CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Intel : Security Vulnerabilities

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2021-33833 787 Overflow 2021-06-09 2021-07-12
7.5
None Remote Low Not required Partial Partial Partial
ConnMan (aka Connection Manager) 1.30 through 1.39 has a stack-based buffer overflow in uncompress in dnsproxy.c via NAME, RDATA, or RDLENGTH (for A or AAAA).
2 CVE-2021-33118 863 2021-11-17 2021-11-23
4.6
None Local Low Not required Partial Partial Partial
Improper access control in the software installer for the Intel(R) Serial IO driver for Intel(R) NUC 11 Gen before version 30.100.2104.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
3 CVE-2021-33106 190 Overflow 2021-11-17 2021-11-19
4.6
None Local Low Not required Partial Partial Partial
Integer overflow in the Safestring library maintained by Intel(R) may allow an authenticated user to potentially enable escalation of privilege via local access.
4 CVE-2021-33097 367 2021-11-17 2021-11-22
6.0
None Remote Medium ??? Partial Partial Partial
Time-of-check time-of-use vulnerability in the Crypto API Toolkit for Intel(R) SGX may allow a privileged user to potentially enable escalation of privilege via network access.
5 CVE-2021-33073 400 DoS 2021-11-17 2021-11-22
2.1
None Local Low Not required None None Partial
Uncontrolled resource consumption in the Intel(R) Distribution of OpenVINOâ„¢ Toolkit before version 2021.4 may allow an unauthenticated user to potentially enable denial of service via local access.
6 CVE-2021-33071 276 2021-11-17 2021-11-22
4.6
None Local Low Not required Partial Partial Partial
Incorrect default permissions in the installer for the Intel(R) oneAPI Rendering Toolkit before version 2021.2 may allow an authenticated user to potentially enable escalation of privilege via local access.
7 CVE-2021-33062 276 2021-11-17 2021-11-22
4.6
None Local Low Not required Partial Partial Partial
Incorrect default permissions in the software installer for the Intel(R) VTune(TM) Profiler before version 2021.3.0 may allow an authenticated user to potentially enable escalation of privilege via local access.
8 CVE-2021-33059 20 2021-11-17 2021-11-22
4.6
None Local Low Not required Partial Partial Partial
Improper input validation in the Intel(R) Administrative Tools for Intel(R) Network Adapters driver for Windows before version 1.4.0.15, may allow a privileged user to potentially enable escalation of privilege via local access.
9 CVE-2021-33058 863 2021-11-17 2021-11-22
4.6
None Local Low Not required Partial Partial Partial
Improper access control in the installer Intel(R)Administrative Tools for Intel(R) Network Adaptersfor Windowsbefore version 1.4.0.21 may allow an unauthenticated user to potentially enable escalation of privilege via local access.
10 CVE-2021-26676 +Info 2021-02-09 2021-07-12
3.3
None Local Network Low Not required Partial None None
gdhcp in ConnMan before 1.39 could be used by network-adjacent attackers to leak sensitive stack information, allowing further exploitation of bugs in gdhcp.
11 CVE-2021-26675 787 Exec Code Overflow 2021-02-09 2021-07-12
5.8
None Local Network Low Not required Partial Partial Partial
A stack-based buffer overflow in dnsproxy in ConnMan before 1.39 could be used by network adjacent attackers to execute code.
12 CVE-2021-26314 668 2021-06-09 2021-06-17
2.1
None Local Low Not required Partial None None
Potential floating point value injection in all supported CPU products, in conjunction with software vulnerabilities relating to speculative execution with incorrect floating point results, may cause the use of incorrect data from FPVI and may result in data leakage.
13 CVE-2021-26313 668 Exec Code Bypass 2021-06-09 2021-10-13
2.1
None Local Low Not required Partial None None
Potential speculative code store bypass in all supported CPU products, in conjunction with software vulnerabilities relating to speculative execution of overwritten instructions, may cause an incorrect speculation and could result in data leakage.
14 CVE-2021-0186 20 2021-11-17 2021-11-23
4.6
None Local Low Not required Partial Partial Partial
Improper input validation in the Intel(R) SGX SDK applications compiled for SGX2 enabled processors may allow a privileged user to potentially escalation of privilege via local access.
15 CVE-2021-0182 400 2021-11-17 2021-11-22
2.1
None Local Low Not required Partial None None
Uncontrolled resource consumption in the Intel(R) HAXM software before version 7.6.6 may allow an unauthenticated user to potentially enable information disclosure via local access.
16 CVE-2021-0180 400 2021-11-17 2021-11-22
4.6
None Local Low Not required Partial Partial Partial
Uncontrolled resource consumption in the Intel(R) HAXM software before version 7.6.6 may allow an unauthenticated user to potentially enable privilege escalation via local access.
