CVEリスト - 高リスク・悪用確認済み脆弱性

NVD や CVE、ほか複数の脅威フィードを束ね、RCE など高リスクな事象を深く追える一覧です。CVSS と EPSS を組み合わせ、Exploit 参照や PoC の有無から悪用しやすさを追跡します。ベンダー修正や緩和策の文脈とあわせて優先度を決め、対応サイクルを短く保ちつつ重要資産を守る支援をします。

Assigner(CNA/発行元):[email protected] この条件を外す

CVSS スコア
表示中 6180 / 4155
CVE 説明 CVSS 最大値 EPSS(%) 公開 更新
CVE-2025-20611 Exposure of sensitive information to an unauthorized actor for some Edge Orchestrator software for Intel(R) Tiber™ Edge Platform may allow an authenticated user to potentially enable information disclosure via local access. 5.7 0.06% 2025-05-13 2026-06-17
CVE-2025-20052 Improper access control for some Intel(R) Graphics software may allow an authenticated user to potentially enable denial of service via local access. 6.9 0.06% 2025-05-13 2026-06-17
CVE-2024-33607 Out-of-bounds read in some Intel(R) TDX module software before version TDX_1.5.07.00.774 may allow an authenticated user to potentially enable information disclosure via local access. 5.7 0.06% 2025-08-12 2026-06-17
CVE-2025-32004 Improper input validation in the Intel Edger8r Tool for some Intel(R) SGX SDK may allow an authenticated user to potentially enable escalation of privilege via local access. 1.8 0.07% 2025-08-12 2026-06-17
CVE-2025-20077 Missing release of memory after effective lifetime in the UEFI OobRasMmbiHandlerDriver module for some Intel(R) reference server platforms may allow a privileged user to enable denial of service via local access. 5.6 0.07% 2025-08-12 2026-06-17
CVE-2024-36262 Race condition in some Intel(R) System Security Report and System Resources Defense firmware may allow a privileged user to potentially enable escalation of privilege via local access. 8.6 0.07% 2025-02-12 2026-06-17
CVE-2025-27725 Time-of-check time-of-use race condition for some ACAT before version 3.13 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable denial of service. This result may potentially occur via local access when attack requirements are not present without special internal knowledge and requires active user interaction. The potential vulnerability may impact the confidentiality (none), i 4.1 0.07% 2025-11-11 2026-06-17
CVE-2025-24308 Improper input validation in the UEFI firmware error handler for the Intel(R) Server D50DNP and M50FCP may allow a privileged user to potentially enable escalation of privilege via local access. 8.7 0.07% 2025-05-13 2026-06-17
CVE-2025-21096 Improper buffer restrictions in the firmware for some Intel(R) TDX may allow a privileged user to potentially enable escalation of privilege via local access. 1.8 0.07% 2025-08-12 2026-06-17
CVE-2025-21094 Improper input validation in the UEFI firmware DXE module for the Intel(R) Server D50DNP and M50FCP boards may allow a privileged user to potentially enable escalation of privilege via local access. 8.7 0.07% 2025-05-13 2026-06-17
CVE-2025-20109 Improper Isolation or Compartmentalization in the stream cache mechanism for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege via local access. 7.3 0.07% 2025-08-12 2026-06-17
CVE-2024-36292 Improper buffer restrictions for some Intel(R) Data Center GPU Flex Series for Windows driver before version 31.0.101.4314 may allow an authenticated user to potentially enable denial of service via local access. 8.2 0.07% 2025-05-13 2026-06-17
CVE-2025-21100 Improper initialization in the UEFI firmware for the Intel(R) Server D50DNP and M50FCP boards may allow a privileged user to potentially enable information disclosure via local access. 5.6 0.07% 2025-05-13 2026-06-17
CVE-2025-20101 Out-of-bounds read for some Intel(R) Graphics Drivers may allow an authenticated user to potentially enable information disclosure or denial of service via local access. 6.9 0.07% 2025-05-13 2026-06-17
CVE-2025-20034 Improper input validation in the BackupBiosUpdate UEFI firmware SmiVariable driver for the Intel(R) Server D50DNP and M50FCP boards before version R01.02.0003 may allow a privileged user to potentially enable information disclosure via local access. 5.6 0.07% 2025-05-13 2026-06-17
CVE-2025-20009 Improper input validation in the UEFI firmware GenerationSetup module for the Intel(R) Server D50DNP and M50FCP boards may allow a privileged user to potentially enable information disclosure via local access. 5.6 0.07% 2025-05-13 2026-06-17
CVE-2025-31944 Race condition for some TDX Module before version tdx1.5 within Ring 0: Hypervisor may allow a denial of service. Authorized adversary with a privileged user combined with a high complexity attack may enable denial of service. This result may potentially occur via local access when attack requirements are present without special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (none), integrity (none) and availability (high) of the v 5.6 0.07% 2026-02-10 2026-06-17
CVE-2025-24835 Protection mechanism failure in the Intel(R) Graphics Driver for the Intel(R) Arc(TM) B-Series graphics before version 32.0.101.6737 may allow an authenticated user to potentially enable denial of service via local access. 4.1 0.07% 2025-08-12 2026-06-17
CVE-2025-24520 Insertion of sensitive information into log file for some Intel(R) Local Manageability Service software before version 2514.7.16.0 may allow an authenticated user to potentially enable information disclosure via local access. 4.8 0.07% 2025-08-12 2026-06-17
CVE-2025-24515 NULL pointer dereference for some Intel(R) Graphics Drivers may allow an authenticated user to potentially enable denial of service via local access. 6.8 0.07% 2025-08-12 2026-06-17
cvelogic Threat Intelligence