CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2024-31157 |
Description: Improper initialization in UEFI firmware OutOfBandXML module in some Intel(R) Processors may allow a privileged user to potentially enable information disclosure via local access.
CVSS: MEDIUM (6.8) EPSS Score: 0.04%
February 13th, 2025 (5 months ago)
|
|
CVE-2024-31155 |
Description: Improper buffer restrictions in the UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
CVSS: HIGH (8.7) EPSS Score: 0.04%
February 13th, 2025 (5 months ago)
|
|
CVE-2024-31153 |
Description: Improper input validation for some Intel(R) QuickAssist Technology software before version 2.2.0 may allow an authenticated user to potentially enable denial of service via local access.
CVSS: MEDIUM (5.1) EPSS Score: 0.04%
February 13th, 2025 (5 months ago)
|
|
CVE-2024-31068 |
Description: Improper Finite State Machines (FSMs) in Hardware Logic for some Intel(R) Processors may allow privileged user to potentially enable denial of service via local access.
CVSS: MEDIUM (5.6) EPSS Score: 0.04%
February 13th, 2025 (5 months ago)
|
|
CVE-2024-30211 |
Description: Improper access control in some Intel(R) ME driver pack installer engines before version 2422.6.2.0 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVSS: MEDIUM (6.0) EPSS Score: 0.04%
February 13th, 2025 (5 months ago)
|
|
CVE-2024-29223 |
Description: Uncontrolled search path for some Intel(R) QuickAssist Technology software before version 2.2.0 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVSS: MEDIUM (5.4) EPSS Score: 0.04%
February 13th, 2025 (5 months ago)
|
|
CVE-2024-29214 |
Description: Improper input validation in UEFI firmware CseVariableStorageSmm for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
CVSS: HIGH (8.7) EPSS Score: 0.04%
February 13th, 2025 (5 months ago)
|
|
CVE-2024-29172 |
Description: Dell BSAFE SSL-J contains a deadlock vulnerability. A remote attacker could potentially exploit this vulnerability, leading to a Denial of Service.
CVSS: MEDIUM (5.9) EPSS Score: 0.04%
February 13th, 2025 (5 months ago)
|
|
CVE-2024-29171 |
Description: Dell BSAFE SSL-J contains an Improper certificate verification vulnerability. A remote attacker could potentially exploit this vulnerability, leading to information disclosure.
CVSS: MEDIUM (5.9) EPSS Score: 0.04%
February 13th, 2025 (5 months ago)
|
|
CVE-2024-28771 |
Description: IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the insecure link and the attacker can then obtain the cookie value by snooping the traffic.
CVSS: MEDIUM (4.8) EPSS Score: 0.05%
February 13th, 2025 (5 months ago)
|