CVSS: 7.2EPSS: 0%CPEs: 228EXPL: 0CVE-2022-37343
https://notcve.org/view.php?id=CVE-2022-37343
11 Aug 2023 — Improper access control in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access. Un control de acceso inadecuado en el firmware de la BIOS para algunos procesadores Intel(R) puede permitir a un usuario con privilegios habilitar potencialmente una escalada de privilegios mediante acceso local. • http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00813.html • CWE-284: Improper Access Control •
CVSS: 7.5EPSS: 0%CPEs: 132EXPL: 0CVE-2022-21216 – kernel: Intel firmware update for insufficient granularity of access control in out-of-band management in some Intel Atom and Intel Xeon Scalable Processors
https://notcve.org/view.php?id=CVE-2022-21216
16 Feb 2023 — Insufficient granularity of access control in out-of-band management in some Intel(R) Atom and Intel Xeon Scalable Processors may allow a privileged user to potentially enable escalation of privilege via adjacent network access. A flaw was found in the Linux kernel. A potential security vulnerability in some Intel(R) Atom(R) and Intel(R) Xeon(R) Scalable Processors may allow privilege escalation. This flaw may allow a privileged user to enable privilege escalation via adjacent network access. Erik C. • http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00700.html •
CVSS: 6.0EPSS: 0%CPEs: 668EXPL: 0CVE-2022-21233 – hw: cpu: Intel: Stale Data Read from legacy xAPIC vulnerability
https://notcve.org/view.php?id=CVE-2022-21233
18 Aug 2022 — Improper isolation of shared resources in some Intel(R) Processors may allow a privileged user to potentially enable information disclosure via local access. Un aislamiento inapropiado de los recursos compartidos en algunos procesadores Intel(R) puede permitir que un usuario privilegiado permita potencialmente la divulgación de información a través del acceso local. A flaw was found in hw. The APIC can operate in xAPIC mode (also known as a legacy mode), in which APIC configuration registers are exposed thr... • https://lists.debian.org/debian-lts-announce/2023/04/msg00000.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •