Core I7-8500y Firmware@- Security Vulnerabilities and Issues — Core I7-8500y Firmware@- CVE List

Lucene search

IntelCore I7-8500y Firmware-

15 matches found

CVE•added 2022/07/12 7:15 p.m.•330 views

CVE-2022-29901

Intel microprocessor generations 6 to 8 are affected by a new Spectre variant that is able to bypass their retpoline mitigation in the kernel to leak arbitrary data. An attacker with unprivileged user access can hijack return instructions to achieve arbitrary speculative code execution under certai...

6.5CVSS7.1AI score0.00112EPSS

CVE•added 2022/08/18 8:15 p.m.•307 views

CVE-2022-26373

Non-transparent sharing of return predictor targets between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.

5.5CVSS6.2AI score0.00426EPSS

CVE•added 2022/05/12 5:15 p.m.•147 views

CVE-2022-21151

Processor optimization removal or modification of security-critical code for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

5.5CVSS5.2AI score0.00044EPSS

CVE•added 2022/06/15 9:15 p.m.•119 views

CVE-2022-21180

Improper input validation for some Intel(R) Processors may allow an authenticated user to potentially cause a denial of service via local access.

5.5CVSS5.8AI score0.00092EPSS

CVE•added 2022/05/12 5:15 p.m.•108 views

CVE-2022-0005

Sensitive information accessible by physical probing of JTAG interface for some Intel(R) Processors with SGX may allow an unprivileged user to potentially enable information disclosure via physical access.

2.4CVSS4AI score0.0004EPSS

CVE•added 2022/02/09 11:15 p.m.•101 views

CVE-2021-0119

Improper initialization in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via physical access.

6.2CVSS6.4AI score0.00156EPSS

CVE•added 2022/02/09 11:15 p.m.•100 views

CVE-2021-0124

Improper access control in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via physical access.

6.6CVSS6.6AI score0.00199EPSS

CVE•added 2022/02/09 11:15 p.m.•97 views

CVE-2021-0116

Out-of-bounds write in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of privilege via local access.

7.8CVSS7.5AI score0.00199EPSS

CVE•added 2022/02/09 11:15 p.m.•94 views

CVE-2021-0156

Improper input validation in the firmware for some Intel(R) Processors may allow an authenticated user to potentially enable an escalation of privilege via local access.

7.8CVSS7.6AI score0.00148EPSS

CVE•added 2022/05/12 5:15 p.m.•90 views

CVE-2021-33124

Out-of-bounds write in the BIOS authenticated code module for some Intel(R) Processors may allow a privileged user to potentially enable aescalation of privilege via local access.

7.2CVSS6.3AI score0.00052EPSS

CVE•added 2022/02/09 11:15 p.m.•89 views

CVE-2021-0117

Pointer issues in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of privilege via local access.

7.8CVSS7.5AI score0.00199EPSS

CVE•added 2022/02/09 11:15 p.m.•86 views

CVE-2021-0118

Out-of-bounds read in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of privilege via local access.

6.7CVSS6.6AI score0.00156EPSS

CVE•added 2022/02/09 11:15 p.m.•85 views

CVE-2021-0125

Improper initialization in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via physical access.

6.6CVSS6.5AI score0.00199EPSS

CVE•added 2022/05/12 5:15 p.m.•78 views

CVE-2021-33123

Improper access control in the BIOS authenticated code module for some Intel(R) Processors may allow a privileged user to potentially enable aescalation of privilege via local access.

7.8CVSS7.4AI score0.00101EPSS

CVE•added 2022/11/11 4:15 p.m.•70 views

CVE-2022-26047

Improper input validation for some Intel(R) PROSet/Wireless WiFi, Intel vPro(R) CSME WiFi and Killer(TM) WiFi products may allow unauthenticated user to potentially enable denial of service via local access.

6.5CVSS6.3AI score0.00034EPSS