
added 2023/05/10 2:15 p.m.24 views

Default configuration

Incorrect default permissions in the IntelR VROC software before version 7.7.6.1003 may allow an authenticated user to potentially enable escalation of privilege via local access...

4.3CVSS7.8AI score0.00147EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/05/10 1:16 p.m.60 views

CVE-2022-25976

Intel VROC software prior to version 7.7.6.1003 is affected by CVE-2022-25976 due to improper input validation, potentially enabling denial of service by an authenticated, local user. Impact is described as availability loss (high) with local access, low attack complexity and required privileges....

5.5CVSS5.7AI score0.00184EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/05/10 1:16 p.m.7 views

CVE-2022-25976

Improper input validation in the IntelR VROC software before version 7.7.6.1003 may allow an authenticated user to potentially enable denial of service via local access...

5.5CVSS5.3AI score0.00184EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/05/10 1:16 p.m.30 views

CVE-2022-29508

Null pointer dereference in the IntelR VROC software before version 7.7.6.1003 may allow an authenticated user to potentially enable escalation of privilege via local access...

6.3CVSS8AI score0.00174EPSS
Exploits0References1
CVE
CVE
added 2023/05/10 1:16 p.m.61 views

CVE-2022-29508

CVE-2022-29508 describes a null pointer dereference in the Intel VROC software prior to 7.7.6.1003 that may allow an authenticated local user to escalate privileges. The Red Hat/NVD/NIST and Intel advisory records confirm the issue is tied to the Intel VROC component and affects versions before t...

7.8CVSS7.7AI score0.00174EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/05/10 12:0 a.m.4 views

PT-2023-12992 · Intel · Intel Vroc

Name of the Vulnerable Software and Affected Versions: IntelR VROC software versions prior to 7.7.6.1003 Description: The issue is related to a use after free condition in the IntelR VROC software, which may allow an authenticated user to potentially enable escalation of privilege via local acces...

7.8CVSS7.7AI score0.00174EPSS
Exploits0References4
Rows per page
Query Builder