Intel Intel

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in any Intel product.

Products by Intel Sorted by Most Security Vulnerabilities since 2018

Intel Graphics Driver52 vulnerabilities

Intel Data Center Manager31 vulnerabilities

Intel Quartus Prime26 vulnerabilities

Intel Thunderbolt Dch Driver25 vulnerabilities

Intel Driver Support Assistant19 vulnerabilities

Known Exploited Intel Vulnerabilities

The following Intel vulnerabilities have been marked by CISA as Known to be Exploited by threat actors.

Title Description Added
Intel Ethernet Diagnostics Driver for Windows Denial-of-Service Vulnerability Intel ethernet diagnostics driver for Windows IQVW32.sys and IQVW64.sys contain an unspecified vulnerability that allows for a denial-of-service.
CVE-2015-2291 Exploit Probability: 0.3%
February 10, 2023
Intel Active Management Technology (AMT), Small Business Technology (SBT), and Standard Manageabilit Intel products contain a vulnerability which can allow attackers to perform privilege escalation.
CVE-2017-5689 Exploit Probability: 97.4%
January 28, 2022

The vulnerability CVE-2017-5689: Intel Active Management Technology (AMT), Small Business Technology (SBT), and Standard Manageabilit is in the top 1% of the currently known exploitable vulnerabilities.

By the Year

In 2025 there have been 0 vulnerabilities in Intel. Last year, in 2024 Intel had 122 security vulnerabilities published. Right now, Intel is on track to have less security vulnerabilities in 2025 than it did last year.




Year Vulnerabilities Average Score
2025 0 0.00
2024 122 6.77
2023 182 7.18
2022 101 6.97
2021 52 7.13
2020 114 6.92
2019 150 6.54
2018 72 6.65

It may take a day or so for new Intel vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Intel Security Vulnerabilities

Intel Server Board M70KLP UEFI Firmware Privilege Escalation Vulnerability

CVE-2024-39609 6.7 - Medium - November 13, 2024

Improper Access Control in UEFI firmware for some Intel(R) Server Board M70KLP may allow a privileged user to potentially enable escalation of privilege via local access.

Authorization

Intel Server Board M10JNP2SB Family UEFI Firmware Privilege Escalation Vulnerability

CVE-2024-41167 6.7 - Medium - November 13, 2024

Improper input validation in UEFI firmware in some Intel(R) Server Board M10JNP2SB Family may allow a privileged user to potentially enable escalation of privilege via local access.

Intel(R) Xeon(R) Processors UEFI Firmware Control Flow Management Vulnerability

CVE-2024-25565 - November 13, 2024

Insufficient control flow management in UEFI firmware for some Intel(R) Xeon(R) Processors may allow an authenticated user to enable denial of service via local access.

Insufficient Control Flow Management

Intel(R) oneAPI Math Kernel Library: Uncontrolled Search Path Privilege Escalation Vulnerability

CVE-2024-28950 - November 13, 2024

Uncontrolled search path for some Intel(R) oneAPI Math Kernel Library software for Windows before version 2024.2 may allow an authenticated user to potentially enable escalation of privilege via local access.

DLL preloading

Intel(R) Distribution for Python: Incorrect Default Permissions Leading to Privilege Escalation

CVE-2024-29083 - November 13, 2024

Incorrect default permissions in some Intel(R) Distribution for Python software before version 2024.2 may allow an authenticated user to potentially enable escalation of privilege via local access.

Incorrect Default Permissions

Intel(R) Distribution of OpenVINO(TM) Model Server: Improper Input Validation Vulnerability

CVE-2024-32048 - November 13, 2024

Improper input validation in the Intel(R) Distribution of OpenVINO(TM) Model Server software before version 2024.0 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

Improper Input Validation

Intel Graphics Drivers: Untrusted Pointer Dereference Privilege Escalation Vulnerability

CVE-2024-34023 - November 13, 2024

Untrusted pointer dereference in some Intel(R) Graphics Drivers may allow an authenticated user to potentially enable escalation of privilege via local access.

