Intel Xeon_gold_5318h_firmware
20 CVEs affecting Intel Xeon_gold_5318h_firmware. Latest disclosed: 2023-11-14. Critical: 0, High: 10.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-23583 | High | 8.8 | 2023-11-14 | Sequence of processor instructions leads to unexpected behavior for some Intel(R) Processors may allow an authenticated user to potentially enable escalation o… |
CVE-2021-33060 | High | 7.8 | 2022-08-18 | Out-of-bounds write in the BIOS firmware for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege via local a… |
CVE-2021-33123 | High | 7.8 | 2022-05-12 | Improper access control in the BIOS authenticated code module for some Intel(R) Processors may allow a privileged user to potentially enable aescalation of pri… |
CVE-2021-0159 | High | 7.8 | 2022-05-12 | Improper input validation in the BIOS authenticated code module for some Intel(R) Processors may allow a privileged user to potentially enable aescalation of p… |
CVE-2022-32231 | High | 7.5 | 2023-02-16 | Improper initialization in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local a… |
CVE-2022-30539 | High | 7.5 | 2023-02-16 | Use after free in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access. |
CVE-2022-26837 | High | 7.5 | 2023-02-16 | Improper input validation in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local… |
CVE-2022-21216 | High | 7.5 | 2023-02-16 | Insufficient granularity of access control in out-of-band management in some Intel(R) Atom and Intel Xeon Scalable Processors may allow a privileged user to po… |
CVE-2022-41804 | High | 7.2 | 2023-08-11 | Unauthorized error injection in Intel(R) SGX or Intel(R) TDX for some Intel(R) Xeon(R) Processors may allow a privileged user to potentially enable escalation… |
CVE-2022-33196 | High | 7.2 | 2023-02-16 | Incorrect default permissions in some memory controller configurations for some Intel(R) Xeon(R) Processors when using Intel(R) Software Guard Extensions which… |
CVE-2021-33124 | Medium | 6.7 | 2022-05-12 | Out-of-bounds write in the BIOS authenticated code module for some Intel(R) Processors may allow a privileged user to potentially enable aescalation of privile… |
CVE-2021-0186 | Medium | 6.7 | 2021-11-17 | Improper input validation in the Intel(R) SGX SDK applications compiled for SGX2 enabled processors may allow a privileged user to potentially escalation of pr… |
CVE-2022-40982 | Medium | 6.5 | 2023-08-11 | Information exposure through microarchitectural state after transient execution in certain vector execution units for some Intel(R) Processors may allow an aut… |
CVE-2022-33972 | Medium | 6.1 | 2023-02-16 | Incorrect calculation in microcode keying mechanism for some 3rd Generation Intel(R) Xeon(R) Scalable Processors may allow a privileged user to potentially ena… |
CVE-2023-23908 | Medium | 6.0 | 2023-08-11 | Improper access control in some 3rd Generation Intel(R) Xeon(R) Scalable processors may allow a privileged user to potentially enable information disclosure vi… |
CVE-2022-38090 | Medium | 6.0 | 2023-02-16 | Improper isolation of shared resources in some Intel(R) Processors when using Intel(R) Software Guard Extensions may allow a privileged user to potentially ena… |
CVE-2022-26373 | Medium | 5.5 | 2022-08-18 | Non-transparent sharing of return predictor targets between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information… |
CVE-2022-21151 | Medium | 5.5 | 2022-05-12 | Processor optimization removal or modification of security-critical code for some Intel(R) Processors may allow an authenticated user to potentially enable inf… |
CVE-2022-43505 | Medium | 4.1 | 2023-08-11 | Insufficient control flow management in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable denial of service via… |
CVE-2021-0187 | Low | 3.2 | 2023-02-16 | Improper access control in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of privilege via loca… |