CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Intel : Security Vulnerabilities

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2022-32293 416 Exec Code 2022-08-03 2022-09-19
0.0
None ??? ??? ??? ??? ??? ???
In ConnMan through 1.41, a man-in-the-middle attack against a WISPR HTTP query could be used to trigger a use-after-free in WISPR handling, leading to crashes or code execution.
2 CVE-2022-32292 787 Exec Code Overflow 2022-08-03 2022-09-19
0.0
None ??? ??? ??? ??? ??? ???
In ConnMan through 1.41, remote attackers able to send HTTP requests to the gweb component are able to exploit a heap-based buffer overflow in received_data to execute code.
3 CVE-2022-30944 522 2022-08-18 2022-08-21
0.0
None ??? ??? ??? ??? ??? ???
Insufficiently protected credentials for Intel(R) AMT and Intel(R) Standard Manageability may allow a privileged user to potentially enable information disclosure via local access.
4 CVE-2022-30601 522 2022-08-18 2022-08-21
0.0
None ??? ??? ??? ??? ??? ???
Insufficiently protected credentials for Intel(R) AMT and Intel(R) Standard Manageability may allow an unauthenticated user to potentially enable information disclosure and escalation of privilege via network access.
5 CVE-2022-30296 522 2022-08-18 2022-08-22
0.0
None ??? ??? ??? ??? ??? ???
Insufficiently protected credentials in the Intel(R) Datacenter Group Event iOS application, all versions, may allow an unauthenticated user to potentially enable information disclosure via network access.
6 CVE-2022-29507 522 2022-08-18 2022-08-22
0.0
None ??? ??? ??? ??? ??? ???
Insufficiently protected credentials in the Intel(R) Team Blue mobile application in all versions may allow an authenticated user to potentially enable information disclosure via local access.
7 CVE-2022-28697 2022-08-18 2022-08-21
0.0
None ??? ??? ??? ??? ??? ???
Improper access control in firmware for Intel(R) AMT and Intel(R) Standard Manageability may allow an unauthenticated user to potentially enable escalation of privilege via physical access.
8 CVE-2022-28696 427 2022-08-18 2022-08-22
0.0
None ??? ??? ??? ??? ??? ???
Uncontrolled search path in the Intel(R) Distribution for Python before version 2022.0.3 may allow an authenticated user to potentially enable escalation of privilege via local access.
9 CVE-2022-27500 276 2022-08-18 2022-08-22
0.0
None ??? ??? ??? ??? ??? ???
Incorrect default permissions for the Intel(R) Support Android application before 21.07.40 may allow an authenticated user to potentially enable information disclosure via local access.
10 CVE-2022-26844 522 2022-08-18 2022-08-22
0.0
None ??? ??? ??? ??? ??? ???
Insufficiently protected credentials in the installation binaries for Intel(R) SEAPI in all versions may allow an authenticated user to potentially enable escalation of privilege via local access.
11 CVE-2022-26374 427 2022-08-18 2022-08-22
0.0
None ??? ??? ??? ??? ??? ???
Uncontrolled search path in the installation binaries for Intel(R) SEAPI all versions may allow an authenticated user to potentially enable escalation of privilege via local access.
12 CVE-2022-26344 276 2022-08-18 2022-08-22
0.0
None ??? ??? ??? ??? ??? ???
Incorrect default permissions in the installation binaries for Intel(R) SEAPI all versions may allow an authenticated user to potentially enable escalation of privilege via local access.
13 CVE-2022-26074 459 DoS 2022-08-18 2022-08-23
0.0
None ??? ??? ??? ??? ??? ???
Incomplete cleanup in a firmware subsystem for Intel(R) SPS before versions SPS_E3_04.08.04.330.0 and SPS_E3_04.01.04.530.0 may allow a privileged user to potentially enable denial of service via local access.
14 CVE-2022-26017 863 2022-08-18 2022-08-22
0.0
None ??? ??? ??? ??? ??? ???
