Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): firmware
- Search Type: Search All
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2023-35762 |
Versions of INEA ME RTU firmware 3.36b and prior are vulnerable to operating system (OS) command injection, which could allow remote code execution. Published: November 20, 2023; 12:15:13 PM -0500 |
V3.1: 9.8 CRITICAL V2.0:(not available) |
CVE-2023-29155 |
Versions of INEA ME RTU firmware 3.36b and prior do not require authentication to the "root" account on the host system of the device. This could allow an attacker to obtain admin-level access to the host system. Published: November 20, 2023; 12:15:13 PM -0500 |
V3.1: 9.8 CRITICAL V2.0:(not available) |
CVE-2023-5984 |
A CWE-494 Download of Code Without Integrity Check vulnerability exists that could allow modified firmware to be uploaded when an authorized admin user begins a firmware update procedure which could result in full control over the device. Published: November 14, 2023; 11:15:19 PM -0500 |
V3.1: 4.9 MEDIUM V2.0:(not available) |
CVE-2023-40540 |
Non-Transparent Sharing of Microarchitectural Resources in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access. Published: November 14, 2023; 2:15:30 PM -0500 |
V3.1: 4.4 MEDIUM V2.0:(not available) |
CVE-2023-40220 |
Improper buffer restrictions in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access. Published: November 14, 2023; 2:15:30 PM -0500 |
V3.1: 4.4 MEDIUM V2.0:(not available) |
CVE-2023-34431 |
Improper input validation in some Intel(R) Server Board BIOS firmware may allow a privileged user to potentially enable escalation of privilege via local access Published: November 14, 2023; 2:15:28 PM -0500 |
V3.1: 6.7 MEDIUM V2.0:(not available) |
CVE-2023-32660 |
Uncontrolled search path in some Intel(R) NUC Kit NUC6i7KYK Thunderbolt(TM) 3 Firmware Update Tool installation software before version 46 may allow an authenticated user to potentially enable escalation of privilege via local access. Published: November 14, 2023; 2:15:26 PM -0500 |
V3.1: 7.3 HIGH V2.0:(not available) |
CVE-2023-32658 |
Unquoted search path in some Intel(R) NUC Kits NUC7i3DN, NUC7i5DN, NUC7i7DN HDMI firmware update tool software before version 1.79.1.1 may allow an authenticated user to potentially enable escalation of privilege via local access. Published: November 14, 2023; 2:15:26 PM -0500 |
V3.1: 7.3 HIGH V2.0:(not available) |
CVE-2023-32641 |
Improper input validation in firmware for Intel(R) QAT before version QAT20.L.1.0.40-00004 may allow escalation of privilege and denial of service via adjacent access. Published: November 14, 2023; 2:15:26 PM -0500 |
V3.1: 8.8 HIGH V2.0:(not available) |
CVE-2023-28737 |
Improper initialization in some Intel(R) Aptio* V UEFI Firmware Integrator Tools may allow an authenticated user to potentially enable escalation of privilege via local access. Published: November 14, 2023; 2:15:23 PM -0500 |
V3.1: 7.8 HIGH V2.0:(not available) |
CVE-2023-28723 |
Exposure of sensitive information to an unauthorized actor in some Intel(R) Aptio* V UEFI Firmware Integrator Tools may allow an authenticated user to potentially enable information disclosure via local access. Published: November 14, 2023; 2:15:23 PM -0500 |
V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2023-28397 |
Improper access control in some Intel(R) Aptio* V UEFI Firmware Integrator Tools may allow an authenticated to potentially enable escalation of privileges via local access. Published: November 14, 2023; 2:15:22 PM -0500 |
V3.1: 7.8 HIGH V2.0:(not available) |
CVE-2023-28377 |
Improper authentication in some Intel(R) NUC Kit NUC11PH USB firmware installation software before version 1.1 for Windows may allow an authenticated user to potentially enable escalation of privilege via local access. Published: November 14, 2023; 2:15:21 PM -0500 |
V3.1: 7.8 HIGH V2.0:(not available) |
CVE-2023-28376 |
Out-of-bounds read in the firmware for some Intel(R) E810 Ethernet Controllers and Adapters before version 1.7.1 may allow an unauthenticated user to potentially enable denial of service via adjacent access. Published: November 14, 2023; 2:15:21 PM -0500 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
CVE-2023-27879 |
Improper access control in firmware for some Intel(R) Optane(TM) SSD products may allow an unauthenticated user to potentially enable information disclosure via physical access. Published: November 14, 2023; 2:15:21 PM -0500 |
V3.1: 4.6 MEDIUM V2.0:(not available) |
CVE-2023-27519 |
Improper input validation in firmware for some Intel(R) Optane(TM) SSD products may allow a privileged user to potentially enable escalation of privilege via local access. Published: November 14, 2023; 2:15:21 PM -0500 |
V3.1: 7.8 HIGH V2.0:(not available) |
CVE-2023-27306 |
Improper Initialization in firmware for some Intel(R) Optane(TM) SSD products may allow an authenticated user to potentially enable denial of service via local access. Published: November 14, 2023; 2:15:20 PM -0500 |
V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2023-26589 |
Use after free in some Intel(R) Aptio* V UEFI Firmware Integrator Tools may allowed an authenticated user to potentially enable denial of service via local access. Published: November 14, 2023; 2:15:20 PM -0500 |
V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2023-25949 |
Uncontrolled resource consumption in some Intel(R) Aptio* V UEFI Firmware Integrator Tools may allow an authenticated user to potentially enable denial of service via local access. Published: November 14, 2023; 2:15:19 PM -0500 |
V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2023-25756 |
Out-of-bounds read in the BIOS firmware for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege via adjacent access. Published: November 14, 2023; 2:15:19 PM -0500 |
V3.1: 8.0 HIGH V2.0:(not available) |