Intel
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in any Intel product.
Products by Intel Sorted by Most Security Vulnerabilities since 2018
Known Exploited Intel Vulnerabilities
The following Intel vulnerabilities have been marked by CISA as Known to be Exploited by threat actors.
Title | Description | Added |
---|---|---|
Intel Ethernet Diagnostics Driver for Windows Denial-of-Service Vulnerability |
Intel ethernet diagnostics driver for Windows IQVW32.sys and IQVW64.sys contain an unspecified vulnerability that allows for a denial-of-service. CVE-2015-2291 Exploit Probability: 0.3% |
February 10, 2023 |
Intel Active Management Technology (AMT), Small Business Technology (SBT), and Standard Manageabilit |
Intel products contain a vulnerability which can allow attackers to perform privilege escalation. CVE-2017-5689 Exploit Probability: 97.4% |
January 28, 2022 |
The vulnerability CVE-2017-5689: Intel Active Management Technology (AMT), Small Business Technology (SBT), and Standard Manageabilit is in the top 1% of the currently known exploitable vulnerabilities.
By the Year
In 2025 there have been 0 vulnerabilities in Intel. Last year, in 2024 Intel had 122 security vulnerabilities published. Right now, Intel is on track to have less security vulnerabilities in 2025 than it did last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2025 | 0 | 0.00 |
2024 | 122 | 6.77 |
2023 | 182 | 7.18 |
2022 | 101 | 6.97 |
2021 | 52 | 7.13 |
2020 | 114 | 6.92 |
2019 | 150 | 6.54 |
2018 | 72 | 6.65 |
It may take a day or so for new Intel vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Intel Security Vulnerabilities
Intel Server Board M70KLP UEFI Firmware Privilege Escalation Vulnerability
CVE-2024-39609
6.7 - Medium
- November 13, 2024
Improper Access Control in UEFI firmware for some Intel(R) Server Board M70KLP may allow a privileged user to potentially enable escalation of privilege via local access.
Authorization
Intel Server Board M10JNP2SB Family UEFI Firmware Privilege Escalation Vulnerability
CVE-2024-41167
6.7 - Medium
- November 13, 2024
Improper input validation in UEFI firmware in some Intel(R) Server Board M10JNP2SB Family may allow a privileged user to potentially enable escalation of privilege via local access.
Intel(R) Xeon(R) Processors UEFI Firmware Control Flow Management Vulnerability
CVE-2024-25565
- November 13, 2024
Insufficient control flow management in UEFI firmware for some Intel(R) Xeon(R) Processors may allow an authenticated user to enable denial of service via local access.
Insufficient Control Flow Management
Intel(R) oneAPI Math Kernel Library: Uncontrolled Search Path Privilege Escalation Vulnerability
CVE-2024-28950
- November 13, 2024
Uncontrolled search path for some Intel(R) oneAPI Math Kernel Library software for Windows before version 2024.2 may allow an authenticated user to potentially enable escalation of privilege via local access.
DLL preloading
Intel(R) Distribution for Python: Incorrect Default Permissions Leading to Privilege Escalation
CVE-2024-29083
- November 13, 2024
Incorrect default permissions in some Intel(R) Distribution for Python software before version 2024.2 may allow an authenticated user to potentially enable escalation of privilege via local access.
Incorrect Default Permissions
Intel(R) Distribution of OpenVINO(TM) Model Server: Improper Input Validation Vulnerability
CVE-2024-32048
- November 13, 2024
Improper input validation in the Intel(R) Distribution of OpenVINO(TM) Model Server software before version 2024.0 may allow an unauthenticated user to potentially enable denial of service via adjacent access.
Improper Input Validation
Intel Graphics Drivers: Untrusted Pointer Dereference Privilege Escalation Vulnerability
CVE-2024-34023
- November 13, 2024
Untrusted pointer dereference in some Intel(R) Graphics Drivers may allow an authenticated user to potentially enable escalation of privilege via local access.
Untrusted Pointer Dereference
Intel Graphics Drivers: Improper Buffer Restrictions Leading to Denial of Service
CVE-2024-34170
- November 13, 2024
Improper buffer restrictions in some Intel(R) Graphics Drivers may allow an authenticated user to potentially enable denial of service via local access.
