Lucene search
K
IntelXeon Gold 6244 Firmware

24 matches found

CVE
CVE
added 2023/08/11 2:37 a.m.569 views

CVE-2022-40982

CVE-2022-40982 is an information-leak via microarchitectural state after transient execution in certain Intel vector execution units. The connected docs consistently describe local information disclosure by an authenticated user on affected Intel processors, with mitigations centered on firmware/...

6.5CVSS6.9AI score0.03882EPSS
CVE
CVE
added 2019/11/14 7:8 p.m.566 views

CVE-2018-12207

CVE-2018-12207 describes an issue where improper invalidation of page-table updates by a privileged guest can cause a Denial of Service on the host on Intel processors. The vulnerability stems from how the guest VM handles translations in the MMU/TLB when paging structures change, potentially exp...

6.5CVSS7AI score0.00915EPSS
CVE
CVE
added 2022/08/18 12:0 a.m.373 views

CVE-2022-26373

CVE-2022-26373 concerns Intel processors where non-transparent sharing of return-predictor targets between contexts may allow an authorized local user to disclose information. The provided documents describe this issue as a local-information-disclosure risk but do not specify a vendor patch/versi...

5.5CVSS6.2AI score0.0035EPSS
CVE
CVE
added 2022/02/09 10:4 p.m.122 views

CVE-2021-0116

CVE-2021-0116 is an Intel firmware vulnerability described as an out-of-bounds write in the affected Intel processors’ firmware that could allow a local, privileged escalation. Connected documents confirm the CVE details and provide context across multiple vendor advisories (IBM QRadar, F5 adviso...

7.8CVSS7.5AI score0.00312EPSS
CVE
CVE
added 2022/02/09 10:4 p.m.121 views

CVE-2021-0119

CVE-2021-0119 stems from improper initialization in Intel processor firmware that can allow a local attacker with physical access to escalate privileges. Connected advisories confirm affected platforms (e.g., IBM QRadar appliances M5/M6, certain Oracle/Red Hat/HP/F5-guided deployments) and descri...

6.2CVSS6.4AI score0.00299EPSS
CVE
CVE
added 2022/02/09 10:4 p.m.121 views

CVE-2021-0156

CVE-2021-0156 involves Intel processor firmware and is caused by improper input validation, enabling a local authenticated user to potentially escalate privileges. Public sources in the provided documents indicate vulnerable firmware on specific platforms (e.g., VELOS CX410 and VELOS BX110 blades...

7.8CVSS7.6AI score0.00301EPSS
CVE
CVE
added 2023/02/16 7:59 p.m.120 views

CVE-2022-26343

CVE-2022-26343 concerns improper access control in the BIOS firmware for some Intel processors, enabling local privilege escalation by a privileged user. The connected sources (Intel INTEL-SA-00717 advisory and vendor/Nessus interpretations) describe the issue as a BIOS/firmware level vulnerabili...

8.2CVSS6.5AI score0.00249EPSS
CVE
CVE
added 2019/12/16 7:10 p.m.118 views

CVE-2019-14607

CVE-2019-14607 corresponds to Intel processor vulnerability described as improper conditions check that may allow authenticated local attackers to partially escalate privileges, cause denial of service, or disclose information. Public sources (Intel INTEL-SA-00317) itemize affected families acros...

5.3CVSS5.4AI score0.00343EPSS
CVE
CVE
added 2022/05/12 4:35 p.m.118 views

CVE-2022-21136

CVE-2022-21136 affects Intel Xeon processors and is caused by improper input validation in the processor microarchitectural code, allowing a privileged local user to potentially cause a denial of service. The issue is discussed in multiple advisories (including Intel and F5) and is addressed via ...

5.5CVSS5AI score0.00259EPSS
CVE
CVE
added 2022/02/09 10:4 p.m.117 views

CVE-2021-0124

CVE-2021-0124 describes improper access control in Intel processor firmware that could let a privileged user escalate privileges with physical/local access. The vulnerability is documented across multiple sources (NVD entry; IBM QRadar advisories; F5 advisory) and is associated with privilege esc...

6.6CVSS6.6AI score0.00331EPSS
CVE
CVE
added 2022/05/12 4:35 p.m.114 views

CVE-2022-21131

CVE-2022-21131 describes improper access control on some Intel Xeon processors that could allow an authenticated local user to disclose information. The available connected sources confirm this as a local access vulnerability affecting Intel Xeon CPUs and note remediation through microcode update...

5.5CVSS4.9AI score0.00288EPSS
CVE
CVE
added 2022/02/09 10:4 p.m.112 views

CVE-2021-0117

CVE-2021-0117 describes pointer issues in Intel processor firmware that may allow a local attacker to escalate privileges. The vulnerability is rooted in firmware handling, with impacts described as local privilege escalation and, per some sources, possible denial of service or information disclo...

7.8CVSS7.5AI score0.00312EPSS
CVE
CVE
added 2022/05/12 4:36 p.m.108 views

CVE-2021-33124

CVE-2021-33124 refers to an out-of-bounds write in the BIOS authenticated code module for some Intel processors that may allow a privileged local user to escalate privileges. Public advisories (Intel SA-00601) describe this class of BIOS/firmware flaws and recommend applying the latest Intel BIOS...

7.2CVSS6.3AI score0.00252EPSS
CVE
CVE
added 2022/02/09 10:4 p.m.103 views

CVE-2021-0118

CVE-2021-0118 involves an out-of-bounds read in Intel processor firmware that could enable local privilege escalation. Public documents confirm affected surface as Intel processor firmware with local access as the attack vector. IBM and F5 advisories reference this CVE among a family of firmware ...

6.7CVSS6.6AI score0.00311EPSS
CVE
CVE
added 2022/02/09 10:4 p.m.103 views

CVE-2021-0125

CVE-2021-0125 is a confirmed Intel processor firmware vulnerability caused by improper initialization that can enable privilege escalation with physical/local access. Connected sources name affected platforms and vendor advisories; e.g., IBM QRadar M6/M5 firmware lines and IBM Cloud Pak System up...

6.6CVSS6.5AI score0.00312EPSS
CVE
CVE
added 2022/05/12 4:36 p.m.100 views

CVE-2021-33123

CVE-2021-33123 : Improper access control in the BIOS authenticated code module for certain Intel processors may allow a locally authenticated user to escalate privileges. The issue is discussed in the Intel IPU BIOS advisory (INTEL-SA-00601) with CVSS v3.1 base scores reported as high (up to 8.2)...

7.8CVSS7.4AI score0.00253EPSS
CVE
CVE
added 2023/08/11 2:37 a.m.97 views

CVE-2022-43505

The CVE-2022-43505 issue affects Intel BIOS firmware due to Insufficient control flow management in the BIOS, which may allow a privileged local user to cause a denial of service. Intel’s INTEL-SA-00813 advisory and associated feeds describe vulnerable BIOS implementations and list affected Intel...

4.4CVSS4.3AI score0.00158EPSS
CVE
CVE
added 2019/11/14 4:56 p.m.94 views

CVE-2019-11136

CVE-2019-11136 affects Intel firmware for Xeon® Scalable Processors (2nd Gen Xeon Scalable and Xeon D Family). Root cause: insufficient access control in system firmware, enabling a locally authenticated attacker to escalate privileges, potentially cause denial of service or information disclosur...

6.7CVSS6.8AI score0.00396EPSS
CVE
CVE
added 2022/05/12 4:36 p.m.91 views

CVE-2021-0159

CVE-2021-0159 concerns Intel BIOS firmware: improper input validation in the BIOS authenticated code module for certain Intel CPUs may allow a local privileged user to escalate privileges. The vulnerability is documented by Intel’s advisory INTEL-SA-00601 (and related Intel security notes) and su...

7.8CVSS7.4AI score0.00259EPSS
CVE
CVE
added 2020/11/12 5:54 p.m.88 views

CVE-2020-0590

CVE-2020-0590 describes improper input validation in BIOS firmware for some Intel processors, potentially allowing privilege escalation via local access for an authenticated user. Public documents identify the vulnerability and note mitigations via BIOS updates. Affected platforms span multiple I...

7.8CVSS8.2AI score0.00419EPSS
CVE
CVE
added 2019/11/14 4:56 p.m.86 views

CVE-2019-11137

CVE-2019-11137 affects Intel firmware in multiple Xeon families (Scalable, D, E5 v4, E7 v4, Atom C Series). Root cause: insufficient input validation in system firmware, enabling a local privileged attacker to escalate privileges, cause denial of service, and disclose information. Affected compon...

8.2CVSS7.6AI score0.0039EPSS
CVE
CVE
added 2022/05/12 4:36 p.m.86 views

CVE-2021-0189

CVE-2021-0189 affects Intel BIOS firmware via a use of out-of-range pointer offset in the BIOS firmware for some Intel processors, enabling potential privilege escalation through local access. The issue is documented across multiple sources (Intel INTEL-SA-00601, NVD entry, and related advisories...

7.8CVSS7.4AI score0.00268EPSS
CVE
CVE
added 2019/11/14 7:6 p.m.81 views

CVE-2019-0152

CVE-2019-0152 refers to insufficient memory protection in System Management Mode (SMM) and Intel TXT for certain Intel Xeon processors, allowing a privileged local attacker to potentially escalate privileges. Public details across connected sources confirm the affected components (SMM and TXT in ...

7.2CVSS6.7AI score0.00404EPSS
CVE
CVE
added 2023/02/16 7:59 p.m.77 views

CVE-2022-32231

CVE-2022-32231 involves improper initialization in the BIOS firmware on certain Intel processors, which may allow a privileged local attacker to escalate privileges. The issue is tied to Intel BIOS firmware affected by INTEL-SA-00717; adversaries could leverage local access to achieve higher priv...

7.5CVSS6.5AI score0.00211EPSS