Yngweijw

**Name of the Vulnerable Software and Affected Versions** No specific software or versions are mentioned in the provided descriptions. **Description** The issue is related to improper input validation in the SMM handler, which may allow a privileged attacker to overwrite SMRAM, potentially leading to arbitrary code execution. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Intel(R) Processors (affected versions not specified) **Description** The issue is related to improper input validation in UEFI firmware for some Intel(R) Processors. This may allow a privileged user to potentially enable escalation of privilege via local access. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Intel(R) Processors (affected versions not specified) **Description** The issue is related to improper input validation in UEFI firmware for some Intel(R) Processors. This may allow a privileged user to potentially enable escalation of privilege via local access. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Intel(R) processors (affected versions not specified) **Description** The issue is related to improper input validation in the XmlCli feature for UEFI firmware, which may allow a privileged user to potentially enable escalation of privilege via local access. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Intel(R) Processors (affected versions not specified) **Description** The issue concerns improper input validation in the UEFI firmware for some Intel(R) Processors. This may allow a privileged user to potentially enable information disclosure via local access. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Intel(R) Processors (affected versions not specified) **Description** The issue concerns improper initialization in the UEFI firmware OutOfBandXML module, which may allow a privileged user to potentially enable information disclosure via local access. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** No specific software or versions are mentioned in the provided descriptions. **Description** The issue is related to improper input validation in the SMM handler, which may allow a privileged attacker to overwrite SMRAM, potentially leading to arbitrary code execution. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** UEFI firmware CseVariableStorageSmm for some Intel(R) Processors (affected versions not specified) **Description** The issue is related to improper input validation in the UEFI firmware, which may allow a privileged user to potentially enable escalation of privilege via local access. This could lead to security breaches, but specific details about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited are not provided. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** No specific software or versions are mentioned in the provided descriptions. **Description** The issue is related to improper input validation in the SMM handler, which may allow a privileged attacker to overwrite SMRAM, potentially leading to arbitrary code execution. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Intel(R) processors (affected versions not specified) **Description** The issue is related to improper input validation in UEFI firmware for some Intel(R) processors. This may allow a privileged user to potentially enable escalation of privilege via local access. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Intel(R) Server M20NTP Family UEFI (affected versions not specified) Description: The issue is related to improper input validation in the firmware, which may allow a privileged user to potentially enable escalation of privilege via local access. This could be exploited by an attacker to elevate their privileges. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Intel(R) Server M20NTP BIOS (affected versions not specified) Description: The issue is related to a use after free vulnerability in the UEFI firmware of some Intel(R) Server M20NTP BIOS, which may allow a privileged user to potentially enable escalation of privilege via local access. This could potentially be exploited by a local attacker to gain elevated privileges. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Intel(R) Server S2600BPBR (affected versions not specified) Description: The issue is related to improper input validation in the UEFI firmware for some Intel(R) Server S2600BPBR systems. This may allow a privileged user to potentially enable escalation of privilege via local access. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Intel Server Board M10JNP2SB Family (affected versions not specified) Description: The issue is related to insufficient input validation in the UEFI firmware of the Intel Server Board M10JNP2SB Family. This could allow a privileged user to potentially enable escalation of privilege via local access. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Intel(R) Server M20NTP Family (affected versions not specified) Description: The issue is related to improper access control in the UEFI firmware, which may allow a privileged user to potentially enable information disclosure via local access. This could lead to a data leak. The vulnerability is associated with deficiencies in access control, potentially allowing an attacker to elevate their privileges. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Intel(R) Processors (affected versions not specified) Description: The issue is related to improper input validation in the UEFI firmware error handler for some Intel(R) Processors. This may allow a privileged user to potentially enable escalation of privilege via local access. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Intel UEFI Firmware (affected versions not specified) Description: The issue is related to improper input validation in UEFI firmware for some Intel processors, which may allow a privileged user to enable information disclosure or denial of service via local access. This is also associated with errors in resource release. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Intel UEFI Firmware (affected versions not specified) Description: The issue is related to improper input validation in the UEFI firmware of certain Intel processors. This flaw may allow a privileged user to potentially enable escalation of privilege via local access. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Intel UEFI Firmware (affected versions not specified) Description: The issue is related to an untrusted pointer dereference in the UEFI firmware for some Intel reference processors. This could allow a privileged user to potentially enable escalation of privilege via local access. The vulnerability is associated with the lack of checking the value of a pointer before it is dereferenced. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Intel UEFI firmware (affected versions not specified) Description: A race condition in the UEFI firmware for some Intel processors may allow a privileged user to potentially enable escalation of privilege via local access. This issue is caused by synchronization errors when using shared resources. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.