Untrusted Pointer Dereference

Intel Graphics Drivers: Improper Buffer Restrictions Leading to Denial of Service

CVE-2024-34170 - November 13, 2024

Improper buffer restrictions in some Intel(R) Graphics Drivers may allow an authenticated user to potentially enable denial of service via local access.

DEPRECATED: Improper Sanitization of Custom Special Characters

Intel SGX SDK: Out-of-Bounds Write Privilege Escalation Vulnerability

CVE-2024-34776 - November 13, 2024

Out-of-bounds write in some Intel(R) SGX SDK software may allow an authenticated user to potentially enable escalation of privilege via local access.

Memory Corruption

Intel VTune Profiler Uncontrolled Search Path Element Privilege Escalation Vulnerability

CVE-2024-36245 - November 13, 2024

Uncontrolled search path element in some Intel(R) VTune(TM) Profiler software before version 2024.2.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

DLL preloading

Intel(R) VTune(TM) Profiler: Improper Input Validation Vulnerability

CVE-2024-37027 - November 13, 2024

Improper Input validation in some Intel(R) VTune(TM) Profiler software before version 2024.2.0 may allow an authenticated user to potentially enable denial of service via local access.

Improper Input Validation

Intel(R) Graphics Driver: Uncontrolled Search Path Vulnerability

CVE-2024-38387 - November 13, 2024

Uncontrolled search path in the Intel(R) Graphics Driver installers for versions 15.40 and 15.45 may allow an authenticated user to potentially enable escalation of privilege via local access.

DLL preloading

Intel(R) Xeon(R) Processor Family (E-Core) SPP Protection Mechanism Failure Privilege Escalation Vul

CVE-2024-38660 - November 13, 2024

Protection mechanism failure in the SPP for some Intel(R) Xeon(R) processor family (E-Core) may allow an authenticated user to potentially enable escalation of privilege via local access.

Protection Mechanism Failure

Intel Graphics Drivers: Out-of-Bounds Write Privilege Escalation Vulnerability

CVE-2024-38665 - November 13, 2024

Out-of-bounds write in some Intel(R) Graphics Drivers may allow an authenticated user to potentially enable escalation of privilege via local access.

Memory Corruption

Intel(R) Quartus(R) Prime Standard Edition: Uncontrolled Search Path Privilege Escalation Vulnerabil

CVE-2024-38668 - November 13, 2024

Uncontrolled search path for some Intel(R) Quartus(R) Prime Standard Edition software for Windows before version 23.1.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

DLL preloading

Improper access control in Intel(R) RAID Web Console software all versions may

CVE-2024-36261 5.7 - Medium - September 16, 2024

Improper access control in Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable denial of service via adjacent access.

Authorization

Improper access control in Intel(R) RAID Web Console all versions may

CVE-2024-36247 5.7 - Medium - September 16, 2024

Improper access control in Intel(R) RAID Web Console all versions may allow an authenticated user to potentially enable denial of service via adjacent access.

Authorization

Improper input validation in some Intel(R) RAID Web Console software all versions may

CVE-2024-34545 5.7 - Medium - September 16, 2024

Improper input validation in some Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable information disclosure via adjacent access.

Improper access control in Intel(R) RAID Web Console software for all versions may

CVE-2024-34543 7.8 - High - September 16, 2024

Improper access control in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable escalation of privilege via local access.

Authorization

Uncontrolled search path element in Intel(R) RAID Web Console software for all versions may

CVE-2024-34153 7.8 - High - September 16, 2024

Uncontrolled search path element in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable escalation of privilege via local access.

DLL preloading

Uncaught exception in Intel(R) RAID Web Console software all versions may

CVE-2024-33848 5.5 - Medium - September 16, 2024

Uncaught exception in Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable denial of service via local access.

Uncaught Exception

Improper access control in Intel(R) RAID Web Console software for all versions may

CVE-2024-32940 5.7 - Medium - September 16, 2024

Improper access control in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable denial of service via adjacent access.

Authorization

NULL pointer dereference in Intel(R) RAID Web Console software for all versions may

CVE-2024-32666 5.5 - Medium - September 16, 2024

NULL pointer dereference in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable denial of service via local access.

