Every CVE whose affected-product data names Netapp Fas/aff Bios, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (22)
CVE-2021-0099 — CVSS 7.8 (high): Insufficient control flow management in the firmware for some Intel(R) Processors may allow an authenticated user to potentially enable an…
CVE-2020-0590 — CVSS 7.8 (high): Improper input validation in BIOS firmware for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of…
CVE-2021-0156 — CVSS 7.8 (high): Improper input validation in the firmware for some Intel(R) Processors may allow an authenticated user to potentially enable an escalation…
CVE-2021-0117 — CVSS 7.8 (high): Pointer issues in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of privilege…
CVE-2021-0091 — CVSS 7.8 (high): Improper access control in the firmware for some Intel(R) Processors may allow an unauthenticated user to potentially enable an escalation…
CVE-2021-0116 — CVSS 7.8 (high): Out-of-bounds write in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of…
CVE-2021-33625 — CVSS 7.5 (high): An issue was discovered in Kernel 5.x in Insyde InsydeH2O, affecting HddPassword. Software SMI services that use the Communicate() function…
CVE-2021-0118 — CVSS 6.7 (medium): Out-of-bounds read in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of…
CVE-2021-0103 — CVSS 6.7 (medium): Insufficient control flow management in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an…
CVE-2021-0107 — CVSS 6.7 (medium): Unchecked return value in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of…
CVE-2021-0111 — CVSS 6.7 (medium): NULL pointer dereference in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of…
CVE-2021-0115 — CVSS 6.7 (medium): Buffer overflow in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via…
CVE-2020-8738 — CVSS 6.7 (medium): Improper conditions check in Intel BIOS platform sample code for some Intel(R) Processors before may allow a privileged user to potentially…
CVE-2021-0124 — CVSS 6.6 (medium): Improper access control in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of…
CVE-2021-0125 — CVSS 6.6 (medium): Improper initialization in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of…
CVE-2020-24511 — CVSS 6.5 (medium): Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information…
CVE-2021-0119 — CVSS 6.2 (medium): Improper initialization in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of…
CVE-2021-0145 — CVSS 5.5 (medium): Improper initialization of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information…
CVE-2021-33117 — CVSS 5.5 (medium): Improper access control for some 3rd Generation Intel(R) Xeon(R) Scalable Processors before BIOS version MR7, may allow a local attacker to…
CVE-2021-0092 — CVSS 4.4 (medium): Improper access control in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable a denial of service…
CVE-2021-0093 — CVSS 4.4 (medium): Incorrect default permissions in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable a denial of…
CVE-2020-24512 — CVSS 3.3 (low): Observable timing discrepancy in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via…