DEPRECATED: Improper Sanitization of Custom Special Characters
Intel SGX SDK: Out-of-Bounds Write Privilege Escalation Vulnerability
CVE-2024-34776
- November 13, 2024
Out-of-bounds write in some Intel(R) SGX SDK software may allow an authenticated user to potentially enable escalation of privilege via local access.
Memory Corruption
Intel VTune Profiler Uncontrolled Search Path Element Privilege Escalation Vulnerability
CVE-2024-36245
- November 13, 2024
Uncontrolled search path element in some Intel(R) VTune(TM) Profiler software before version 2024.2.0 may allow an authenticated user to potentially enable escalation of privilege via local access.
DLL preloading
Intel(R) VTune(TM) Profiler: Improper Input Validation Vulnerability
CVE-2024-37027
- November 13, 2024
Improper Input validation in some Intel(R) VTune(TM) Profiler software before version 2024.2.0 may allow an authenticated user to potentially enable denial of service via local access.
Improper Input Validation
Intel(R) Graphics Driver: Uncontrolled Search Path Vulnerability
CVE-2024-38387
- November 13, 2024
Uncontrolled search path in the Intel(R) Graphics Driver installers for versions 15.40 and 15.45 may allow an authenticated user to potentially enable escalation of privilege via local access.
DLL preloading
Intel(R) Xeon(R) Processor Family (E-Core) SPP Protection Mechanism Failure Privilege Escalation Vul
CVE-2024-38660
- November 13, 2024
Protection mechanism failure in the SPP for some Intel(R) Xeon(R) processor family (E-Core) may allow an authenticated user to potentially enable escalation of privilege via local access.
Protection Mechanism Failure
Intel Graphics Drivers: Out-of-Bounds Write Privilege Escalation Vulnerability
CVE-2024-38665
- November 13, 2024
Out-of-bounds write in some Intel(R) Graphics Drivers may allow an authenticated user to potentially enable escalation of privilege via local access.
Memory Corruption
Intel(R) Quartus(R) Prime Standard Edition: Uncontrolled Search Path Privilege Escalation Vulnerabil
CVE-2024-38668
- November 13, 2024
Uncontrolled search path for some Intel(R) Quartus(R) Prime Standard Edition software for Windows before version 23.1.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
DLL preloading
Improper access control in Intel(R) RAID Web Console software all versions may
CVE-2024-36261
5.7 - Medium
- September 16, 2024
Improper access control in Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable denial of service via adjacent access.
Authorization
Improper access control in Intel(R) RAID Web Console all versions may
CVE-2024-36247
5.7 - Medium
- September 16, 2024
Improper access control in Intel(R) RAID Web Console all versions may allow an authenticated user to potentially enable denial of service via adjacent access.
Authorization
Improper input validation in some Intel(R) RAID Web Console software all versions may
CVE-2024-34545
5.7 - Medium
- September 16, 2024
Improper input validation in some Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable information disclosure via adjacent access.
Improper access control in Intel(R) RAID Web Console software for all versions may
CVE-2024-34543
7.8 - High
- September 16, 2024
Improper access control in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable escalation of privilege via local access.
Authorization
Uncontrolled search path element in Intel(R) RAID Web Console software for all versions may
CVE-2024-34153
7.8 - High
- September 16, 2024
Uncontrolled search path element in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable escalation of privilege via local access.
DLL preloading
Uncaught exception in Intel(R) RAID Web Console software all versions may
CVE-2024-33848
5.5 - Medium
- September 16, 2024
Uncaught exception in Intel(R) RAID Web Console software all versions may allow an authenticated user to potentially enable denial of service via local access.
Uncaught Exception
Improper access control in Intel(R) RAID Web Console software for all versions may
CVE-2024-32940
5.7 - Medium
- September 16, 2024
Improper access control in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable denial of service via adjacent access.
Authorization
NULL pointer dereference in Intel(R) RAID Web Console software for all versions may
CVE-2024-32666
5.5 - Medium
- September 16, 2024
NULL pointer dereference in Intel(R) RAID Web Console software for all versions may allow an authenticated user to potentially enable denial of service via local access.
NULL Pointer Dereference
Improper access control in Intel(R) RAID Web Console all versions may
CVE-2024-28170
5.5 - Medium
- September 16, 2024
Improper access control in Intel(R) RAID Web Console all versions may allow an authenticated user to potentially enable information disclosure via local access.
