3rd gen intel xeon scalable processor family
This hub aggregates every CVE we track for 3rd gen intel xeon scalable processor family, a product in the hardware firmware space. Use it to gauge the current risk picture and drill into individual advisories.
12
CVEs tracked
1
Critical
4
High
0
In CISA KEV
Severity distribution
MEDIUM6HIGH4LOW1CRITICAL1
Monthly trend
1
0
0
0
0
0
0
0
0
0
0
0
1
0
0
0
0
0
0
0
0
0
0
0
2024-082026-07
Latest CVEs
The 12 most recently published vulnerabilities affecting 3rd gen intel xeon scalable processor family.
- CVE-2025-20067Observable timing discrepancy in firmware for some Intel(R) CSME and Intel(R) SPS may allow a privileged user to potentially enable information disclosure via local access.6.0
- CVE-2024-24853Incorrect behavior order in transition between executive monitor and SMI transfer monitor (STM) in some Intel(R) Processor may allow a privileged user to potentially enable escalation of privilege ...7.2
- CVE-2023-23583Sequence of processor instructions leads to unexpected behavior for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege and/or information disclos...8.8
- CVE-2021-0159Improper input validation in the BIOS authenticated code module for some Intel(R) Processors may allow a privileged user to potentially enable aescalation of privilege via local access.7.8
- CVE-2021-33123Improper access control in the BIOS authenticated code module for some Intel(R) Processors may allow a privileged user to potentially enable aescalation of privilege via local access.7.8
- CVE-2022-0005Sensitive information accessible by physical probing of JTAG interface for some Intel(R) Processors with SGX may allow an unprivileged user to potentially enable information disclosure via physical...2.4
- CVE-2022-0002Non-transparent sharing of branch predictor within a context in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.6.5
- CVE-2022-0001Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.6.5
- CVE-2021-0186Improper input validation in the Intel(R) SGX SDK applications compiled for SGX2 enabled processors may allow a privileged user to potentially escalation of privilege via local access.6.7
- CVE-2021-0158Improper input validation in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.6.7
- CVE-2021-0157Insufficient control flow management in the BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.6.7
- CVE-2021-39296In OpenBMC 2.9, crafted IPMI messages allow an attacker to bypass authentication and gain full control of the system.10.0
Product normalization is registry-driven with AI assist and human review. How it works