NULL Pointer Dereference

Improper access control in Intel(R) RAID Web Console all versions may

CVE-2024-28170 5.5 - Medium - September 16, 2024

Improper access control in Intel(R) RAID Web Console all versions may allow an authenticated user to potentially enable information disclosure via local access.

Authorization

Improper buffer restrictions in some Intel(R) Distribution for GDB software before version 2024.0.1 may

CVE-2024-25562 6.6 - Medium - August 14, 2024

Improper buffer restrictions in some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to potentially enable denial of service via local access.

Improper input validation for some Intel(R) Distribution for GDB software before version 2024.0.1 may

CVE-2024-24973 3.3 - Low - August 14, 2024

Improper input validation for some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to potentially enable denial of service via local access.

Incorrect default permissions in some Intel(R) Distribution for GDB software before version 2024.0.1 may

CVE-2024-23495 7.8 - High - August 14, 2024

Incorrect default permissions in some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

Incorrect Default Permissions

Uncontrolled search path in some Intel(R) Distribution for GDB software before version 2024.0.1 may

CVE-2024-23491 7.3 - High - August 14, 2024

Uncontrolled search path in some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

DLL preloading

Uncontrolled search path for some Intel(R) MPI Library software before version 2021.12 may

CVE-2024-28876 7.3 - High - August 14, 2024

Uncontrolled search path for some Intel(R) MPI Library software before version 2021.12 may allow an authenticated user to potentially enable escalation of privilege via local access.

DLL preloading

Uncontrolled search path for some Intel(R) Trace Analyzer and Collector software before version 2022.1 may

CVE-2024-28172 7.3 - High - August 14, 2024

Uncontrolled search path for some Intel(R) Trace Analyzer and Collector software before version 2022.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

DLL preloading

Improper access control in some Intel(R) Arc(TM) & Iris(R) Xe Graphics software before version 31.0.101.4824 may

CVE-2024-28050 5.5 - Medium - August 14, 2024

Improper access control in some Intel(R) Arc(TM) & Iris(R) Xe Graphics software before version 31.0.101.4824 may allow an authenticated user to potentially enable denial of service via local access.

Uncontrolled search path in some Intel(R) GPA software before version 2024.1 may

CVE-2024-28046 7.8 - High - August 14, 2024

Uncontrolled search path in some Intel(R) GPA software before version 2024.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

DLL preloading

Incorrect default permissions in software installer for Intel(R) MAS (GUI) may

CVE-2024-27461 5.5 - Medium - August 14, 2024

Incorrect default permissions in software installer for Intel(R) MAS (GUI) may allow an authenticated user to potentially enable denial of service via local access.

Incorrect Default Permissions

Uncontrolled search path for some Intel(R) Simics Package Manager software before version 1.8.3 may

CVE-2024-26027 7.8 - High - August 14, 2024

Uncontrolled search path for some Intel(R) Simics Package Manager software before version 1.8.3 may allow an authenticated user to potentially enable escalation of privilege via local access.

DLL preloading

Incorrect default permissions for some Intel(R) Advisor software before version 2024.1 may

CVE-2024-26025 7.8 - High - August 14, 2024

Incorrect default permissions for some Intel(R) Advisor software before version 2024.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

Incorrect Default Permissions

Improper access control in some Intel(R) UEFI Integrator Tools on Aptio V for Intel(R) NUC may

CVE-2024-26022 7.8 - High - August 14, 2024

Improper access control in some Intel(R) UEFI Integrator Tools on Aptio V for Intel(R) NUC may allow an authenticated user to potentially enable escalation of privilege via local access.

improper access control in firmware for some Intel(R) FPGA products before version 24.1 may

CVE-2024-25576 7.9 - High - August 14, 2024

improper access control in firmware for some Intel(R) FPGA products before version 24.1 may allow a privileged user to enable escalation of privilege via local access.

Improper access control in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters before version 28.3 may

CVE-2024-24986 8.8 - High - August 14, 2024

Improper access control in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters before version 28.3 may allow an authenticated user to potentially enable escalation of privilege via local access.

Wrap-around error in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters before version 28.3 may

CVE-2024-23981 8.8 - High - August 14, 2024

Wrap-around error in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters before version 28.3 may allow an authenticated user to potentially enable escalation of privilege via local access.

Incorrect Calculation

Uncontrolled search path in some Intel(R) FPGA SDK for OpenCL(TM) software technology may

CVE-2024-23909 7.8 - High - August 14, 2024

Uncontrolled search path in some Intel(R) FPGA SDK for OpenCL(TM) software technology may allow an authenticated user to potentially enable escalation of privilege via local access.

DLL preloading

Uncontrolled search path in some Intel(R) High Level Synthesis Compiler software before version 23.4 may

CVE-2024-23907 7.8 - High - August 14, 2024

Uncontrolled search path in some Intel(R) High Level Synthesis Compiler software before version 23.4 may allow an authenticated user to potentially enable escalation of privilege via local access.

DLL preloading

Protection mechanism failure in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters E810 Series before version 28.3 may

CVE-2024-23499 7.5 - High - August 14, 2024

Protection mechanism failure in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters E810 Series before version 28.3 may allow an unauthenticated user to potentially enable denial of service via network access.

Incomplete filtering of special elements in Intel(R) TDX module software before version TDX_1.5.01.00.592 may

CVE-2024-39283 7.8 - High - August 14, 2024

Incomplete filtering of special elements in Intel(R) TDX module software before version TDX_1.5.01.00.592 may allow an authenticated user to potentially enable escalation of privilege via local access.

Uncontrolled search path in some Intel(R) VTune(TM) Profiler software before versions 2024.1 may

CVE-2024-29015 7.8 - High - August 14, 2024

Uncontrolled search path in some Intel(R) VTune(TM) Profiler software before versions 2024.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

DLL preloading

Improper input validation in kernel mode driver for some Intel(R) Server Board S2600ST Family firmware before version 02.01.0017 may

CVE-2024-28947 8.2 - High - August 14, 2024

Improper input validation in kernel mode driver for some Intel(R) Server Board S2600ST Family firmware before version 02.01.0017 may allow a privileged user to potentially enable escalation of privilege via local access.

Uncontrolled search path in some Intel(R) IPP software before version 2021.11 may

CVE-2024-28887 7.8 - High - August 14, 2024

Uncontrolled search path in some Intel(R) IPP software before version 2021.11 may allow an authenticated user to potentially enable escalation of privilege via local access.

DLL preloading

Insecure inherited permissions in some Intel(R) HID Event Filter software installers before version 2.2.2.1 may

CVE-2024-25561 7.8 - High - August 14, 2024

Insecure inherited permissions in some Intel(R) HID Event Filter software installers before version 2.2.2.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

Incorrect Permission Assignment for Critical Resource

Uncontrolled search path for some Intel(R) License Manager for FLEXlm product software before version 11.19.5.0 may

CVE-2024-24977 7.8 - High - August 14, 2024

Uncontrolled search path for some Intel(R) License Manager for FLEXlm product software before version 11.19.5.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

DLL preloading

Insecure inherited permissions in some Flexlm License Daemons for Intel(R) FPGA software before version v11.19.5.0 may

CVE-2024-23908 7.8 - High - August 14, 2024

Insecure inherited permissions in some Flexlm License Daemons for Intel(R) FPGA software before version v11.19.5.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

Incorrect Permission Assignment for Critical Resource

Out-of-bounds write in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters before version 28.3 may

CVE-2024-23497 8.8 - High - August 14, 2024

Out-of-bounds write in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters before version 28.3 may allow an authenticated user to potentially enable escalation of privilege via local access.

Memory Corruption

Uncontrolled search path for some Intel(R) VROC software before version 8.6.0.1191 may

CVE-2024-23489 7.3 - High - August 14, 2024

Uncontrolled search path for some Intel(R) VROC software before version 8.6.0.1191 may allow an authenticated user to potentially enable escalation of privilege via local access.

DLL preloading

Insecure inherited permissions in some Intel(R) XTU software before version 7.14.0.15 may

CVE-2024-21835 7.8 - High - May 16, 2024

Insecure inherited permissions in some Intel(R) XTU software before version 7.14.0.15 may allow an authenticated user to potentially enable escalation of privilege via local access.