Authorization
Improper buffer restrictions in some Intel(R) Distribution for GDB software before version 2024.0.1 may
CVE-2024-25562
6.6 - Medium
- August 14, 2024
Improper buffer restrictions in some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to potentially enable denial of service via local access.
Improper input validation for some Intel(R) Distribution for GDB software before version 2024.0.1 may
CVE-2024-24973
3.3 - Low
- August 14, 2024
Improper input validation for some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to potentially enable denial of service via local access.
Incorrect default permissions in some Intel(R) Distribution for GDB software before version 2024.0.1 may
CVE-2024-23495
7.8 - High
- August 14, 2024
Incorrect default permissions in some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
Incorrect Default Permissions
Uncontrolled search path in some Intel(R) Distribution for GDB software before version 2024.0.1 may
CVE-2024-23491
7.3 - High
- August 14, 2024
Uncontrolled search path in some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
DLL preloading
Uncontrolled search path for some Intel(R) MPI Library software before version 2021.12 may
CVE-2024-28876
7.3 - High
- August 14, 2024
Uncontrolled search path for some Intel(R) MPI Library software before version 2021.12 may allow an authenticated user to potentially enable escalation of privilege via local access.
DLL preloading
Uncontrolled search path for some Intel(R) Trace Analyzer and Collector software before version 2022.1 may
CVE-2024-28172
7.3 - High
- August 14, 2024
Uncontrolled search path for some Intel(R) Trace Analyzer and Collector software before version 2022.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
DLL preloading
Improper access control in some Intel(R) Arc(TM) & Iris(R) Xe Graphics software before version 31.0.101.4824 may
CVE-2024-28050
5.5 - Medium
- August 14, 2024
Improper access control in some Intel(R) Arc(TM) & Iris(R) Xe Graphics software before version 31.0.101.4824 may allow an authenticated user to potentially enable denial of service via local access.
Uncontrolled search path in some Intel(R) GPA software before version 2024.1 may
CVE-2024-28046
7.8 - High
- August 14, 2024
Uncontrolled search path in some Intel(R) GPA software before version 2024.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
DLL preloading
Incorrect default permissions in software installer for Intel(R) MAS (GUI) may
CVE-2024-27461
5.5 - Medium
- August 14, 2024
Incorrect default permissions in software installer for Intel(R) MAS (GUI) may allow an authenticated user to potentially enable denial of service via local access.
Incorrect Default Permissions
Uncontrolled search path for some Intel(R) Simics Package Manager software before version 1.8.3 may
CVE-2024-26027
7.8 - High
- August 14, 2024
Uncontrolled search path for some Intel(R) Simics Package Manager software before version 1.8.3 may allow an authenticated user to potentially enable escalation of privilege via local access.
DLL preloading
Incorrect default permissions for some Intel(R) Advisor software before version 2024.1 may
CVE-2024-26025
7.8 - High
- August 14, 2024
Incorrect default permissions for some Intel(R) Advisor software before version 2024.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
Incorrect Default Permissions
Improper access control in some Intel(R) UEFI Integrator Tools on Aptio V for Intel(R) NUC may
CVE-2024-26022
7.8 - High
- August 14, 2024
Improper access control in some Intel(R) UEFI Integrator Tools on Aptio V for Intel(R) NUC may allow an authenticated user to potentially enable escalation of privilege via local access.
improper access control in firmware for some Intel(R) FPGA products before version 24.1 may
CVE-2024-25576
7.9 - High
- August 14, 2024
improper access control in firmware for some Intel(R) FPGA products before version 24.1 may allow a privileged user to enable escalation of privilege via local access.
Improper access control in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters before version 28.3 may
CVE-2024-24986
8.8 - High
- August 14, 2024
Improper access control in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters before version 28.3 may allow an authenticated user to potentially enable escalation of privilege via local access.
Wrap-around error in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters before version 28.3 may
CVE-2024-23981
8.8 - High
- August 14, 2024
Wrap-around error in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters before version 28.3 may allow an authenticated user to potentially enable escalation of privilege via local access.