17 CVE-2021-0158 20 2021-11-17 2021-11-22
4.6
None Local Low Not required Partial Partial Partial
Improper input validation in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
18 CVE-2021-0157 269 2021-11-17 2021-11-22
4.6
None Local Low Not required Partial Partial Partial
Insufficient control flow management in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
19 CVE-2021-0144 1188 2021-07-14 2021-07-28
4.6
None Local Low Not required Partial Partial Partial
Insecure default variable initialization for the Intel BSSA DFT feature may allow a privileged user to potentially enable an escalation of privilege via local access.
20 CVE-2021-0143 276 2021-06-17 2021-06-23
4.6
None Local Low Not required Partial Partial Partial
Improper permissions in the installer for the Intel(R) Brand Verification Tool before version 11.0.0.1225 may allow an authenticated user to potentially enable escalation of privilege via local access.
21 CVE-2021-0135 20 2021-11-17 2021-11-22
4.6
None Local Low Not required Partial Partial Partial
Improper input validation in the Intel(R) Ethernet Diagnostic Driver for Windows before version 1.4.0.10 may allow a privileged user to potentially enable escalation of privilege via local access.
22 CVE-2021-0112 428 2021-06-09 2021-06-22
4.4
None Local Medium Not required Partial Partial Partial
Unquoted service path in the Intel Unite(R) Client for Windows before version 4.2.25031 may allow an authenticated user to potentially enable an escalation of privilege via local access.
23 CVE-2021-0108 427 2021-06-09 2021-06-22
4.4
None Local Medium Not required Partial Partial Partial
Uncontrolled search path in the Intel Unite(R) Client for Windows before version 4.2.25031 may allow an authenticated user to potentially enable an escalation of privilege via local access.
24 CVE-2021-0104 427 2021-06-09 2021-06-28
4.4
None Local Medium Not required Partial Partial Partial
Uncontrolled search path element in the installer for the Intel(R) Rapid Storage Technology software, before versions 17.9.0.34, 18.0.0.640 and 18.1.0.24, may allow an authenticated user to potentially enable escalation of privilege via local access.
25 CVE-2021-0102 732 2021-06-09 2021-06-22
4.6
None Local Low Not required Partial Partial Partial
Insecure inherited permissions in the Intel Unite(R) Client for Windows before version 4.2.25031 may allow an authenticated user to potentially enable an escalation of privilege via local access.
26 CVE-2021-0100 276 2021-06-09 2021-06-17
4.6
None Local Low Not required Partial Partial Partial
Incorrect default permissions in the installer for the Intel(R) SSD Data Center Tool, versions downloaded before 12/31/2020, may allow an authenticated user to potentially enable escalation of privilege via local access.
27 CVE-2021-0098 269 2021-06-09 2021-06-23
4.6
None Local Low Not required Partial Partial Partial
Improper access control in the Intel Unite(R) Client for Windows before version 4.2.25031 may allow an authenticated user to potentially enable an escalation of privilege via local access.
28 CVE-2021-0094 59 2021-06-09 2021-06-23
4.6
None Local Low Not required Partial Partial Partial
Improper link resolution before file access in Intel(R) DSA before version 20.11.50.9 may allow an authenticated user to potentially enable an escalation of privilege via local access.
29 CVE-2021-0090 427 2021-06-09 2021-06-23
4.4
None Local Medium Not required Partial Partial Partial
Uncontrolled search path element in Intel(R) DSA before version 20.11.50.9 may allow an authenticated user to potentially enable an escalation of privilege via local access.
30 CVE-2021-0086 203 2021-06-09 2021-07-01
2.1
None Local Low Not required Partial None None
Observable response discrepancy in floating-point operations for some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
31 CVE-2021-0077 281 2021-06-09 2021-06-28
4.6
None Local Low Not required Partial Partial Partial
Insecure inherited permissions in the installer for the Intel(R) VTune(TM) Profiler before version 2021.1.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
32 CVE-2021-0074 281 2021-06-09 2021-06-24
4.6
None Local Low Not required Partial Partial Partial
Improper permissions in the installer for the Intel(R) Computing Improvement Program software before version 2.4.5982 may allow an authenticated user to potentially enable escalation of privilege via local access.
33 CVE-2021-0073 2021-06-09 2021-06-23
4.6
None Local Low Not required Partial Partial Partial
Insufficient control flow management in Intel(R) DSA before version 20.11.50.9 may allow an authenticated user to potentially enable escalation of privilege via local access.
