Intel Xeon Gold 5315y Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Intel Xeon Gold 5315y Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (18)
CVE-2023-23583 — CVSS 8.8 (high): Sequence of processor instructions leads to unexpected behavior for some Intel(R) Processors may allow an authenticated user to potentially…
CVE-2021-33123 — CVSS 7.8 (high): Improper access control in the BIOS authenticated code module for some Intel(R) Processors may allow a privileged user to potentially…
CVE-2021-0159 — CVSS 7.8 (high): Improper input validation in the BIOS authenticated code module for some Intel(R) Processors may allow a privileged user to potentially…
CVE-2021-33060 — CVSS 7.8 (high): Out-of-bounds write in the BIOS firmware for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of…
CVE-2022-32231 — CVSS 7.5 (high): Improper initialization in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of…
CVE-2022-21216 — CVSS 7.5 (high): Insufficient granularity of access control in out-of-band management in some Intel(R) Atom and Intel Xeon Scalable Processors may allow a…
CVE-2022-30539 — CVSS 7.5 (high): Use after free in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege…
CVE-2022-41804 — CVSS 7.2 (high): Unauthorized error injection in Intel(R) SGX or Intel(R) TDX for some Intel(R) Xeon(R) Processors may allow a privileged user to…
CVE-2022-33196 — CVSS 7.2 (high): Incorrect default permissions in some memory controller configurations for some Intel(R) Xeon(R) Processors when using Intel(R) Software…
CVE-2021-33124 — CVSS 6.7 (medium): Out-of-bounds write in the BIOS authenticated code module for some Intel(R) Processors may allow a privileged user to potentially enable…
CVE-2021-0186 — CVSS 6.7 (medium): Improper input validation in the Intel(R) SGX SDK applications compiled for SGX2 enabled processors may allow a privileged user to…
CVE-2022-40982 — CVSS 6.5 (medium): Information exposure through microarchitectural state after transient execution in certain vector execution units for some Intel(R)…
CVE-2022-33972 — CVSS 6.1 (medium): Incorrect calculation in microcode keying mechanism for some 3rd Generation Intel(R) Xeon(R) Scalable Processors may allow a privileged…
CVE-2022-38090 — CVSS 6.0 (medium): Improper isolation of shared resources in some Intel(R) Processors when using Intel(R) Software Guard Extensions may allow a privileged…
CVE-2023-23908 — CVSS 6.0 (medium): Improper access control in some 3rd Generation Intel(R) Xeon(R) Scalable processors may allow a privileged user to potentially enable…
CVE-2022-21151 — CVSS 5.5 (medium): Processor optimization removal or modification of security-critical code for some Intel(R) Processors may allow an authenticated user to…
CVE-2022-43505 — CVSS 4.1 (medium): Insufficient control flow management in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable…
CVE-2021-0187 — CVSS 3.2 (low): Improper access control in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation…