10 matches found
CVE-2021-33146
Mode C: CVE-2021-33146 affects Intel Ethernet Adapters and Intel Ethernet Controller I225 Manageability firmware. The core issue is improper input validation that may allow an unauthenticated user to disclose information over the network. Public references indicate affected firmware prior to NVM ...
CVE-2021-33162
CVE-2021-33162 : Improper access control in some Intel® Ethernet Adapters and Intel® Ethernet Controller I225 Manageability firmware may allow an authenticated local user to escalate privileges. The issue is documented by Intel in advisory Intel-SA-00756 and is rated high (CVSSv3.1 base 8.4). Aff...
CVE-2021-33157
CVE-2021-33157 affects Intel® Ethernet Adapters and Intel® Ethernet Controller I225 Manageability firmware, where insufficient control flow management could allow a privileged user to escalate privileges via local access. The base CVSSv3.1 score is 7.2 (HIGH) with LOCAL access, HIGH complexity, a...
CVE-2021-33145
CVE-2021-33145 refers to an uncaught exception in Intel® Ethernet Adapters and Intel® Ethernet Controller I225 Manageability firmware that may allow a privileged local escalation. Red Hat and Intel advisories corroborate the same description, with affected products including Intel® Ethernet Contr...
CVE-2021-33141
The CVE-2021-33141 issue affects Intel® Ethernet Adapters and Intel® Ethernet Controller I225 Manageability firmware. The root cause is improper input validation in the firmware, which may allow an unauthenticated user to cause a denial of service via network access. The CVSS v3.1 base score is 8...
CVE-2021-33161
The CVE-2021-33161 issue concerns improper input validation in Intel Ethernet Adapters and Intel Ethernet Controller I225 Manageability firmware, enabling a privileged user to escalate privileges via local access. Affected products include Intel Ethernet Controller I225 Manageability firmware (be...
CVE-2021-33142
Summary: CVE-2021-33142 affects Intel® Ethernet Adapters and Intel® Ethernet Controller I225 Manageability firmware. The common issue is improper input validation in the firmware, which may allow a privileged user to cause a denial of service via local access. Connections across sources (Intel ad...
CVE-2021-33158
CVE-2021-33158 affects Intel Ethernet Adapters and the Intel Ethernet Controller I225 Manageability firmware. Affected: Intel Ethernet Controller I225 Manageability firmware prior to NVM 1.87 and Intel Ethernet Adapters prior to version 29.0.1. Description from Intel advisory: improper neutraliza...
CVE-2022-37341
CVE-2022-37341 concerns Intel Ethernet Adapters and Intel Ethernet Controller I225 Manageability firmware. The root cause is improper access control in the manageability firmware, which may allow a local-privilege escalation by a privileged user. Public details in the provided documents confirm t...
CVE-2023-39432
CVE-2023-39432 affects Intel® Ethernet tools and driver install software prior to version 28.2, due to an improper access control element that could allow an authenticated local attacker to escalate privileges. Affected components include Intel® Ethernet Connections Boot Utility, Preboot Images, ...