Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

intel power management controller vulnerabilities and exploits

(subscribe to this query)
2.1
CVSSv2
CVE-2021-0147
Improper locking in the Power Management Controller (PMC) for some Intel Chipset firmware prior to pmc_fw_lbg_c1-21ww02a and pmc_fw_lbg_b0-21ww02a may allow a privileged user to potentially enable denial of service via local access.
Intel Power Management Controller
4.6
CVSSv2
CVE-2018-3643
A vulnerability in Power Management Controller firmware in systems using specific Intel(R) Converged Security and Management Engine (CSME) before version 11.8.55, 11.11.55, 11.21.55, 12.0.6 or Intel(R) Server Platform Services firmware before version 4.x.04 may allow an attacker ...
Intel Server Platform Services FirmwareIntel Converged Security Management Engine Firmware
4.6
CVSSv2
CVE-2018-3659
A vulnerability in Intel PTT module in Intel CSME firmware before version 12.0.5 and Intel TXE firmware before version 4.0 may allow an unauthenticated user to potentially disclose information via physical access.
Intel Converged Security Management Engine FirmwareIntel Trusted Execution Engine Firmware
3.6
CVSSv2
CVE-2018-3655
A vulnerability in a subsystem in Intel CSME before version 11.21.55, Intel Server Platform Services before version 4.0 and Intel Trusted Execution Engine Firmware before version 3.1.55 may allow an unauthenticated user to potentially modify or disclose information via physical a...
Intel Converged Security Management Engine FirmwareIntel Server Platform Services FirmwareIntel Trusted Execution Engine Firmware
4.3
CVSSv2
CVE-2018-3616
Bleichenbacher-style side channel vulnerability in TLS implementation in Intel Active Management Technology prior to 12.0.5 may allow an unauthenticated user to potentially obtain the TLS session key via the network.
Intel Manageability Engine FirmwareIntel Active Management Technology FirmwareIntel Converged Security Management Engine FirmwareSiemens Simatic Field Pg M5 FirmwareSiemens Simatic Ipc427e FirmwareSiemens Simatic Ipc477e FirmwareSiemens Simatic Ipc547e FirmwareSiemens Simatic Pc547g FirmwareSiemens Simatic Ipc627d FirmwareSiemens Simatic Ipc647d FirmwareSiemens Simatic Ipc677d FirmwareSiemens Simatic Ipc827d FirmwareSiemens Simatic Ipc847d FirmwareSiemens Simatic Itp1000 Firmware
5
CVSSv2
CVE-2018-3658
Multiple memory leaks in Intel AMT in Intel CSME firmware versions prior to 12.0.5 may allow an unauthenticated user with Intel AMT provisioned to potentially cause a partial denial of service via network access.
Siemens Simatic Field Pg M5 FirmwareSiemens Simatic Ipc427e FirmwareSiemens Simatic Ipc477e FirmwareSiemens Simatic Ipc547e FirmwareSiemens Simatic Pc547g FirmwareSiemens Simatic Ipc627d FirmwareSiemens Simatic Ipc647d FirmwareSiemens Simatic Ipc677d FirmwareSiemens Simatic Ipc827d FirmwareSiemens Simatic Ipc847d FirmwareSiemens Simatic Itp1000 FirmwareIntel Manageability Engine FirmwareIntel Active Management Technology FirmwareIntel Converged Security Management Engine Firmware
7.2
CVSSv2
CVE-2018-3657
Multiple buffer overflows in Intel AMT in Intel CSME firmware versions before version 12.0.5 may allow a privileged user to potentially execute arbitrary code with Intel AMT execution privilege via local access.
Siemens Simatic Field Pg M5 FirmwareSiemens Simatic Ipc427e FirmwareSiemens Simatic Ipc477e FirmwareSiemens Simatic Ipc547e FirmwareSiemens Simatic Pc547g FirmwareSiemens Simatic Ipc627d FirmwareSiemens Simatic Ipc647d FirmwareSiemens Simatic Ipc677d FirmwareSiemens Simatic Ipc827d FirmwareSiemens Simatic Ipc847d FirmwareSiemens Simatic Itp1000 FirmwareIntel Manageability Engine FirmwareIntel Active Management Technology FirmwareIntel Converged Security Management Engine Firmware
4.9
CVSSv2
CVE-2018-12207
Improper invalidation for page table updates by a virtual guest operating system for multiple Intel(R) Processors may allow an authenticated user to potentially enable denial of service of the host system via local access.
Intel Core I3-10110u Firmware -Intel Core I3-10110y Firmware -Intel Core I3-1005g1 Firmware -Intel Core I3-9300t Firmware -Intel Core I3-9300 Firmware -Intel Core I3-9100 Firmware -Intel Core I3-9100t Firmware -Intel Core I3-9350k Firmware -Intel Core I3-9320 Firmware -Intel Core I3-8145u Firmware -Intel Core I3-8300 Firmware -Intel Core I3-8100t Firmware -Intel Core I3-8300t Firmware -Intel Core I3-8109u Firmware -Intel Core I3-8130u Firmware -Intel Core I3-8100 Firmware -Intel Core I3-8350k Firmware -Intel Core I3-7100 Firmware -Intel Core I3-7350k Firmware -Intel Core I3-7300t Firmware -Intel Core I3-7167u Firmware -Intel Core I3-7300 Firmware -
5.8
CVSSv2
CVE-2021-3772
A flaw was found in the Linux SCTP stack. A blind attacker may be able to kill an existing SCTP association through invalid chunks if the attacker knows the IP-addresses and port numbers being used and the attacker can send packets with spoofed IP addresses.
Linux Linux KernelRedhat Enterprise Linux 8.0Debian Debian Linux 9.0Debian Debian Linux 10.0Oracle Communications Cloud Native Core Binding Support Function 22.1.3Oracle Communications Cloud Native Core Policy 22.2.0Oracle Communications Cloud Native Core Network Exposure Function 22.1.1Netapp Solidfire \\& Hci Management Node -Netapp Hci Compute Node -Netapp Solidfire \\& Hci Storage Node -Netapp E-series Santricity Os Controller 11.0Netapp E-series Santricity Os Controller 11.0.0Netapp E-series Santricity Os Controller 11.20Netapp E-series Santricity Os Controller 11.25Netapp E-series Santricity Os Controller 11.30Netapp E-series Santricity Os Controller 11.30.5r3Netapp E-series Santricity Os Controller 11.40Netapp E-series Santricity Os Controller 11.40.3r2Netapp E-series Santricity Os Controller 11.40.5Netapp E-series Santricity Os Controller 11.50.1Netapp E-series Santricity Os Controller 11.50.2Netapp E-series Santricity Os Controller 11.60
4.6
CVSSv2
CVE-2022-0330
A random memory access flaw was found in the Linux kernel's GPU i915 kernel driver functionality in the way a user may run malicious code on the GPU. This flaw allows a local user to crash the system or escalate their privileges on the system.
Linux Linux KernelLinux Linux Kernel 5.17Redhat Enterprise Linux Desktop 7.0Redhat Enterprise Linux Workstation 7.0Redhat Enterprise Linux For Scientific Computing 7.0Redhat Enterprise Linux Server 7.0Redhat Enterprise Linux For Power Little Endian 7.0Redhat Enterprise Linux For Real Time 7Redhat Enterprise Linux For Real Time For Nfv 7Redhat Enterprise Linux For Power Big Endian 7.0Redhat Enterprise Linux Server Aus 7.3Redhat Enterprise Linux Server Aus 7.4Redhat Enterprise Linux Server Aus 7.6Redhat Enterprise Linux 8.0Redhat Enterprise Linux Server Aus 7.7Redhat Enterprise Linux Server Tus 7.7Redhat Enterprise Linux Eus 8.2Redhat Enterprise Linux Server Tus 8.2Redhat Enterprise Linux Server Aus 8.2Redhat Enterprise Linux For Real Time 8Redhat Enterprise Linux Server Tus 8.4Redhat Enterprise Linux Eus 8.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693CVE-2024-30851CVE-2024-34460CVE-2024-2887localCVE-2024-27956remote code executionCVE-2024-34475privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook