Intel Core i7-11850H

Potential buffer overflow in unsafe UEFI variable handling in Phoenix SecureCore™ for select Intel platforms This issue affects: Phoenix SecureCore™ for Intel Kaby Lake: from 4.0.1.1 before 4.0.1.998; Phoenix SecureCore™ for Intel Coffee Lake: from 4.1.0.1 before 4.1.0.562; Phoenix SecureCore™ for Intel Ice Lake: from 4.2.0.1 before 4.2.0.323; Phoenix SecureCore™ for Intel Comet Lake: from 4.2.1.1 before 4.2.1.287; Phoenix SecureCore™ for Intel Tiger Lake: from 4.3.0.1 before 4.3.0.236; Phoenix SecureCore™ for Intel Jasper Lake: from 4.3.1.1 before 4.3.1.184; Phoenix SecureCore™ for Intel Alder Lake: from 4.4.0.1 before 4.4.0.269; Phoenix SecureCore™ for Intel Raptor Lake: from 4.5.0.1 before 4.5.0.218; Phoenix SecureCore™ for Intel Meteor Lake: from 4.5.1.1 before 4.5.1.15.

Published: 2024-05-14T14:56:25.578Z
Updated: 2025-07-28T20:53:10.827Z

Out-of-bounds read in the BIOS firmware for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege via adjacent access.

Published: 2023-11-14T19:05:06.822Z
Updated: 2025-02-13T16:44:38.159Z

Sequence of processor instructions leads to unexpected behavior for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege and/or information disclosure and/or denial of service via local access.

Published: 2023-11-14T19:04:24.927Z
Updated: 2025-12-16T18:23:24.391Z

Improper input validation in the BIOS firmware for some Intel(R) Processors may allow an authenticated user to potentially enable denial of service via adjacent access.

Published: 2023-11-14T19:05:07.366Z
Updated: 2025-02-13T16:43:50.489Z

Improper input validation in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via adjacent access.

Published: 2023-08-11T02:37:00.887Z
Updated: 2025-02-13T16:33:41.662Z

Information exposure through microarchitectural state after transient execution in certain vector execution units for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

Published: 2023-08-11T02:37:05.423Z
Updated: 2025-02-13T16:33:03.126Z

Improper initialization in the Intel(R) TXT SINIT ACM for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

Published: 2023-02-16T19:59:58.556Z
Updated: 2025-01-27T18:21:23.512Z

Improper input validation in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

Published: 2023-02-16T19:59:58.036Z
Updated: 2025-01-27T18:21:34.067Z

Non-transparent sharing of return predictor targets between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.

Published: 2022-08-18T00:00:00.000Z
Updated: 2025-05-05T16:22:27.550Z

Improper isolation of shared resources in some Intel(R) Processors may allow a privileged user to potentially enable information disclosure via local access.

Published: 2022-08-18T00:00:00.000Z
Updated: 2025-05-05T16:34:42.536Z

Time-of-check time-of-use race condition in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

Published: 2022-11-11T15:49:10.831Z
Updated: 2025-02-04T17:58:34.848Z

Sensitive information accessible by physical probing of JTAG interface for some Intel(R) Processors with SGX may allow an unprivileged user to potentially enable information disclosure via physical access.

Published: 2022-05-12T16:36:04.000Z
Updated: 2025-05-05T16:43:56.233Z

Hardware debug modes and processor INIT setting that allow override of locks for some Intel(R) Processors in Intel(R) Boot Guard and Intel(R) TXT may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

Published: 2022-05-12T16:36:02.000Z
Updated: 2025-05-05T16:44:05.603Z

Non-transparent sharing of branch predictor within a context in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.

Published: 2022-03-11T17:54:36.000Z
Updated: 2025-05-05T16:44:17.326Z

Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.

Published: 2022-03-11T00:00:00.000Z
Updated: 2025-05-05T16:44:34.239Z

Hardware allows activation of test or debug logic at runtime for some Intel(R) Trace Hub instances which may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

Published: 2022-03-11T17:54:37.000Z
Updated: 2025-05-05T16:47:21.311Z

Insufficient control flow management in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable aescalation of privilege via local access.

Published: 2022-05-12T16:36:10.000Z
Updated: 2025-05-05T16:49:16.994Z

Unintended intermediary in the BIOS authenticated code module for some Intel(R) Processors may allow a privileged user to potentially enable aescalation of privilege via local access.

Published: 2022-05-12T16:36:12.000Z
Updated: 2025-05-05T16:51:03.664Z

Improper input validation in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

Published: 2021-11-17T19:06:54.000Z
Updated: 2024-08-03T15:32:09.218Z

Insufficient control flow management in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

Published: 2021-11-17T19:05:08.000Z
Updated: 2024-08-03T15:32:09.866Z

Improper input validation in the firmware for some Intel(R) Processors may allow an authenticated user to potentially enable an escalation of privilege via local access.

Published: 2022-02-09T22:04:17.000Z
Updated: 2025-05-05T16:59:18.916Z

Improper initialization of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

Published: 2022-02-09T22:04:13.000Z
Updated: 2025-05-05T17:00:08.609Z

Insecure default variable initialization for the Intel BSSA DFT feature may allow a privileged user to potentially enable an escalation of privilege via local access.

Published: 2021-07-14T13:23:25.000Z
Updated: 2024-08-03T15:32:09.934Z

Insufficient control flow management in some Intel(R) Processors may allow an authenticated user to potentially enable a denial of service via local access.

Published: 2022-02-09T22:04:16.000Z
Updated: 2025-05-05T17:00:19.518Z

Improper initialization in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via physical access.

Published: 2022-02-09T22:04:13.000Z
Updated: 2025-05-05T17:00:39.420Z

Improper access control in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via physical access.

Published: 2022-02-09T22:04:15.000Z
Updated: 2025-05-05T17:00:49.030Z

Improper initialization in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via physical access.

Published: 2022-02-09T22:04:12.000Z
Updated: 2025-05-05T17:00:57.745Z

Out-of-bounds read in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of privilege via local access.

Published: 2022-02-09T22:04:14.000Z
Updated: 2025-05-05T17:01:07.802Z

Pointer issues in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of privilege via local access.

Published: 2022-02-09T22:04:06.000Z
Updated: 2025-05-05T17:01:17.520Z

Out-of-bounds write in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of privilege via local access.

Published: 2022-02-09T22:04:11.000Z
Updated: 2025-05-05T17:01:27.244Z

Buffer overflow in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

Published: 2022-02-09T22:04:08.000Z
Updated: 2025-05-05T17:01:36.602Z

Unchecked return value in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of privilege via local access.

Published: 2021-08-16T18:36:49.000Z
Updated: 2024-08-03T15:32:09.290Z

NULL pointer dereference in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of privilege via local access.

Published: 2022-02-09T22:04:07.000Z
Updated: 2025-05-05T17:01:48.091Z

Unchecked return value in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

Published: 2022-02-09T22:04:10.000Z
Updated: 2025-05-05T17:01:58.696Z

Insufficient control flow management in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable an escalation of privilege via local access.

Published: 2022-02-09T22:04:05.000Z
Updated: 2025-05-05T17:02:09.572Z

Insufficient control flow management in the firmware for some Intel(R) Processors may allow an authenticated user to potentially enable an escalation of privilege via local access.

Published: 2022-02-09T22:04:01.000Z
Updated: 2025-05-05T17:02:20.230Z

Improper initialization in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable a denial of service via local access.

Published: 2021-06-09T18:50:47.000Z
Updated: 2024-08-03T15:25:01.787Z

Incorrect default permissions in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable a denial of service via local access.

Published: 2022-02-09T22:04:03.000Z
Updated: 2025-05-05T17:02:32.437Z

Improper access control in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable a denial of service via local access.

Published: 2022-02-09T22:04:05.000Z
Updated: 2025-05-05T17:02:43.731Z

Improper access control in the firmware for some Intel(R) Processors may allow an unauthenticated user to potentially enable an escalation of privilege via local access.

Published: 2022-02-09T22:04:04.000Z
Updated: 2025-05-05T17:02:54.173Z

Insufficient compartmentalization in HECI subsystem for the Intel(R) SPS before versions SPS_E5_04.01.04.516.0, SPS_E5_04.04.04.033.0, SPS_E5_04.04.03.281.0, SPS_E5_03.01.03.116.0, SPS_E3_05.01.04.309.0, SPS_02.04.00.101.0, SPS_SoC-A_05.00.03.114.0, SPS_SoC-X_04.00.04.326.0, SPS_SoC-X_03.00.03.117.0, IGN_E5_91.00.00.167.0, SPS_PHI_03.01.03.078.0 may allow an authenticated user to potentially enable escalation of privilege via physical access.

Published: 2022-02-09T22:04:02.000Z
Updated: 2025-05-05T17:03:37.407Z

Improper buffer restrictions in a subsystem in the Intel(R) CSME versions before 11.8.86, 11.12.86, 11.22.86, 12.0.81, 13.0.47, 13.30.17, 14.1.53, 14.5.32 and 15.0.22 may allow a privileged user to potentially enable escalation of privilege via local access.

Published: 2021-06-09T18:48:39.000Z
Updated: 2024-08-04T10:03:46.284Z

Improper input validation in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

Published: 2021-06-09T18:50:30.000Z
Updated: 2024-08-04T10:03:46.323Z

Race condition in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

Published: 2021-06-09T18:50:23.000Z
Updated: 2024-08-04T10:03:46.319Z

Modification of assumed-immutable data in subsystem in Intel(R) CSME versions before 13.0.47, 13.30.17, 14.1.53, 14.5.32, 15.0.22 may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

Published: 2021-06-09T18:47:56.000Z
Updated: 2024-08-04T15:12:09.005Z

Improper initialization in a subsystem in the Intel(R) CSME versions before 11.8.86, 11.12.86, 11.22.86, 12.0.81, 13.0.47, 13.30.17, 14.1.53, 14.5.32, 13.50.11 and 15.0.22 may allow a privileged user to potentially enable information disclosure via local access.

Published: 2021-06-09T18:47:46.000Z
Updated: 2024-08-04T15:12:09.009Z

Incomplete cleanup in some Intel(R) VT-d products may allow an authenticated user to potentially enable escalation of privilege via local access.

Published: 2021-06-09T19:59:51.000Z
Updated: 2024-08-04T15:12:09.228Z

Improper input validation in the firmware for some Intel(R) Processors may allow an authenticated user to potentially enable denial of service via local access.

Published: 2021-06-09T18:53:45.000Z
Updated: 2024-08-04T15:12:09.087Z

Out of bounds read in the firmware for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege via local access.

Published: 2021-06-09T18:53:39.000Z
Updated: 2024-08-04T11:56:51.566Z

Insufficient control flow management in the firmware for some Intel(R) Processors may allow an unauthenticated user to potentially enable escalation of privilege via physical access.

Published: 2021-06-09T18:50:35.000Z
Updated: 2024-08-04T11:56:51.555Z

Out of bounds write in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable denial of service via local access.

Published: 2021-06-09T18:50:41.000Z
Updated: 2024-08-04T11:56:51.411Z

Improper initialization in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.

Published: 2021-06-09T18:49:02.000Z
Updated: 2024-08-04T11:56:51.310Z

In psi_write of psi.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-148159562References: Upstream kernel

Published: 2020-05-14T20:10:20.000Z
Updated: 2024-08-04T05:47:40.797Z