xeon d-2142it vulnerabilities and exploits

4.6
CVSSv2
CVE-2018-3652

Existing UEFI setting restrictions for DCI (Direct Connect Interface) in 5th and 6th generation Intel Xeon Processor E3 Family, Intel Xeon Scalable processors, and Intel Xeon Processor D Family allows a limited physical presence attacker to potentially access platform secrets...

7.2
CVSSv2
CVE-2019-0126

Insufficient access control in silicon reference firmware for Intel(R) Xeon(R) Scalable Processor, Intel(R) Xeon(R) Processor D Family may allow a privileged user to potentially enable escalation of privilege and/or denial of service via local access....

7.2
CVSSv2
CVE-2019-0119

Buffer overflow vulnerability in system firmware for Intel(R) Xeon(R) Processor D Family, Intel(R) Xeon(R) Scalable Processor, Intel(R) Server Board, Intel(R) Server System and Intel(R) Compute Module may allow a privileged user to potentially enable escalation of privilege...

IntelHns2400lp FirmwareHns2600bpb24 FirmwareHns2600bpb FirmwareHns2600bpblc24 FirmwareHns2600bpblc FirmwareHns2600bpq24 FirmwareHns2600bpq FirmwareHns2600bps24 FirmwareHns2600bps FirmwareHns2600jf FirmwareHns2600jff FirmwareHns2600jfq FirmwareHns2600kp FirmwareHns2600kpf FirmwareHns2600kpfr FirmwareHns2600kpr FirmwareHns2600tp24r FirmwareHns2600tp24sr FirmwareHns2600tp24str FirmwareHns2600tp FirmwareHns2600tpf FirmwareHns2600tpfr FirmwareHns2600tpnr FirmwareHns2600tpr FirmwareHns2600wp FirmwareHns2600wpf FirmwareHns2600wpq FirmwareHns7200ap FirmwareHns7200apl FirmwareHns7200apr FirmwareHns7200aprl FirmwareMfs2600ki FirmwareMfs5000si FirmwareMfs5520vir FirmwareServer Board S1200sp FirmwareServer Board S2600bp FirmwareServer Board S2600cw FirmwareServer Board S2600kp FirmwareServer Board S2600st FirmwareServer Board S2600tp FirmwareServer Board S2600wf FirmwareServer Board S2600wt FirmwareServer Board S7200ap FirmwareServer System S9200wk FirmwareXeon Bronze Processors FirmwareXeon D-1602 FirmwareXeon D-1622 FirmwareXeon D-1623n FirmwareXeon D-1627 FirmwareXeon D-1633n FirmwareXeon D-1637 FirmwareXeon D-1649n FirmwareXeon D-1653n FirmwareXeon D-2123it FirmwareXeon D-2141i FirmwareXeon D-2142it FirmwareXeon D-2143it FirmwareXeon D-2145nt FirmwareXeon D-2146nt FirmwareXeon D-2161i FirmwareXeon D-2163it FirmwareXeon D-2166nt FirmwareXeon D-2173it FirmwareXeon D-2177nt FirmwareXeon D-2183it FirmwareXeon D-2187nt FirmwareXeon D-2191 FirmwareXeon Gold Processors FirmwareXeon Platinum Processors FirmwareXeon Processor D-1513n FirmwareXeon Processor D-1518 FirmwareXeon Processor D-1520 FirmwareXeon Processor D-1521 FirmwareXeon Processor D-1523n FirmwareXeon Processor D-1527 FirmwareXeon Processor D-1528 FirmwareXeon Processor D-1529 FirmwareXeon Processor D-1531 FirmwareXeon Processor D-1533n FirmwareXeon Processor D-1537 FirmwareXeon Processor D-1539 FirmwareXeon Processor D-1540 FirmwareXeon Processor D-1541 FirmwareXeon Processor D-1543n FirmwareXeon Processor D-1548 FirmwareXeon Processor D-1553n FirmwareXeon Processor D-1557 FirmwareXeon Processor D-1559 FirmwareXeon Processor D-1567 FirmwareXeon Processor D-1571 FirmwareXeon Processor D-1577 FirmwareXeon Silver Processors Firmware
10
CVSSv2
CVE-2017-5689

An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs: Intel Active Management Technology (AMT) and Intel Standard Manageability (ISM). An unprivileged local attacker could provision manageability features gaining unprivileged...

IntelActive Management Technology Firmware
7.8
CVSSv2
CVE-2008-0166

OpenSSL 0.9.8c-1 up to versions before 0.9.8g-9 on Debian-based operating systems uses a random number generator that generates predictable numbers, which makes it easier for remote attackers to conduct brute force guessing attacks against cryptographic keys....

Openssl ProjectOpenssl
4.7
CVSSv2
CVE-2018-3646

Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access with guest OS privilege via a terminal page fault and a side-channel...

IntelCore I3Core I5Core I7Core MCore M3Core M5Core M7Xeon
4.7
CVSSv2
CVE-2018-3620

Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access via a terminal page fault and a side-channel analysis....

IntelCore I3Core I5Core I7Core MCore M3Core M5Core M7Xeon
5.4
CVSSv2
CVE-2018-3615

Systems with microprocessors utilizing speculative execution and Intel software guard extensions (Intel SGX) may allow unauthorized disclosure of information residing in the L1 data cache from an enclave to an attacker with local user access via a side-channel analysis....

IntelCore I3Core I5Core I7Xeon E3
7.5
CVSSv2
CVE-2018-4878

A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the Primetime SDK related to media player handling of listener objects. A successful attack can lead to arbitrary code execution. This...

10
CVSSv2
CVE-2015-5119

Use-after-free vulnerability in the ByteArray class in the ActionScript 3 (AS3) implementation in Adobe Flash Player 13.x through 13.0.0.296 and 14.x through 18.0.0.194 on Windows and OS X and 11.x through 11.2.202.468 on Linux allows remote attackers to execute arbitrary code...

AdobeFlash Player