12 matches found
CVE-2021-0127
CVE-2021-0127 concerns insufficient control flow management in some Intel processors, enabling potential local DoS. Connected docs confirm a microcode/firmware issue addressed by updating Intel microcode via microcode_ctl packages (e.g., ALMA/ALAS2 advisories and vendor advisories). Remediation i...
CVE-2020-0551
CVE-2020-0551 describes a load-value injection vulnerability on some Intel processors due to speculative execution, potentially allowing an authenticated local attacker to disclose information via a side channel. The vulnerability’s affected products are listed in Intel security advisory intel-sa...
CVE-2021-0144
CVE-2021-0144 (Intel BSSA DFT) is triggered by insecure default variable initialization in the BIOS Shared SW Architecture Design for Test feature, enabling local privilege escalation for authenticated/privileged users. Public adapters include Intel’s advisory INTEL-SA-00525 and related vendor bu...
CVE-2021-0103
CVE-2021-0103: Insufficient control flow management in Intel processor firmware can enable a local privilege escalation. Documents flag VELOS CX410 and VELOS BX110 Blade as affected; IBM/HP/F5 advisories reference Intel CPU vulnerabilities and firmware updates as mitigations. The connected source...
CVE-2021-0115
CVE-2021-0115 describes a buffer overflow in Intel processor firmware that may allow a local, authenticated attacker to escalate privileges. Public documents confirm the issue exists in firmware and is addressable by vendor-provided updates. IBM/F5 advisories list affected products and remediatio...
CVE-2021-0099
CVE-2021-0099 describes insufficient control-flow management in the firmware of some Intel processors, potentially allowing an authenticated local attacker to escalate privileges. The CVE is discussed across multiple sources in the Connected documents, which identify affected platforms and remedi...
CVE-2021-0111
CVE-2021-0111 is a NULL pointer dereference in the firmware for some Intel processors that could allow a local attacker to escalate privileges. The vulnerability is described in multiple sources (NVD entry for CVE-2021-0111 and vendor advisories) as a local-firmware issue with potential privilege...
CVE-2021-0092
The CVE-2021-0092 entry describes an Improper access control in Intel processor firmware that could allow a local privileged user to cause a denial of service. Public documents tie this to firmware on Intel CPUs and list affected environments (e.g., IBM QRadar SIEM appliances with M5/M6 firmware,...
CVE-2021-0114
CVE-2021-0114 refers to an unchecked return value in the firmware for some Intel processors that could enable a local attacker to escalate privileges. The vulnerability is documented across multiple advisories (Intel IPU BIOS advisory and IBM HP/IBM QRadar related notes) and is described as a loc...
CVE-2021-0091
CVE-2021-0091 is an Intel processor firmware vulnerability described as improper access control that could allow a local attacker to escalate privileges. Public documents in the set identify affected platforms (e.g., some Intel firmware on targeted hardware such as IBM QRadar-related components a...
CVE-2021-0093
CVE-2021-0093: Incorrect default permissions in the firmware for some Intel processors may allow a local privileged user to cause a denial of service. The CVE is linked with multiple vendor advisories (IBM QRadar, F5 advisories, HP/Intel BIOS updates, and IBM/NCSC notes) that reference vulnerable...
CVE-2021-0107
CVE-2021-0107: Unchecked return value in the firmware for Intel processors can allow a local attacker to escalate privileges. Documented impact indicates local access is required and the consequence is elevated privileges, not remote code execution. Affected items include Intel processor firmware...