Intel Virtual Raid On Cpu

Intel VROC Software: Improper Input Validation Denial of Service Vulnerability
CVE-2024-32485 5.5 - Medium - November 13, 2024

Improper Input Validation in some Intel(R) VROC software before version 8.6.0.2003 may allow an authenticated user to potentially enable denial of service via local access.

Improper Input Validation

Intel VROC Software Privilege Escalation Vulnerability
CVE-2024-29079 7.8 - High - November 13, 2024

Insufficient control flow management in some Intel(R) VROC software before version 8.6.0.3001 may allow an authenticated user to potentially enable escalation of privilege via local access.

Insufficient Control Flow Management

Intel VROC Uncontrolled Search Path (pre-8.6.0.1191): Priv Esc via Local Auth
CVE-2024-23489 7.3 - High - August 14, 2024

Uncontrolled search path for some Intel(R) VROC software before version 8.6.0.1191 may allow an authenticated user to potentially enable escalation of privilege via local access.

DLL preloading

Intel VROC <8.0.8.1001: Uncontrolled Search Path Escalation
CVE-2023-32646 7.3 - High - February 14, 2024

Uncontrolled search path element in some Intel(R) VROC software before version 8.0.8.1001 may allow an authenticated user to potentially enable escalation of privilege via local access.

DLL preloading

Intel VROC <8.0.8.1001 Path Transversal -> Escalation (local)
CVE-2023-35003 7.8 - High - February 14, 2024

Path transversal in some Intel(R) VROC software before version 8.0.8.1001 may allow an authenticated user to potentially enable escalation of privilege via local access.

Directory traversal

Intel VROC <8.0.8.1001: Local PrivEsc via Default Perms
CVE-2023-34315 7.8 - High - February 14, 2024

Incorrect default permissions in some Intel(R) VROC software before version 8.0.8.1001 may allow an authenticated user to potentially enable escalation of privilege via local access.

Incorrect Default Permissions

VROC Software Auth Priv Esc Improper Access Control (prev8.0.8.1001)
CVE-2023-31271 7.8 - High - February 14, 2024

Improper access control in some Intel(R) VROC software before version 8.0.8.1001 may allow an authenticated user to potentially enable escalation of privilege via local access.

Intel VROC <8.0.0.4035 Improper Access Control Local Priv Escalation
CVE-2022-45112 7.8 - High - August 11, 2023

Improper access control in some Intel(R) VROC software before version 8.0.0.4035 may allow an authenticated user to potentially enable escalation of privilege via local access.

Intel VROC <7.7.6.1003 Incorrect Default Permissions Allow Escalation
CVE-2022-30338 7.8 - High - May 10, 2023

Incorrect default permissions in the Intel(R) VROC software before version 7.7.6.1003 may allow an authenticated user to potentially enable escalation of privilege via local access.

Incorrect Default Permissions

Intel VROC 7.7.6.1003 UA: Priv Escalation via local use-after-free
CVE-2022-29919 7.8 - High - May 10, 2023

Use after free in the Intel(R) VROC software before version 7.7.6.1003 may allow an authenticated user to potentially enable escalation of privilege via local access.

Dangling pointer

Intel VROC software <7.7.6.1003 NPE local auth privilege escalation
CVE-2022-29508 7.8 - High - May 10, 2023

Null pointer dereference in the Intel(R) VROC software before version 7.7.6.1003 may allow an authenticated user to potentially enable escalation of privilege via local access.

NULL Pointer Dereference

Intel VROC: Improper Validation Enabling Authenticated Local DOS <7.7.6.1003
CVE-2022-25976 5.5 - Medium - May 10, 2023

Improper input validation in the Intel(R) VROC software before version 7.7.6.1003 may allow an authenticated user to potentially enable denial of service via local access.

Improper Input Validation