Intel Xeon Bronze 3204 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Intel Xeon Bronze 3204 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (24)
CVE-2022-26343 — CVSS 8.2 (high): Improper access control in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of…
CVE-2019-11137 — CVSS 8.2 (high): Insufficient input validation in system firmware for Intel(R) Xeon(R) Scalable Processors, Intel(R) Xeon(R) Processors D Family, Intel(R)…
CVE-2021-0156 — CVSS 7.8 (high): Improper input validation in the firmware for some Intel(R) Processors may allow an authenticated user to potentially enable an escalation…
CVE-2021-0159 — CVSS 7.8 (high): Improper input validation in the BIOS authenticated code module for some Intel(R) Processors may allow a privileged user to potentially…
CVE-2021-33123 — CVSS 7.8 (high): Improper access control in the BIOS authenticated code module for some Intel(R) Processors may allow a privileged user to potentially…
CVE-2021-0116 — CVSS 7.8 (high): Out-of-bounds write in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of…
CVE-2021-0117 — CVSS 7.8 (high): Pointer issues in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of privilege…
CVE-2020-0590 — CVSS 7.8 (high): Improper input validation in BIOS firmware for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of…
CVE-2021-0189 — CVSS 7.8 (high): Use of out-of-range pointer offset in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable…
CVE-2022-32231 — CVSS 7.5 (high): Improper initialization in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of…
CVE-2021-0118 — CVSS 6.7 (medium): Out-of-bounds read in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of…
CVE-2019-0152 — CVSS 6.7 (medium): Insufficient memory protection in System Management Mode (SMM) and Intel(R) TXT for certain Intel(R) Xeon(R) Processors may allow a…
CVE-2019-11136 — CVSS 6.7 (medium): Insufficient access control in system firmware for Intel(R) Xeon(R) Scalable Processors, 2nd Generation Intel(R) Xeon(R) Scalable…
CVE-2021-33124 — CVSS 6.7 (medium): Out-of-bounds write in the BIOS authenticated code module for some Intel(R) Processors may allow a privileged user to potentially enable…
CVE-2021-0125 — CVSS 6.6 (medium): Improper initialization in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of…
CVE-2021-0124 — CVSS 6.6 (medium): Improper access control in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of…
CVE-2018-12207 — CVSS 6.5 (medium): Improper invalidation for page table updates by a virtual guest operating system for multiple Intel(R) Processors may allow an…
CVE-2022-40982 — CVSS 6.5 (medium): Information exposure through microarchitectural state after transient execution in certain vector execution units for some Intel(R)…
CVE-2021-0119 — CVSS 6.2 (medium): Improper initialization in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of…
CVE-2022-21136 — CVSS 5.5 (medium): Improper input validation for some Intel(R) Xeon(R) Processors may allow a privileged user to potentially enable denial of service via…
CVE-2022-26373 — CVSS 5.5 (medium): Non-transparent sharing of return predictor targets between contexts in some Intel(R) Processors may allow an authorized user to…
CVE-2022-21131 — CVSS 5.5 (medium): Improper access control for some Intel(R) Xeon(R) Processors may allow an authenticated user to potentially enable information disclosure…
CVE-2019-14607 — CVSS 5.3 (medium): Improper conditions check in multiple Intel® Processors may allow an authenticated user to potentially enable partial escalation of…
CVE-2022-43505 — CVSS 4.1 (medium): Insufficient control flow management in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable…