40 matches found
CVE-2024-29079
Intel VROC software up to version 8.6.0.3001 is affected by CVE-2024-29079 due to insufficient control flow management, which may allow an authenticated local user to escalate privileges. Affected: Intel® VROC software prior to 8.6.0.3001. Impact is privilege escalation with high confidentiality/...
PT-2024-24609 · Intel · Intel Vroc
Name of the Vulnerable Software and Affected Versions: IntelR VROC software versions prior to 8.6.0.2003 Description: The issue is related to improper input validation in IntelR VROC software, which may allow an authenticated user to potentially enable denial of service via local access...
Intel VROC Software Advisory - Lenovo Support US
No description provided...
Intel® VROC Software Advisory
Summary: Potential security vulnerabilities in some Intel® Virtual RAID on CPU Intel® VROC software may allow escalation of privilege and denial of service. Intel is releasing software updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2024-29079 Description:...
CVE-2024-23489
Uncontrolled search path for some IntelR VROC software before version 8.6.0.1191 may allow an authenticated user to potentially enable escalation of privilege via local access...
Intel® VROC Software Advisory
Summary: Potential security vulnerabilities in some Intel® Virtual RAID on CPU VROC software may allow escalation of privilege. Intel is releasing software updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2023-31271 Description: Improper access control in som...
CVE-2023-35003
Path transversal in some IntelR VROC software before version 8.0.8.1001 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2023-31271
Improper access control in some IntelR VROC software before version 8.0.8.1001 may allow an authenticated user to potentially enable escalation of privilege via local access...
Path traversal
Path transversal in some IntelR VROC software before version 8.0.8.1001 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2023-34315
Intel VROC software prior to version 8.0.8.1001 contains an incorrect default permissions issue that could allow an authenticated local user to escalate privileges. The CVE-2023-34315 entry is confirmed by Intel’s advisory (INTEL-SA-00953) and NVD/NIST records, which cite a CVSSv3.1 base score of...
CVE-2023-31271
CVE-2023-31271 affects Intel® VROC software prior to version 8.0.8.1001, where improper access control may allow an authenticated local user to potentially escalate privileges. The Red Hat, NVD/NIST, and Intel advisory ecosystem corroborates the issue as a local-privilege-escalation vulnerability...
PT-2024-2742 · Intel · Intel Vroc
Name of the Vulnerable Software and Affected Versions: Intel VROC software versions prior to 8.0.8.1001 Description: The issue is related to improper access control in Intel VROC software, which may allow an authenticated user to potentially enable escalation of privilege via local access. This i...
CVE-2022-45112
Improper access control in some IntelR VROC software before version 8.0.0.4035 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2022-25976
Improper input validation in the IntelR VROC software before version 7.7.6.1003 may allow an authenticated user to potentially enable denial of service via local access...
Default configuration
Incorrect default permissions in the IntelR VROC software before version 7.7.6.1003 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2022-25976
Intel VROC software prior to version 7.7.6.1003 is affected by CVE-2022-25976 due to improper input validation, potentially enabling denial of service by an authenticated, local user. Impact is described as availability loss (high) with local access, low attack complexity and required privileges....
CVE-2022-25976
Improper input validation in the IntelR VROC software before version 7.7.6.1003 may allow an authenticated user to potentially enable denial of service via local access...
CVE-2022-29508
Null pointer dereference in the IntelR VROC software before version 7.7.6.1003 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2022-29508
CVE-2022-29508 describes a null pointer dereference in the Intel VROC software prior to 7.7.6.1003 that may allow an authenticated local user to escalate privileges. The Red Hat/NVD/NIST and Intel advisory records confirm the issue is tied to the Intel VROC component and affects versions before t...
PT-2023-12992 · Intel · Intel Vroc
Name of the Vulnerable Software and Affected Versions: IntelR VROC software versions prior to 7.7.6.1003 Description: The issue is related to a use after free condition in the IntelR VROC software, which may allow an authenticated user to potentially enable escalation of privilege via local acces...