GCVE - cpe:2.3:h:intel:core_i7:920xm:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:h:intel:core_i7:920xm:*:*:*:*:*:*:*

part: h version: 920xm update: *

Vendor	Intel (`929cab12-ac81-57b7-8a87-14c6f331cefb`)
Product	Core I7 (`484a0fb7-6f86-57cd-9359-b54277b09ce0`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2021-0144`	vulnerable	2026-06-08 05:28:08.119749	Details available Insecure default variable initialization for the Intel BSSA DFT feature may allow a privileged user to potentially enable an escalation of privilege via local access. Published: 2021-07-14T13:23:25.000Z Updated: 2024-08-03T15:32:09.934Z Open on db.gcve.eu Reference links https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00525.html https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00527.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-0114`	vulnerable	2026-06-08 05:28:05.451231	Details available Unchecked return value in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of privilege via local access. Published: 2021-08-16T18:36:49.000Z Updated: 2024-08-03T15:32:09.290Z Open on db.gcve.eu Reference links https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00527.html https://security.netapp.com/advisory/ntap-20220210-0007/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-9056`	vulnerable	2026-06-08 05:12:07.082249	Details available Systems with microprocessors utilizing speculative execution may allow unauthorized disclosure of information to an attacker with local user access via a side-channel attack on the directional branch predictor, as demonstrated by a pattern history table (PHT), aka BranchScope. Published: 2018-03-27T17:00:00.000Z Updated: 2024-08-05T07:10:47.460Z Open on db.gcve.eu Reference links http://www.cs.ucr.edu/~nael/pubs/asplos18.pdf https://arstechnica.com/gadgets/2018/03/its-not-just-spectre-researchers-reveal-more-branch-prediction-attacks/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-3693`	vulnerable	2026-06-08 05:11:40.937318	Details available Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a speculative buffer overflow and side-channel analysis. Published: 2018-07-10T21:00:00.000Z Updated: 2024-08-05T04:50:30.557Z Open on db.gcve.eu Reference links https://access.redhat.com/errata/RHSA-2018:2390 https://access.redhat.com/errata/RHSA-2018:2395 https://access.redhat.com/errata/RHSA-2018:2384 https://access.redhat.com/errata/RHSA-2019:1946 https://access.redhat.com/errata/RHSA-2020:0174	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-3665`	vulnerable	2026-06-08 05:11:40.765090	Details available System software utilizing Lazy FP state restore technique on systems using Intel Core-based microprocessors may potentially allow a local process to infer data from another process through a speculative execution side channel. Published: 2018-06-21T20:00:00.000Z Updated: 2024-09-17T01:01:36.405Z Open on db.gcve.eu Reference links https://lists.debian.org/debian-lts-announce/2018/07/msg00015.html https://access.redhat.com/errata/RHSA-2018:2164 https://usn.ubuntu.com/3696-1/ http://www.securitytracker.com/id/1041125 https://lists.debian.org/debian-lts-announce/2018/07/msg00016.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-3646`	vulnerable	2026-06-08 05:11:40.617036	Details available Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access with guest OS privilege via a terminal page fault and a side-channel analysis. Published: 2018-08-14T19:00:00.000Z Updated: 2026-05-29T20:10:40.370Z Open on db.gcve.eu Reference links https://www.kb.cert.org/vuls/id/982149 http://www.securitytracker.com/id/1041451 https://security.gentoo.org/glsa/201810-06 https://usn.ubuntu.com/3741-2/ https://access.redhat.com/errata/RHSA-2018:2393	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-3632`	not_vulnerable	2026-06-08 05:11:39.892988	Details available Memory corruption in Intel Active Management Technology in Intel Converged Security Manageability Engine Firmware 6.x / 7.x / 8.x / 9.x / 10.x / 11.0 / 11.5 / 11.6 / 11.7 / 11.10 / 11.20 could be triggered by an attacker with local administrator permission on the system. Published: 2018-07-10T21:00:00.000Z Updated: 2024-08-05T04:50:30.208Z Open on db.gcve.eu Reference links http://www.securitytracker.com/id/1041362 https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00112.html https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03868en_us https://security.netapp.com/advisory/ntap-20190327-0001/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-3629`	not_vulnerable	2026-06-08 05:11:39.858178	Details available Buffer overflow in event handler in Intel Active Management Technology in Intel Converged Security Manageability Engine Firmware 3.x, 4.x, 5.x, 6.x, 7.x, 8.x, 9.x, 10.x, and 11.x may allow an attacker to cause a denial of service via the same subnet. Published: 2018-07-10T21:00:00.000Z Updated: 2024-08-05T04:50:30.326Z Open on db.gcve.eu Reference links http://www.securitytracker.com/id/1041362 https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00112.html https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03868en_us https://security.netapp.com/advisory/ntap-20190327-0001/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-3628`	not_vulnerable	2026-06-08 05:11:39.769611	Details available Buffer overflow in HTTP handler in Intel Active Management Technology in Intel Converged Security Manageability Engine Firmware 3.x, 4.x, 5.x, 6.x, 7.x, 8.x, 9.x, 10.x, and 11.x may allow an attacker to execute arbitrary code via the same subnet. Published: 2018-07-10T21:00:00.000Z Updated: 2024-08-05T04:50:30.347Z Open on db.gcve.eu Reference links http://www.securitytracker.com/id/1041362 https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00112.html https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03868en_us https://security.netapp.com/advisory/ntap-20190327-0001/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-3620`	vulnerable	2026-06-08 05:11:39.465896	Details available Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access via a terminal page fault and a side-channel analysis. Published: 2018-08-14T19:00:00.000Z Updated: 2026-05-29T20:11:15.073Z Open on db.gcve.eu Reference links https://www.kb.cert.org/vuls/id/982149 http://www.securitytracker.com/id/1041451 https://security.gentoo.org/glsa/201810-06 https://usn.ubuntu.com/3741-2/ https://access.redhat.com/errata/RHSA-2018:2393	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-5754`	vulnerable	2026-06-08 05:09:49.695040	Details available Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache. Published: 2018-01-04T13:00:00.000Z Updated: 2026-05-28T17:53:08.980Z Open on db.gcve.eu Reference links http://nvidia.custhelp.com/app/answers/detail/a_id/4609 https://usn.ubuntu.com/3523-1/ https://usn.ubuntu.com/usn/usn-3525-1/ https://www.codeaurora.org/security-bulletin/2018/07/02/july-2018-code-aurora-security-bulletin https://security.gentoo.org/glsa/201810-06	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-5753`	vulnerable	2026-06-08 05:09:49.335389	Details available Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis. Published: 2018-01-04T13:00:00.000Z Updated: 2026-05-28T18:00:56.175Z Open on db.gcve.eu Reference links http://nvidia.custhelp.com/app/answers/detail/a_id/4609 https://lists.debian.org/debian-lts-announce/2018/07/msg00015.html https://www.debian.org/security/2018/dsa-4187 https://usn.ubuntu.com/3542-2/ https://security.gentoo.org/glsa/201810-06	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-5715`	vulnerable	2026-06-08 05:09:48.908949	Details available Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis. Published: 2018-01-04T13:00:00.000Z Updated: 2025-05-06T14:59:36.405Z Open on db.gcve.eu Reference links http://nvidia.custhelp.com/app/answers/detail/a_id/4609 https://usn.ubuntu.com/3560-1/ https://lists.debian.org/debian-lts-announce/2018/07/msg00015.html https://www.debian.org/security/2018/dsa-4187 https://usn.ubuntu.com/3542-2/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.