CVE漏洞

OStack程序员社区-中国程序员成长平台 › 门户 › 漏洞›CVE漏洞

RSS

CVE-2021-33078

Race condition within a thread in firmware for some Intel(R) Optane(TM) SSD and Intel(R) SSD DC Products may allow a privileged user to potentially enable denial of service via local access.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：8 | 回复：0
CVE-2021-33080

Exposure of sensitive system information due to uncleared debug information in firmware for some Intel(R) SSD DC, Intel(R) Optane(TM) SSD and Intel(R) Optane(TM) SSD DC Products may allow an unauthent ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：7 | 回复：0
CVE-2021-33082

Sensitive information in resource not removed before reuse in firmware for some Intel(R) SSD and Intel(R) Optane(TM) SSD Products may allow an unauthenticated user to potentially enable information di ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：8 | 回复：0
CVE-2021-33083

Improper authentication in firmware for some Intel(R) SSD, Intel(R) Optane(TM) SSD, Intel(R) Optane(TM) SSD DC and Intel(R) SSD DC Products may allow an privileged user to potentially enable informati ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：8 | 回复：0
CVE-2021-33103

Unintended intermediary in the BIOS authenticated code module for some Intel(R) Processors may allow a privileged user to potentially enable aescalation of privilege via local access.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：8 | 回复：0
CVE-2021-33108

Improper input validation in the Intel(R) In-Band Manageability software before version 2.13.0 may allow a privileged user to potentially enable escalation of privilege via local access.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：8 | 回复：0
CVE-2021-33117

Improper access control for some 3rd Generation Intel(R) Xeon(R) Scalable Processors before BIOS version MR7, may allow a local attacker to potentially enable information disclosure via local access.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：8 | 回复：0
CVE-2021-33122

Insufficient control flow management in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable aescalation of privilege via local access.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：8 | 回复：0
CVE-2021-33123

Improper access control in the BIOS authenticated code module for some Intel(R) Processors may allow a privileged user to potentially enable aescalation of privilege via local access.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：8 | 回复：0
CVE-2021-33124

Out-of-bounds write in the BIOS authenticated code module for some Intel(R) Processors may allow a privileged user to potentially enable aescalation of privilege via local access.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：8 | 回复：0
CVE-2021-33130

Insecure default variable initialization of Intel(R) RealSense(TM) ID Solution F450 before version 2.6.0.74 may allow an unauthenticated user to potentially enable information disclosure via physical ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：8 | 回复：0
CVE-2021-33135

Uncontrolled resource consumption in the Linux kernel drivers for Intel(R) SGX may allow an authenticated user to potentially enable denial of service via local access.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：7 | 回复：0
CVE-2021-33149

Observable behavioral discrepancy in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：7 | 回复：0
CVE-2021-40399

An exploitable use-after-free vulnerability exists in WPS Spreadsheets ( ET ) as part of WPS Office, version 11.2.0.10351. A specially-crafted XLS file can cause a use-after-free condition, resulting ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：8 | 回复：0
CVE-2022-0004

Hardware debug modes and processor INIT setting that allow override of locks for some Intel(R) Processors in Intel(R) Boot Guard and Intel(R) TXT may allow an unauthenticated user to potentially enabl ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：8 | 回复：0
CVE-2022-0005

Sensitive information accessible by physical probing of JTAG interface for some Intel(R) Processors with SGX may allow an unprivileged user to potentially enable information disclosure via physical ac ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：8 | 回复：0
CVE-2022-21128

Insufficient control flow management in the Intel(R) Advisor software before version 7.6.0.37 may allow an authenticated user to potentially enable escalation of privilege via local access.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：8 | 回复：0
CVE-2022-21131

Improper access control for some Intel(R) Xeon(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：8 | 回复：0
CVE-2022-21136

Improper input validation for some Intel(R) Xeon(R) Processors may allow a privileged user to potentially enable denial of service via local access.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：9 | 回复：0
CVE-2022-21147

An out of bounds read vulnerability exists in the malware scan functionality of ESTsoft Alyac 2.5.7.7. A specially-crafted PE file can trigger this vulnerability to cause denial of service and termina ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：9 | 回复：0
CVE-2022-21151

Processor optimization removal or modification of security-critical code for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：9 | 回复：0
CVE-2022-21182

A privilege escalation vulnerability exists in the router configuration import functionality of InHand Networks InRouter302 V3.5.4. A specially-crafted HTTP request can lead to increased privileges. A ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：8 | 回复：0
CVE-2022-21237

Improper buffer access in firmware for some Intel(R) NUCs may allow a privileged user to potentially enable escalation of privilege via local access.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：8 | 回复：0
CVE-2022-21238

A cross-site scripting (xss) vulnerability exists in the info.jsp functionality of InHand Networks InRouter302 V3.5.4. A specially-crafted HTTP request can lead to arbitrary Javascript execution. An a ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：9 | 回复：0
CVE-2022-21809

A file write vulnerability exists in the httpd upload.cgi functionality of InHand Networks InRouter302 V3.5.4. A specially-crafted HTTP request can lead to arbitrary file upload. An attacker can uploa ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：9 | 回复：0
CVE-2022-22139

Uncontrolled search path in the Intel(R) XTU software before version 7.3.0.33 may allow an authenticated user to potentially enable escalation of privilege via local access.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：9 | 回复：0
CVE-2022-24297

Improper buffer restrictions in firmware for some Intel(R) NUCs may allow a privileged user to potentially enable escalation of privilege via local access.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：9 | 回复：0
CVE-2022-24382

Improper input validation in firmware for some Intel(R) NUCs may allow a privileged user to potentially enable escalation of privilege via local access.……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：9 | 回复：0
CVE-2022-24910

A buffer overflow vulnerability exists in the httpd parse_ping_result API functionality of InHand Networks InRouter302 V3.5.4. A specially-crafted file can lead to remote code execution. An attacker c ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：8 | 回复：0
CVE-2022-25172

An information disclosure vulnerability exists in the web interface session cookie functionality of InHand Networks InRouter302 V3.5.4. The session cookie misses the HttpOnly flag, making it accessibl ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：10 | 回复：0
CVE-2022-25995

A command execution vulnerability exists in the console inhand functionality of InHand Networks InRouter302 V3.5.4. A specially-crafted network request can lead to arbitrary command execution. An atta ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：10 | 回复：0
CVE-2022-26002

A stack-based buffer overflow vulnerability exists in the console factory functionality of InHand Networks InRouter302 V3.5.4. A specially-crafted network request can lead to remote code execution. An ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：10 | 回复：0
CVE-2022-26007

An OS command injection vulnerability exists in the console factory functionality of InHand Networks InRouter302 V3.5.4. A specially-crafted network request can lead to command execution. An attacker ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：9 | 回复：0
CVE-2022-26020

An information disclosure vulnerability exists in the router configuration export functionality of InHand Networks InRouter302 V3.5.4. A specially-crafted network request can lead to increased privile ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：9 | 回复：0
CVE-2022-26042

An OS command injection vulnerability exists in the daretools binary functionality of InHand Networks InRouter302 V3.5.4. A specially-crafted network request can lead to arbitrary command execution. A ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：10 | 回复：0
CVE-2022-26075

An OS command injection vulnerability exists in the console infactory_wlan functionality of InHand Networks InRouter302 V3.5.37. A specially-crafted series of network requests can lead to remote code ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：10 | 回复：0
CVE-2022-26085

An OS command injection vulnerability exists in the httpd wlscan_ASP functionality of InHand Networks InRouter302 V3.5.4. A specially-crafted HTTP request can lead to arbitrary command execution. An a ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：10 | 回复：0
CVE-2022-26420

An OS command injection vulnerability exists in the console infactory_port functionality of InHand Networks InRouter302 V3.5.37. A specially-crafted series of network requests can lead to remote code ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：11 | 回复：0
CVE-2022-26510

A firmware update vulnerability exists in the iburn firmware checks functionality of InHand Networks InRouter302 V3.5.37. A specially-crafted HTTP request can lead to firmware update. An attacker can ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：11 | 回复：0
CVE-2022-26518

An OS command injection vulnerability exists in the console infactory_net functionality of InHand Networks InRouter302 V3.5.37. A specially-crafted series of network requests can lead to remote code e ...……

作者：菜鸟教程小白 | 时间：2022-6-23 09:35 | 阅读：11 | 回复：0