Incorrect Permission Assignment for Critical Resource

p2putil.c in iNet wireless daemon (IWD) through 2.15

CVE-2024-28084 7.5 - High - March 03, 2024

p2putil.c in iNet wireless daemon (IWD) through 2.15 allows attackers to cause a denial of service (daemon crash) or possibly have unspecified other impact because of initialization issues in situations where parsing of advertised service information fails.

Improper Initialization

The Access Point functionality in eapol_auth_key_handle in eapol.c in iNet wireless daemon (IWD) before 2.14

CVE-2023-52161 7.5 - High - February 22, 2024

The Access Point functionality in eapol_auth_key_handle in eapol.c in iNet wireless daemon (IWD) before 2.14 allows attackers to gain unauthorized access to a protected Wi-Fi network. An attacker can complete the EAPOL handshake by skipping Msg2/4 and instead sending Msg4/4 with an all-zero key.

authentification

Uncontrolled search path for some Intel(R) MPI Library Software before version 2021.11 may

CVE-2023-41091 7.8 - High - February 14, 2024

Uncontrolled search path for some Intel(R) MPI Library Software before version 2021.11 may allow an authenticated user to potentially enable escalation of privilege via local access.

DLL preloading

Improper access control in some Intel(R) SUR software before version 2.4.10587 may

CVE-2023-39941 6.5 - Medium - February 14, 2024

Improper access control in some Intel(R) SUR software before version 2.4.10587 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

Uncontrolled search path in some Intel(R) CIP software before version 2.4.10577 may

CVE-2023-35769 7.8 - High - February 14, 2024

Uncontrolled search path in some Intel(R) CIP software before version 2.4.10577 may allow an authenticated user to potentially enable escalation of privilege via local access.

DLL preloading

Uncontrolled search path in some Intel(R) SDK for OpenCL(TM) Applications software may

CVE-2023-36493 7.8 - High - February 14, 2024

Uncontrolled search path in some Intel(R) SDK for OpenCL(TM) Applications software may allow an authenticated user to potentially enable escalation of privilege via local access.

DLL preloading

Improper initialization in some Intel(R) MAS software before version 2.3 may

CVE-2023-36490 5.5 - Medium - February 14, 2024

Improper initialization in some Intel(R) MAS software before version 2.3 may allow an authenticated user to potentially enable denial of service via local access.

Improper authorization in some Intel(R) PM software may

CVE-2023-38135 6.7 - Medium - February 14, 2024

Improper authorization in some Intel(R) PM software may allow a privileged user to potentially enable escalation of privilege via local access.

Improper access control in some Intel(R) XTU software before version 7.12.0.29 may

CVE-2023-38561 7.8 - High - February 14, 2024

Improper access control in some Intel(R) XTU software before version 7.12.0.29 may allow an authenticated user to potentially enable escalation of privilege via local access.

Uncontrolled search path element in some Intel(R) SSU software before version 3.0.0.2 may

CVE-2023-40156 7.8 - High - February 14, 2024

Uncontrolled search path element in some Intel(R) SSU software before version 3.0.0.2 may allow an authenticated user to potentially enable escalation of privilege via local access.

DLL preloading

Uncontrolled search path in some Intel(R) ISPC software before version 1.21.0 may

CVE-2023-38566 7.8 - High - February 14, 2024

Uncontrolled search path in some Intel(R) ISPC software before version 1.21.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

DLL preloading

Improper access control element in some Intel(R) Ethernet tools and driver install software, before versions 28.2, may

CVE-2023-39432 7.8 - High - February 14, 2024

Improper access control element in some Intel(R) Ethernet tools and driver install software, before versions 28.2, may allow an authenticated user to potentially enable escalation of privilege via local access.

Uncontrolled search path in the Intel(R) SUR for Gameplay Software before version 2.0.1901 may

CVE-2023-39932 6.7 - Medium - February 14, 2024

Uncontrolled search path in the Intel(R) SUR for Gameplay Software before version 2.0.1901 may allow a privillaged user to potentially enable escalation of privilege via local access.

DLL preloading

Improper access control in some Intel(R) DSA software before version 23.4.33 may

CVE-2023-39425 7.8 - High - February 14, 2024

Improper access control in some Intel(R) DSA software before version 23.4.33 may allow an authenticated user to potentially enable escalation of privilege via local access.

Race condition in some Intel(R) MAS software before version 2.3 may

CVE-2023-41090 6.4 - Medium - February 14, 2024

Race condition in some Intel(R) MAS software before version 2.3 may allow a privileged user to potentially enable escalation of privilege via local access.

Race Condition

Improper access control in some Intel Unite(R) Client software before version 4.2.35041 may

CVE-2023-40161 7.8 - High - February 14, 2024

Improper access control in some Intel Unite(R) Client software before version 4.2.35041 may allow an authenticated user to potentially enable escalation of privilege via local access.

Incorrect default permissions in the Intel(R) SUR for Gameplay Software before version 2.0.1901 may

CVE-2023-40154 7.8 - High - February 14, 2024

Incorrect default permissions in the Intel(R) SUR for Gameplay Software before version 2.0.1901 may allow privillaged user to potentially enable escalation of privilege via local access.

Improper input validation in some Intel(R) SGX DCAP software for Windows before version 1.19.100.3 may

CVE-2023-42776 5.5 - Medium - February 14, 2024

Improper input validation in some Intel(R) SGX DCAP software for Windows before version 1.19.100.3 may allow an authenticateed user to potentially enable information disclosure via local access.

Incorrect default permissions in some ACAT software maintained by Intel(R) before version 2.0.0 may

CVE-2023-41231 7.8 - High - February 14, 2024

Incorrect default permissions in some ACAT software maintained by Intel(R) before version 2.0.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

Incorrect Default Permissions

Out-of-bounds read in some Intel(R) QAT software drivers for Windows before version QAT1.7-W-1.11.0 may

CVE-2023-41252 6.5 - Medium - February 14, 2024

Out-of-bounds read in some Intel(R) QAT software drivers for Windows before version QAT1.7-W-1.11.0 may allow an authenticated user to potentially enable denial of service via local access.

Out-of-bounds Read

Improper input validation in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may

CVE-2023-24463 4.3 - Medium - February 14, 2024

Improper input validation in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may allow an unauthenticated user to potentially enable information disclosure via adjacent access.

Improper access control in some Intel(R) Chipset Driver Software before version 10.1.19444.8378 may

CVE-2023-25174 7.8 - High - February 14, 2024

Improper access control in some Intel(R) Chipset Driver Software before version 10.1.19444.8378 may allow an authenticated user to potentially enable escalation of privilege via local access.

Incorrect default permissions in some Intel(R) Chipset Driver Software before version 10.1.19444.8378 may

CVE-2023-28739 7.8 - High - February 14, 2024

Incorrect default permissions in some Intel(R) Chipset Driver Software before version 10.1.19444.8378 may allow an authenticated user to potentially enable escalation of privilege via local access.

Improper access control in the Intel(R) Thunderbolt(TM) DCH drivers for Windows may

CVE-2023-22293 8.2 - High - February 14, 2024

Improper access control in the Intel(R) Thunderbolt(TM) DCH drivers for Windows may allow an authenticated user to potentially enable escalation of privilege via local access.

Uncontrolled search path in some Intel(R) Binary Configuration Tool software before version 3.4.4 may

CVE-2023-24591 7.8 - High - February 14, 2024

Uncontrolled search path in some Intel(R) Binary Configuration Tool software before version 3.4.4 may allow an authenticated user to potentially enable escalation of privilege via local access.

DLL preloading

Improper access control in some Intel(R) DSA software before version 23.4.33 may

CVE-2023-25073 5.5 - Medium - February 14, 2024

Improper access control in some Intel(R) DSA software before version 23.4.33 may allow an authenticated user to potentially enable denial of service via local access.

Protection mechanism failure in some Intel(R) OFU software before version 14.1.31 may

CVE-2023-25945 7.8 - High - February 14, 2024

Protection mechanism failure in some Intel(R) OFU software before version 14.1.31 may allow an authenticated user to potentially enable escalation of privilege via local access.

Improper input validation for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may

CVE-2023-25951 6.7 - Medium - February 14, 2024

Improper input validation for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may allow a privileged user to potentially enable escalation of privilege via local access.

Uncaught exception for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may

CVE-2023-26586 6.5 - Medium - February 14, 2024

Uncaught exception for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

Improper input validation for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may

CVE-2023-28374 6.5 - Medium - February 14, 2024

Improper input validation for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

Uncontrolled search path in some Intel(R) XTU software before version 7.12.0.29 may

CVE-2023-28407 7.8 - High - February 14, 2024

Uncontrolled search path in some Intel(R) XTU software before version 7.12.0.29 may allow an authenticated user to potentially enable escalation of privilege via local access.

DLL preloading

Improper access control in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.2 may

CVE-2023-28715 5.5 - Medium - February 14, 2024

Improper access control in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.2 may allow an authenticated user to potentially enable denial of service via local access.

Improper initialization for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may

CVE-2023-28720 6.5 - Medium - February 14, 2024

Improper initialization for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may allow an unauthenticated user to potentially enable denial of service via adjacent access..

Improper Initialization

Uncontrolled search path in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.2 may

CVE-2023-32618 7.8 - High - February 14, 2024

Uncontrolled search path in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.2 may allow an authenticated user to potentially enable escalation of privilege via local access.

DLL preloading

Insufficient adherence to expected conventions for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may

CVE-2023-32642 6.5 - Medium - February 14, 2024

Insufficient adherence to expected conventions for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

Protection mechanism failure for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may

CVE-2023-32644 6.5 - Medium - February 14, 2024

Protection mechanism failure for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

Improper validation of specified type of input for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may

CVE-2023-32651 6.5 - Medium - February 14, 2024

Improper validation of specified type of input for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

Improper access control for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may

CVE-2023-33875 5.5 - Medium - February 14, 2024

Improper access control for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may allow an unauthenticated user to potentially enable denial of service via local access..

Buffer underflow in some Intel(R) PCM software before version 202307 may

CVE-2023-34351 7.5 - High - February 14, 2024

Buffer underflow in some Intel(R) PCM software before version 202307 may allow an unauthenticated user to potentially enable denial of service via network access.

Memory Corruption

Improper input validation for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may

CVE-2023-34983 6.5 - Medium - February 14, 2024

Improper input validation for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may allow an unauthenticated user to potentially enable denial of service via adjacent access.

Uncontrolled search path in some Intel(R) Battery Life Diagnostic Tool software before version 2.3.1 may

CVE-2023-35060 7.8 - High - February 14, 2024

Uncontrolled search path in some Intel(R) Battery Life Diagnostic Tool software before version 2.3.1 may allow an authenticated user to potentially enable escalation of privilege via local access.

DLL preloading

Improper access control in some Intel(R) DSA software before version 23.4.33 may

CVE-2023-35062 6.7 - Medium - February 14, 2024

Improper access control in some Intel(R) DSA software before version 23.4.33 may allow a privileged user to potentially enable escalation of privilege via local access.

Deserialization of untrusted data in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may

CVE-2023-26592 3.8 - Low - February 14, 2024

Deserialization of untrusted data in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable a denial of service via local access.

Marshaling, Unmarshaling

Uncontrolled search path element in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may

CVE-2023-25779 6.7 - Medium - February 14, 2024

Uncontrolled search path element in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable escalation of privilege via local access.

DLL preloading

Improper access control in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may

CVE-2023-26585 5 - Medium - February 14, 2024

Improper access control in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable denial of service via local access.

Unchecked return value in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may

CVE-2023-26591 2 - Low - February 14, 2024

Unchecked return value in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may allow an unauthenticated user to potentially enable denial of service via physical access.

Unchecked Return Value

Improper access control in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may

CVE-2023-25777 7.9 - High - February 14, 2024

Improper access control in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable escalation of privilege via local access.

Improper access control in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may

CVE-2023-26596 2.5 - Low - February 14, 2024

Improper access control in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable denial of service via local access.

Built by Foundeo Inc., with data from the National Vulnerability Database (NVD). Privacy Policy. Use of this site is governed by the Legal Terms
Disclaimer
CONTENT ON THIS WEBSITE IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. Always check with your vendor for the most up to date, and accurate information.