Improper access control in the Intel(R) DSA software for before version 22.2.14 may allow an authenticated user to potentially enable escalation of privilege via adjacent access.
15 CVE-2022-25999 427 2022-08-18 2022-08-22
0.0
None ??? ??? ??? ??? ??? ???
Uncontrolled search path element in the Intel(R) Enpirion(R) Digital Power Configurator GUI software, all versions may allow an authenticated user to potentially enable escalation of privilege via local access.
16 CVE-2022-25966 269 2022-08-18 2022-08-19
0.0
None ??? ??? ??? ??? ??? ???
Improper access control in the Intel(R) Edge Insights for Industrial software before version 2.6.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
17 CVE-2022-25899 863 Bypass 2022-08-18 2022-08-22
0.0
None ??? ??? ??? ??? ??? ???
Authentication bypass for the Open AMT Cloud Toolkit software maintained by Intel(R) before versions 2.0.2 and 2.2.2 may allow an unauthenticated user to potentially enable escalation of privilege via network access.
18 CVE-2022-25841 427 2022-08-18 2022-08-22
0.0
None ??? ??? ??? ??? ??? ???
Uncontrolled search path elements in the Intel(R) Datacenter Group Event Android application, all versions, may allow an authenticated user to potentially enable escalation of privilege via local access.
19 CVE-2022-24378 665 DoS 2022-08-18 2022-08-19
0.0
None ??? ??? ??? ??? ??? ???
Improper initialization in the Intel(R) Data Center Manager software before version 4.1 may allow an authenticated user to potentially enable denial of service via local access.
20 CVE-2022-23403 20 DoS 2022-08-18 2022-08-19
0.0
None ??? ??? ??? ??? ??? ???
Improper input validation in the Intel(R) Data Center Manager software before version 4.1 may allow an authenticated user to potentially enable denial of service via local access.
21 CVE-2022-23182 863 2022-08-18 2022-08-19
0.0
None ??? ??? ??? ??? ??? ???
Improper access control in the Intel(R) Data Center Manager software before version 4.1 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.
22 CVE-2022-22730 287 2022-08-18 2022-08-19
0.0
None ??? ??? ??? ??? ??? ???
Improper authentication in the Intel(R) Edge Insights for Industrial software before version 2.6.1 may allow an unauthenticated user to potentially enable escalation of privilege via network access.
23 CVE-2022-21812 863 2022-08-18 2022-08-19
0.0
None ??? ??? ??? ??? ??? ???
Improper access control in the Intel(R) HAXM software before version 7.7.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
24 CVE-2022-21807 427 2022-08-18 2022-08-22
0.0
None ??? ??? ??? ??? ??? ???
Uncontrolled search path elements in the Intel(R) VTune(TM) Profiler software before version 2022.2.0 may allow an authenticated user to potentially enable escalation of privilege via local access.
25 CVE-2022-21225 863 2022-08-18 2022-09-13
0.0
None ??? ??? ??? ??? ??? ???
Improper neutralization in the Intel(R) Data Center Manager software before version 4.1 may allow an authenticated user to potentially enable escalation of privilege via adjacent access.
26 CVE-2022-21152 2022-08-18 2022-08-19
0.0
None ??? ??? ??? ??? ??? ???
Improper access control in the Intel(R) Edge Insights for Industrial software before version 2.6.1 may allow an authenticated user to potentially enable information disclosure via local access.
27 CVE-2022-21148 269 2022-08-18 2022-08-19
0.0
None ??? ??? ??? ??? ??? ???
Improper access control in the Intel(R) Edge Insights for Industrial software before version 2.6.1 may allow an authenticated user to potentially enable escalation of privilege via local access.
28 CVE-2021-44470 276 2022-08-18 2022-08-19
0.0
None ??? ??? ??? ??? ??? ???
Incorrect default permissions for the Intel(R) Connect M Android application before version 1.7.4 may allow an authenticated user to potentially enable information disclosure via local access.
Total number of vulnerabilities : 28   Page : 1 (This Page)
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.