34 CVE-2021-0052 269 2021-06-09 2021-06-24
4.6
None Local Low Not required Partial Partial Partial
Incorrect default privileges in the Intel(R) Computing Improvement Program before version 2.4.6522 may allow an authenticated user to potentially enable an escalation of privilege via local access.
35 CVE-2021-0013 20 DoS 2021-11-17 2021-11-19
5.0
None Remote Low Not required None None Partial
Improper input validation for Intel(R) EMA before version 1.5.0 may allow an unauthenticated user to potentially enable denial of service via network access.
36 CVE-2021-0001 203 2021-06-09 2021-06-28
2.1
None Local Low Not required Partial None None
Observable timing discrepancy in Intel(R) IPP before version 2020 update 1 may allow authorized user to potentially enable information disclosure via local access.
37 CVE-2020-24513 Bypass 2021-06-09 2021-08-10
2.1
None Local Low Not required Partial None None
Domain-bypass transient execution vulnerability in some Intel Atom(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
38 CVE-2020-24512 203 2021-06-09 2021-09-09
2.1
None Local Low Not required Partial None None
Observable timing discrepancy in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
39 CVE-2020-24511 668 2021-06-09 2021-09-09
2.1
None Local Low Not required Partial None None
Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
40 CVE-2020-24509 2021-06-09 2021-06-22
4.6
None Local Low Not required Partial Partial Partial
Insufficient control flow management in subsystem in Intel(R) SPS versions before SPS_E3_05.01.04.300.0, SPS_SoC-A_05.00.03.091.0, SPS_E5_04.04.04.023.0, or SPS_E5_04.04.03.263.0 may allow a privileged user to potentially enable escalation of privilege via local access.
41 CVE-2020-24491 312 2021-02-17 2021-07-21
1.9
None Local Medium Not required Partial None None
Debug message containing addresses of memory transactions in some Intel(R) 10th Generation Core Processors supporting SGX may allow a privileged user to potentially enable information disclosure via local access.
42 CVE-2020-24489 459 2021-06-09 2021-07-26
4.6
None Local Low Not required Partial Partial Partial
Incomplete cleanup in some Intel(R) VT-d products may allow an authenticated user to potentially enable escalation of privilege via local access.
43 CVE-2020-24485 427 2021-02-17 2021-06-09
4.4
None Local Medium Not required Partial Partial Partial
Improper conditions check in the Intel(R) FPGA OPAE Driver for Linux before kernel version 4.17 may allow an authenticated user to potentially enable escalation of privilege via local access.
44 CVE-2020-24481 2021-02-17 2021-02-23
4.6
None Local Low Not required Partial Partial Partial
Insecure inherited permissions for the Intel(R) Quartus Prime Pro and Standard edition software may allow an authenticated user to potentially enable escalation of privilege via local access.
45 CVE-2020-24480 787 DoS 2021-02-17 2021-02-23
2.1
None Local Low Not required None None Partial
Out-of-bounds write in the Intel(R) XTU before version 6.5.3.25 may allow a privileged user to potentially enable denial of service via local access.
46 CVE-2020-24462 787 2021-02-17 2021-02-23
4.6
None Local Low Not required Partial Partial Partial
Out of bounds write in the Intel(R) Graphics Driver before version 15.33.53.5161, 15.36.40.5162, 15.40.47.5166, 15.45.33.5164 and 27.20.100.8336 may allow an authenticated user to potentially enable an escalation of privilege via local access.
47 CVE-2020-24460 276 DoS 2020-11-12 2020-11-20
2.1
None Local Low Not required None None Partial
Incorrect default permissions in the Intel(R) DSA before version 20.8.30.6 may allow an authenticated user to potentially enable denial of service via local access.
48 CVE-2020-24456 276 2020-11-12 2020-11-20
4.6
None Local Low Not required Partial Partial Partial
Incorrect default permissions in the Intel(R) Board ID Tool version v.1.01 may allow an authenticated user to potentially enable escalation of privilege via local access.
49 CVE-2020-24454 611 2020-11-12 2020-12-01
5.0
None Remote Low Not required Partial None None
Improper Restriction of XML External Entity Reference in subsystem forIntel(R) Quartus(R) Prime Pro Edition before version 20.3 and Intel(R) Quartus(R) Prime Standard Edition before version 20.2 may allow unauthenticated user to potentially enable information disclosure via network access.
50 CVE-2020-24453 20 2021-02-17 2021-02-23
4.6
None Local Low Not required Partial Partial Partial
Improper input validation in the Intel(R) EPID SDK before version 8, may allow an authenticated user to potentially enable an escalation of privilege via local access.
Total number of vulnerabilities : 503   Page : 1 (This Page)2 3 4 5 6 7 8 9 10 11
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.