Memory corruption in system firmware for Intel NUC may allow a privileged user to potentially enable escalation of privilege, denial of service and/or information disclosure via local access.
Tag: Local Access
ASA-2019-00568 – Intel NUC: Pointer corruption in system firmware
Pointer corruption in system firmware for Intel NUC may allow a privileged user to potentially enable escalation of privilege, denial of service and/or information disclosure via local access.
ASA-2019-00567 – Intel Smart Connect Technology: Improper file permission in software
Improper file permission in software installer for Intel(R) Smart Connect Technology for Intel(R) NUC may allow an authenticated user to potentially enable escalation of privilege via local access.
ASA-2019-00566 – Intel Active System Console: Insufficient path checking in the installer
Insufficient path checking in the installer for Intel Active System Console before version 8.0 Build 24 may allow an authenticated user to potentially enable escalation of privilege via local access.
ASA-2019-00465 – Linux kernel: Broken permission and object lifetime handling for PTRACE_TRACEME
A flaw was found in the way PTRACE_TRACEME functionality was handled in the Linux kernel. The kernel's implementation of ptrace can inadvertently grant elevated permissions to an attacker who can then abuse the relationship between the tracer and the process being traced. This flaw could allow a local, unprivileged user to increase their privileges on the system or cause a denial of service.
ASA-2019-00427 – Intel Processor Diagnostic Tool: Improper access control
Improper access control in the Intel(R) Processor Diagnostic Tool before version 4.1.2.24 may allow an authenticated user to potentially enable escalation of privilege, information disclosure or denial of service via local access.
ASA-2019-00350 – Intel Open Cloud Integrity Technology (Open CIT): Insufficient password handling in the login routine
Insufficient password handling in the login routine for Intel Open Cloud Integrity Technology (Open CIT) may allow an authenticated user to potentially enable escalation of privilege via local access.
ASA-2019-00349 – Intel Open Cloud Integrity Technology (Open CIT): Insufficient password handling in the login routine
Insufficient password handling in the login routine for Open Cloud Integrity Technology (Open CIT) may allow an authenticated user to potentially enable escalation of privilege via local access.