Incorrect Calculation
Uncontrolled search path in some Intel(R) FPGA SDK for OpenCL(TM) software technology may
CVE-2024-23909
7.8 - High
- August 14, 2024
Uncontrolled search path in some Intel(R) FPGA SDK for OpenCL(TM) software technology may allow an authenticated user to potentially enable escalation of privilege via local access.
DLL preloading
Uncontrolled search path in some Intel(R) High Level Synthesis Compiler software before version 23.4 may
CVE-2024-23907
7.8 - High
- August 14, 2024
Uncontrolled search path in some Intel(R) High Level Synthesis Compiler software before version 23.4 may allow an authenticated user to potentially enable escalation of privilege via local access.
DLL preloading
Protection mechanism failure in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters E810 Series before version 28.3 may
CVE-2024-23499
7.5 - High
- August 14, 2024
Protection mechanism failure in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters E810 Series before version 28.3 may allow an unauthenticated user to potentially enable denial of service via network access.
Incomplete filtering of special elements in Intel(R) TDX module software before version TDX_1.5.01.00.592 may
CVE-2024-39283
7.8 - High
- August 14, 2024
Incomplete filtering of special elements in Intel(R) TDX module software before version TDX_1.5.01.00.592 may allow an authenticated user to potentially enable escalation of privilege via local access.
Uncontrolled search path in some Intel(R) VTune(TM) Profiler software before versions 2024.1 may
CVE-2024-29015
7.8 - High
- August 14, 2024
Uncontrolled search path in some Intel(R) VTune(TM) Profiler software before versions 2024.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
DLL preloading
Improper input validation in kernel mode driver for some Intel(R) Server Board S2600ST Family firmware before version 02.01.0017 may
CVE-2024-28947
8.2 - High
- August 14, 2024
Improper input validation in kernel mode driver for some Intel(R) Server Board S2600ST Family firmware before version 02.01.0017 may allow a privileged user to potentially enable escalation of privilege via local access.
Uncontrolled search path in some Intel(R) IPP software before version 2021.11 may
CVE-2024-28887
7.8 - High
- August 14, 2024
Uncontrolled search path in some Intel(R) IPP software before version 2021.11 may allow an authenticated user to potentially enable escalation of privilege via local access.
DLL preloading
Insecure inherited permissions in some Intel(R) HID Event Filter software installers before version 2.2.2.1 may
CVE-2024-25561
7.8 - High
- August 14, 2024
Insecure inherited permissions in some Intel(R) HID Event Filter software installers before version 2.2.2.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
Incorrect Permission Assignment for Critical Resource
Uncontrolled search path for some Intel(R) License Manager for FLEXlm product software before version 11.19.5.0 may
CVE-2024-24977
7.8 - High
- August 14, 2024
Uncontrolled search path for some Intel(R) License Manager for FLEXlm product software before version 11.19.5.0 may allow an authenticated user to potentially enable escalation of privilege via local access.
DLL preloading
Insecure inherited permissions in some Flexlm License Daemons for Intel(R) FPGA software before version v11.19.5.0 may
CVE-2024-23908
7.8 - High
- August 14, 2024
Insecure inherited permissions in some Flexlm License Daemons for Intel(R) FPGA software before version v11.19.5.0 may allow an authenticated user to potentially enable escalation of privilege via local access.
Incorrect Permission Assignment for Critical Resource
Out-of-bounds write in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters before version 28.3 may
CVE-2024-23497
8.8 - High
- August 14, 2024
Out-of-bounds write in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters before version 28.3 may allow an authenticated user to potentially enable escalation of privilege via local access.
Memory Corruption
Uncontrolled search path for some Intel(R) VROC software before version 8.6.0.1191 may
CVE-2024-23489
7.3 - High
- August 14, 2024
Uncontrolled search path for some Intel(R) VROC software before version 8.6.0.1191 may allow an authenticated user to potentially enable escalation of privilege via local access.
DLL preloading
Insecure inherited permissions in some Intel(R) XTU software before version 7.14.0.15 may
CVE-2024-21835
7.8 - High
- May 16, 2024
Insecure inherited permissions in some Intel(R) XTU software before version 7.14.0.15 may allow an authenticated user to potentially enable escalation of privilege via local access.
