CVSS: 7.2EPSS: 0%CPEs: 228EXPL: 0CVE-2022-37343
https://notcve.org/view.php?id=CVE-2022-37343
11 Aug 2023 — Improper access control in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access. Un control de acceso inadecuado en el firmware de la BIOS para algunos procesadores Intel(R) puede permitir a un usuario con privilegios habilitar potencialmente una escalada de privilegios mediante acceso local. • http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00813.html • CWE-284: Improper Access Control •
CVSS: 6.0EPSS: 0%CPEs: 668EXPL: 0CVE-2022-21233 – hw: cpu: Intel: Stale Data Read from legacy xAPIC vulnerability
https://notcve.org/view.php?id=CVE-2022-21233
18 Aug 2022 — Improper isolation of shared resources in some Intel(R) Processors may allow a privileged user to potentially enable information disclosure via local access. Un aislamiento inapropiado de los recursos compartidos en algunos procesadores Intel(R) puede permitir que un usuario privilegiado permita potencialmente la divulgación de información a través del acceso local. A flaw was found in hw. The APIC can operate in xAPIC mode (also known as a legacy mode), in which APIC configuration registers are exposed thr... • https://lists.debian.org/debian-lts-announce/2023/04/msg00000.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •