Buffer overflow in i40e driver for Intel(R) Ethernet 700 Series Controllers versions before 7.0 may allow an authenticated user to potentially enable an escalation of privilege via local access.
oryginał ENCVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HIntel Ethernet 700 Series Software
APPIntel< 24.0Intel Ethernet Controller 710 Bm1
HWIntelwszystkie wersjeIntel Ethernet Controller 710 Bm1 Firmware
OSIntel< 7.0Intel Ethernet Controller X710 At2
HWIntelwszystkie wersjeIntel Ethernet Controller X710 At2 Firmware
OSIntel< 7.0Intel Ethernet Controller X710 Bm2
HWIntelwszystkie wersjeIntel Ethernet Controller X710 Bm2 Firmware
OSIntel< 7.0Intel Ethernet Controller X710 Tm4
HWIntelwszystkie wersjeIntel Ethernet Controller X710 Tm4 Firmware
OSIntel< 7.0Intel Ethernet Controller Xxv710 Am1
HWIntelwszystkie wersjeIntel Ethernet Controller Xxv710 Am1 Firmware
OSIntel< 7.0Intel Ethernet Controller Xxv710 Am2
HWIntelwszystkie wersjeIntel Ethernet Controller Xxv710 Am2 Firmware
OSIntel< 7.0Linux Kernel
OSLinux4.6 – 4.9.244 (bez)4.10 – 4.14.205 (bez)4.15 – 4.19.139 (bez)4.20 – 5.2 (bez)
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
Tagi
Memory
CWE
Powiązane podatności
CVE-2025-10585CRITICAL9.8⚠ KEVPL ✓ten sam produkt
Type confusion w V8 (Google Chrome) — zdalne uszkodzenie sterty
CVE-2025-34028CRITICAL9.3⚠ KEVPL ✓ten sam produkt
Commvault Command Center – nieuwierzytelniony RCE przez path traversal w ZIP
CVE-2022-47986CRITICAL9.8⚠ KEVten sam produkt
IBM Aspera Faspex 4.4.2 Patch Level 1 and earlier could allow a remote attacker to execute arbitrary code on t...
CVE-2022-22954CRITICAL9.8⚠ KEVten sam produkt
VMware Workspace ONE Access and Identity Manager contain a remote code execution vulnerability due to server-s...
CVE-2020-4006CRITICAL9.1⚠ KEVten sam produkt
VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector address have a...