CVSS: 6.0EPSS: 0%CPEs: 1EXPL: 0CVE-2022-36794
https://notcve.org/view.php?id=CVE-2022-36794
16 Feb 2023 — Improper condition check in some Intel(R) SPS firmware before version SPS_E3_06.00.03.300.0 may allow a privileged user to potentially enable denial of service via local access. • http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00718.html • CWE-754: Improper Check for Unusual or Exceptional Conditions •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-36348
https://notcve.org/view.php?id=CVE-2022-36348
16 Feb 2023 — Active debug code in some Intel (R) SPS firmware before version SPS_E5_04.04.04.300.0 may allow an authenticated user to potentially enable escalation of privilege via local access. • http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00718.html •
CVSS: 4.4EPSS: 0%CPEs: 29EXPL: 0CVE-2021-0051
https://notcve.org/view.php?id=CVE-2021-0051
09 Jun 2021 — Improper input validation in the Intel(R) SPS versions before SPS_E5_04.04.04.023.0, SPS_E5_04.04.03.228.0 or SPS_SoC-A_05.00.03.098.0 may allow a privileged user to potentially enable denial of service via local access. Una comprobación de entrada inapropiada en lntel(R) SPS versiones anteriores a SPS_E5_04.04.04.023.0, SPS_E5_04.04.03.228.0 o SPS_SoC-A_05.00.03.098.0 puede habilitar a un usuario privilegiado para permitir potencialmente una denegación de servicio por medio de un acceso local • https://security.netapp.com/advisory/ntap-20210716-0001 • CWE-20: Improper Input Validation •
CVSS: 6.7EPSS: 0%CPEs: 4EXPL: 0CVE-2020-24509
https://notcve.org/view.php?id=CVE-2020-24509
09 Jun 2021 — Insufficient control flow management in subsystem in Intel(R) SPS versions before SPS_E3_05.01.04.300.0, SPS_SoC-A_05.00.03.091.0, SPS_E5_04.04.04.023.0, or SPS_E5_04.04.03.263.0 may allow a privileged user to potentially enable escalation of privilege via local access. Una administración insuficiente del flujo de control en el subsistema en Intel® SPS versiones anteriores a SPS_E3_05.01.04.300.0, SPS_SoC-A_05.00.03.091.0, SPS_E5_04.04.04.023.0 o SPS_E5_04.04.03.263.0, puede habilitar a un usuario privilegi... • https://security.netapp.com/advisory/ntap-20210611-0003 •
CVSS: 6.4EPSS: 0%CPEs: 4EXPL: 0CVE-2020-8755
https://notcve.org/view.php?id=CVE-2020-8755
12 Nov 2020 — Race condition in subsystem for Intel(R) CSME versions before 12.0.70 and 14.0.45, Intel(R) SPS versions before E5_04.01.04.400 and E3_05.01.04.200 may allow an unauthenticated user to potentially enable escalation of privilege via physical access. Una condición de carrera en el subsistema para Intel® CSME versiones anteriores a 12.0.70 y 14.0.45, Intel® SPS versiones anteriores a E5_04.01.04.400 y E3_05.01.04.200, pueden habilitar a un usuario no autenticado para permitir potencialmente una escalada de pri... • https://security.netapp.com/advisory/ntap-20201113-0002 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.8EPSS: 0%CPEs: 13EXPL: 0CVE-2020-8744
https://notcve.org/view.php?id=CVE-2020-8744
12 Nov 2020 — Improper initialization in subsystem for Intel(R) CSME versions before12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25, Intel(R) TXE versions before 4.0.30 Intel(R) SPS versions before E3_05.01.04.200 may allow a privileged user to potentially enable escalation of privilege via local access. Una inicialización inapropiada en el subsistema para Intel® CSME versiones anteriores a 12.0.70, 13.0.40, 13.30.10, 14.0.45 y 14.5.25, Intel® TXE versiones anteriores a 4.0.30, Intel® SPS versiones anteriores a E3_05. 01... • https://cert-portal.siemens.com/productcert/pdf/ssa-501073.pdf • CWE-665: Improper Initialization •
CVSS: 7.1EPSS: 0%CPEs: 2EXPL: 0CVE-2019-0090
https://notcve.org/view.php?id=CVE-2019-0090
17 May 2019 — Insufficient access control vulnerability in subsystem for Intel(R) CSME before versions 11.x, 12.0.35 Intel(R) TXE 3.x, 4.x, Intel(R) Server Platform Services 3.x, 4.x, Intel(R) SPS before version SPS_E3_05.00.04.027.0 may allow an unauthenticated user to potentially enable escalation of privilege via physical access. Una vulnerabilidad de control de acceso insuficiente en el subsistema para Intel(R) CSME en versiones anteriores a la 11.x, 12.0.35 Intel(R) TXE 3.x, 4.x, Intel(R) Server Platform Services 3.... • https://support.f5.com/csp/article/K59145983 •
CVSS: 6.7EPSS: 0%CPEs: 4EXPL: 0CVE-2019-0089
https://notcve.org/view.php?id=CVE-2019-0089
17 May 2019 — Improper data sanitization vulnerability in subsystem in Intel(R) SPS before versions SPS_E5_04.00.04.381.0, SPS_E3_04.01.04.054.0, SPS_SoC-A_04.00.04.181.0, and SPS_SoC-X_04.00.04.086.0 may allow a privileged user to potentially enable escalation of privilege via local access. Vulnerabilidad por un inadecuado saneamiento de datos en el subsistema en Intel (R) SPS anterior a las versiones SPS_E5_04.00.04.381.0, SPS_E3_04.01.04.054.0, SPS_SoC-A_04.00.04.181.0, y SPS_SoC-X_04.00.04.086.0, o puede permitir que... • https://support.f5.com/csp/article/K47234311 • CWE-19: Data Processing Errors •