Incorrect Permission Assignment for Critical Resource
p2putil.c in iNet wireless daemon (IWD) through 2.15
CVE-2024-28084
7.5 - High
- March 03, 2024
p2putil.c in iNet wireless daemon (IWD) through 2.15 allows attackers to cause a denial of service (daemon crash) or possibly have unspecified other impact because of initialization issues in situations where parsing of advertised service information fails.
Improper Initialization
The Access Point functionality in eapol_auth_key_handle in eapol.c in iNet wireless daemon (IWD) before 2.14
CVE-2023-52161
7.5 - High
- February 22, 2024
The Access Point functionality in eapol_auth_key_handle in eapol.c in iNet wireless daemon (IWD) before 2.14 allows attackers to gain unauthorized access to a protected Wi-Fi network. An attacker can complete the EAPOL handshake by skipping Msg2/4 and instead sending Msg4/4 with an all-zero key.
authentification
Uncontrolled search path for some Intel(R) MPI Library Software before version 2021.11 may
CVE-2023-41091
7.8 - High
- February 14, 2024
Uncontrolled search path for some Intel(R) MPI Library Software before version 2021.11 may allow an authenticated user to potentially enable escalation of privilege via local access.
DLL preloading
Improper access control in some Intel(R) SUR software before version 2.4.10587 may
CVE-2023-39941
6.5 - Medium
- February 14, 2024
Improper access control in some Intel(R) SUR software before version 2.4.10587 may allow an unauthenticated user to potentially enable denial of service via adjacent access.
Uncontrolled search path in some Intel(R) CIP software before version 2.4.10577 may
CVE-2023-35769
7.8 - High
- February 14, 2024
Uncontrolled search path in some Intel(R) CIP software before version 2.4.10577 may allow an authenticated user to potentially enable escalation of privilege via local access.
DLL preloading
Uncontrolled search path in some Intel(R) SDK for OpenCL(TM) Applications software may
CVE-2023-36493
7.8 - High
- February 14, 2024
Uncontrolled search path in some Intel(R) SDK for OpenCL(TM) Applications software may allow an authenticated user to potentially enable escalation of privilege via local access.
DLL preloading
Improper initialization in some Intel(R) MAS software before version 2.3 may
CVE-2023-36490
5.5 - Medium
- February 14, 2024
Improper initialization in some Intel(R) MAS software before version 2.3 may allow an authenticated user to potentially enable denial of service via local access.
Improper authorization in some Intel(R) PM software may
CVE-2023-38135
6.7 - Medium
- February 14, 2024
Improper authorization in some Intel(R) PM software may allow a privileged user to potentially enable escalation of privilege via local access.
Improper access control in some Intel(R) XTU software before version 7.12.0.29 may
CVE-2023-38561
7.8 - High
- February 14, 2024
Improper access control in some Intel(R) XTU software before version 7.12.0.29 may allow an authenticated user to potentially enable escalation of privilege via local access.
Uncontrolled search path element in some Intel(R) SSU software before version 3.0.0.2 may
CVE-2023-40156
7.8 - High
- February 14, 2024
Uncontrolled search path element in some Intel(R) SSU software before version 3.0.0.2 may allow an authenticated user to potentially enable escalation of privilege via local access.
DLL preloading
Uncontrolled search path in some Intel(R) ISPC software before version 1.21.0 may
CVE-2023-38566
7.8 - High
- February 14, 2024
Uncontrolled search path in some Intel(R) ISPC software before version 1.21.0 may allow an authenticated user to potentially enable escalation of privilege via local access.
DLL preloading
Improper access control element in some Intel(R) Ethernet tools and driver install software, before versions 28.2, may
CVE-2023-39432
7.8 - High
- February 14, 2024
Improper access control element in some Intel(R) Ethernet tools and driver install software, before versions 28.2, may allow an authenticated user to potentially enable escalation of privilege via local access.
Uncontrolled search path in the Intel(R) SUR for Gameplay Software before version 2.0.1901 may
CVE-2023-39932
6.7 - Medium
- February 14, 2024
Uncontrolled search path in the Intel(R) SUR for Gameplay Software before version 2.0.1901 may allow a privillaged user to potentially enable escalation of privilege via local access.
DLL preloading
Improper access control in some Intel(R) DSA software before version 23.4.33 may
CVE-2023-39425
7.8 - High
- February 14, 2024
Improper access control in some Intel(R) DSA software before version 23.4.33 may allow an authenticated user to potentially enable escalation of privilege via local access.
Race condition in some Intel(R) MAS software before version 2.3 may
CVE-2023-41090
6.4 - Medium
- February 14, 2024
Race condition in some Intel(R) MAS software before version 2.3 may allow a privileged user to potentially enable escalation of privilege via local access.
Race Condition
Improper access control in some Intel Unite(R) Client software before version 4.2.35041 may
CVE-2023-40161
7.8 - High
- February 14, 2024
Improper access control in some Intel Unite(R) Client software before version 4.2.35041 may allow an authenticated user to potentially enable escalation of privilege via local access.
Incorrect default permissions in the Intel(R) SUR for Gameplay Software before version 2.0.1901 may
CVE-2023-40154
7.8 - High
- February 14, 2024
Incorrect default permissions in the Intel(R) SUR for Gameplay Software before version 2.0.1901 may allow privillaged user to potentially enable escalation of privilege via local access.
Improper input validation in some Intel(R) SGX DCAP software for Windows before version 1.19.100.3 may
CVE-2023-42776
5.5 - Medium
- February 14, 2024
Improper input validation in some Intel(R) SGX DCAP software for Windows before version 1.19.100.3 may allow an authenticateed user to potentially enable information disclosure via local access.
Incorrect default permissions in some ACAT software maintained by Intel(R) before version 2.0.0 may
CVE-2023-41231
7.8 - High
- February 14, 2024
Incorrect default permissions in some ACAT software maintained by Intel(R) before version 2.0.0 may allow an authenticated user to potentially enable escalation of privilege via local access.
Incorrect Default Permissions
Out-of-bounds read in some Intel(R) QAT software drivers for Windows before version QAT1.7-W-1.11.0 may
CVE-2023-41252
6.5 - Medium
- February 14, 2024
Out-of-bounds read in some Intel(R) QAT software drivers for Windows before version QAT1.7-W-1.11.0 may allow an authenticated user to potentially enable denial of service via local access.
Out-of-bounds Read
Improper input validation in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may
CVE-2023-24463
4.3 - Medium
- February 14, 2024
Improper input validation in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may allow an unauthenticated user to potentially enable information disclosure via adjacent access.
Improper access control in some Intel(R) Chipset Driver Software before version 10.1.19444.8378 may
CVE-2023-25174
7.8 - High
- February 14, 2024
Improper access control in some Intel(R) Chipset Driver Software before version 10.1.19444.8378 may allow an authenticated user to potentially enable escalation of privilege via local access.
Incorrect default permissions in some Intel(R) Chipset Driver Software before version 10.1.19444.8378 may
CVE-2023-28739
7.8 - High
- February 14, 2024
Incorrect default permissions in some Intel(R) Chipset Driver Software before version 10.1.19444.8378 may allow an authenticated user to potentially enable escalation of privilege via local access.
Improper access control in the Intel(R) Thunderbolt(TM) DCH drivers for Windows may
CVE-2023-22293
8.2 - High
- February 14, 2024
Improper access control in the Intel(R) Thunderbolt(TM) DCH drivers for Windows may allow an authenticated user to potentially enable escalation of privilege via local access.
Uncontrolled search path in some Intel(R) Binary Configuration Tool software before version 3.4.4 may
CVE-2023-24591
7.8 - High
- February 14, 2024
Uncontrolled search path in some Intel(R) Binary Configuration Tool software before version 3.4.4 may allow an authenticated user to potentially enable escalation of privilege via local access.
DLL preloading
Improper access control in some Intel(R) DSA software before version 23.4.33 may
CVE-2023-25073
5.5 - Medium
- February 14, 2024
Improper access control in some Intel(R) DSA software before version 23.4.33 may allow an authenticated user to potentially enable denial of service via local access.
Protection mechanism failure in some Intel(R) OFU software before version 14.1.31 may
CVE-2023-25945
7.8 - High
- February 14, 2024
Protection mechanism failure in some Intel(R) OFU software before version 14.1.31 may allow an authenticated user to potentially enable escalation of privilege via local access.
Improper input validation for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may
CVE-2023-25951
6.7 - Medium
- February 14, 2024
Improper input validation for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may allow a privileged user to potentially enable escalation of privilege via local access.
Uncaught exception for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may
CVE-2023-26586
6.5 - Medium
- February 14, 2024
Uncaught exception for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may allow an unauthenticated user to potentially enable denial of service via adjacent access.
Improper input validation for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may
CVE-2023-28374
6.5 - Medium
- February 14, 2024
Improper input validation for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may allow an unauthenticated user to potentially enable denial of service via adjacent access.
Uncontrolled search path in some Intel(R) XTU software before version 7.12.0.29 may
CVE-2023-28407
7.8 - High
- February 14, 2024
Uncontrolled search path in some Intel(R) XTU software before version 7.12.0.29 may allow an authenticated user to potentially enable escalation of privilege via local access.
DLL preloading
Improper access control in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.2 may
CVE-2023-28715
5.5 - Medium
- February 14, 2024
Improper access control in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.2 may allow an authenticated user to potentially enable denial of service via local access.
Improper initialization for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may
CVE-2023-28720
6.5 - Medium
- February 14, 2024
Improper initialization for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may allow an unauthenticated user to potentially enable denial of service via adjacent access..
Improper Initialization
Uncontrolled search path in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.2 may
CVE-2023-32618
7.8 - High
- February 14, 2024
Uncontrolled search path in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.2 may allow an authenticated user to potentially enable escalation of privilege via local access.
DLL preloading
Insufficient adherence to expected conventions for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may
CVE-2023-32642
6.5 - Medium
- February 14, 2024
Insufficient adherence to expected conventions for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may allow an unauthenticated user to potentially enable denial of service via adjacent access.
Protection mechanism failure for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may
CVE-2023-32644
6.5 - Medium
- February 14, 2024
Protection mechanism failure for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may allow an unauthenticated user to potentially enable denial of service via adjacent access.
Improper validation of specified type of input for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may
CVE-2023-32651
6.5 - Medium
- February 14, 2024
Improper validation of specified type of input for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may allow an unauthenticated user to potentially enable denial of service via adjacent access.
Improper access control for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may
CVE-2023-33875
5.5 - Medium
- February 14, 2024
Improper access control for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may allow an unauthenticated user to potentially enable denial of service via local access..
Buffer underflow in some Intel(R) PCM software before version 202307 may
CVE-2023-34351
7.5 - High
- February 14, 2024
Buffer underflow in some Intel(R) PCM software before version 202307 may allow an unauthenticated user to potentially enable denial of service via network access.
Memory Corruption
Improper input validation for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may
CVE-2023-34983
6.5 - Medium
- February 14, 2024
Improper input validation for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software before version 22.240 may allow an unauthenticated user to potentially enable denial of service via adjacent access.
Uncontrolled search path in some Intel(R) Battery Life Diagnostic Tool software before version 2.3.1 may
CVE-2023-35060
7.8 - High
- February 14, 2024
Uncontrolled search path in some Intel(R) Battery Life Diagnostic Tool software before version 2.3.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
DLL preloading
Improper access control in some Intel(R) DSA software before version 23.4.33 may
CVE-2023-35062
6.7 - Medium
- February 14, 2024
Improper access control in some Intel(R) DSA software before version 23.4.33 may allow a privileged user to potentially enable escalation of privilege via local access.
Deserialization of untrusted data in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may
CVE-2023-26592
3.8 - Low
- February 14, 2024
Deserialization of untrusted data in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable a denial of service via local access.
Marshaling, Unmarshaling
Uncontrolled search path element in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may
CVE-2023-25779
6.7 - Medium
- February 14, 2024
Uncontrolled search path element in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable escalation of privilege via local access.
DLL preloading
Improper access control in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may
CVE-2023-26585
5 - Medium
- February 14, 2024
Improper access control in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable denial of service via local access.
Unchecked return value in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may
CVE-2023-26591
2 - Low
- February 14, 2024
Unchecked return value in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may allow an unauthenticated user to potentially enable denial of service via physical access.
Unchecked Return Value
Improper access control in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may
CVE-2023-25777
7.9 - High
- February 14, 2024
Improper access control in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable escalation of privilege via local access.
Improper access control in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may
CVE-2023-26596
2.5 - Low
- February 14, 2024
Improper access control in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable denial of service via local access.