14 results (0.003 seconds)

CVSS: 7.2EPSS: 0%CPEs: 6EXPL: 0

16 May 2024 — Improper input validation in PlatformVariableInitDxe driver in UEFI firmware for some Intel(R) Server D50DNP Family products may allow a privileged user to enable escalation of privilege via local access. La validación de entrada incorrecta en el controlador PlatformVariableInitDxe en el firmware UEFI para algunos productos de la familia Intel(R) Server D50DNP puede permitir que un usuario privilegiado habilite la escalada de privilegios a través del acceso local. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01080.html • CWE-20: Improper Input Validation •

CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0

16 May 2024 — Improper buffer restrictions in PlatformPfrDxe driver in UEFI firmware for some Intel(R) Server D50FCP Family products may allow a privileged user to enable escalation of privilege via local access. Las restricciones del búfer inadecuadas en el controlador PlatformPfrDxe en el firmware UEFI para algunos productos de la familia Intel(R) Server D50FCP pueden permitir que un usuario privilegiado habilite la escalada de privilegios a través del acceso local. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01080.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0

16 May 2024 — Improper input validation in UserAuthenticationSmm driver in UEFI firmware for some Intel(R) Server D50DNP Family products may allow a privileged user to enable escalation of privilege via local access. La validación de entrada incorrecta en el controlador UserAuthenticationSmm en el firmware UEFI para algunos productos de la familia Intel(R) Server D50DNP puede permitir que un usuario privilegiado habilite la escalada de privilegios a través del acceso local. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01080.html • CWE-20: Improper Input Validation •

CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0

16 May 2024 — Improper input validation in PprRequestLog module in UEFI firmware for some Intel(R) Server D50DNP Family products may allow a privileged user to enable escalation of privilege via local access. La validación de entrada incorrecta en el módulo PprRequestLog en el firmware UEFI para algunos productos de la familia Intel(R) Server D50DNP puede permitir que un usuario privilegiado habilite la escalada de privilegios a través del acceso local. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01080.html • CWE-20: Improper Input Validation •

CVSS: 6.0EPSS: 0%CPEs: 20EXPL: 0

10 May 2023 — Integer overflow in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable denial of service via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00839.html • CWE-190: Integer Overflow or Wraparound CWE-680: Integer Overflow to Buffer Overflow •

CVSS: 6.0EPSS: 0%CPEs: 20EXPL: 0

10 May 2023 — Out of bounds read in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00839.html • CWE-125: Out-of-bounds Read •

CVSS: 6.1EPSS: 0%CPEs: 20EXPL: 0

10 May 2023 — Improper input validation in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00839.html • CWE-20: Improper Input Validation •

CVSS: 6.3EPSS: 0%CPEs: 20EXPL: 0

10 May 2023 — Double free in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00839.html • CWE-415: Double Free •

CVSS: 6.3EPSS: 0%CPEs: 20EXPL: 0

10 May 2023 — Improper input validation in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00839.html • CWE-20: Improper Input Validation •

CVSS: 6.7EPSS: 0%CPEs: 20EXPL: 0

10 May 2023 — Improper input validation in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable information disclosure via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00839.html • CWE-20: Improper Input Validation •