Vulnerability CVE-2019-0119


Published: 2019-05-17

Description:
Buffer overflow vulnerability in system firmware for Intel(R) Xeon(R) Processor D Family, Intel(R) Xeon(R) Scalable Processor, Intel(R) Server Board, Intel(R) Server System and Intel(R) Compute Module may allow a privileged user to potentially enable escalation of privilege and/or denial of service via local access.

Type:

CWE-119

(Improper Restriction of Operations within the Bounds of a Memory Buffer)

CVSS2 => (AV:L/AC:L/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.2/10
10/10
3.9/10
Exploit range
Attack complexity
Authentication
Local
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Intel -> Hns2600kpr firmware 
Intel -> Mfs2600ki firmware 
Intel -> Xeon d-1623n firmware 
Intel -> Xeon d-2177nt firmware 
Intel -> Xeon processor d-1537 firmware 
Intel -> Hns2400lp firmware 
Intel -> Hns2600tp24r firmware 
Intel -> Mfs5000si firmware 
Intel -> Xeon d-1627 firmware 
Intel -> Xeon d-2183it firmware 
Intel -> Xeon processor d-1539 firmware 
Intel -> Hns2600bpb24 firmware 
Intel -> Hns2600tp24sr firmware 
Intel -> Mfs5520vir firmware 
Intel -> Xeon d-1633n firmware 
Intel -> Xeon d-2187nt firmware 
Intel -> Xeon processor d-1540 firmware 
Intel -> Hns2600bpb firmware 
Intel -> Hns2600tp24str firmware 
Intel -> Server board s1200sp firmware 
Intel -> Xeon d-1637 firmware 
Intel -> Xeon d-2191 firmware 
Intel -> Xeon processor d-1541 firmware 
Intel -> Hns2600bpblc24 firmware 
Intel -> Hns2600tp firmware 
Intel -> Server board s2600bp firmware 
Intel -> Xeon d-1649n firmware 
Intel -> Xeon gold processors firmware 
Intel -> Xeon processor d-1543n firmware 
Intel -> Hns2600bpblc firmware 
Intel -> Hns2600tpf firmware 
Intel -> Server board s2600cw firmware 
Intel -> Xeon d-1653n firmware 
Intel -> Xeon platinum processors firmware 
Intel -> Xeon processor d-1548 firmware 
Intel -> Hns2600bpq24 firmware 
Intel -> Hns2600tpfr firmware 
Intel -> Server board s2600kp firmware 
Intel -> Xeon d-2123it firmware 
Intel -> Xeon processor d-1513n firmware 
Intel -> Xeon processor d-1553n firmware 
Intel -> Hns2600bpq firmware 
Intel -> Hns2600tpnr firmware 
Intel -> Server board s2600st firmware 
Intel -> Xeon d-2141i firmware 
Intel -> Xeon processor d-1518 firmware 
Intel -> Xeon processor d-1557 firmware 
Intel -> Hns2600bps24 firmware 
Intel -> Hns2600tpr firmware 
Intel -> Server board s2600tp firmware 
Intel -> Xeon d-2142it firmware 
Intel -> Xeon processor d-1520 firmware 
Intel -> Xeon processor d-1559 firmware 
Intel -> Hns2600bps firmware 
Intel -> Hns2600wp firmware 
Intel -> Server board s2600wf firmware 
Intel -> Xeon d-2143it firmware 
Intel -> Xeon processor d-1521 firmware 
Intel -> Xeon processor d-1567 firmware 
Intel -> Hns2600jf firmware 
Intel -> Hns2600wpf firmware 
Intel -> Server board s2600wt firmware 
Intel -> Xeon d-2145nt firmware 
Intel -> Xeon processor d-1523n firmware 
Intel -> Xeon processor d-1571 firmware 
Intel -> Hns2600jff firmware 
Intel -> Hns2600wpq firmware 
Intel -> Server board s7200ap firmware 
Intel -> Xeon d-2146nt firmware 
Intel -> Xeon processor d-1527 firmware 
Intel -> Xeon processor d-1577 firmware 
Intel -> Hns2600jfq firmware 
Intel -> Hns7200ap firmware 
Intel -> Server system s9200wk firmware 
Intel -> Xeon d-2161i firmware 
Intel -> Xeon processor d-1528 firmware 
Intel -> Xeon silver processors firmware 
Intel -> Hns2600kp firmware 
Intel -> Hns7200apl firmware 
Intel -> Xeon bronze processors firmware 
Intel -> Xeon d-2163it firmware 
Intel -> Xeon processor d-1529 firmware 
Intel -> Hns2600kpf firmware 
Intel -> Hns7200apr firmware 
Intel -> Xeon d-1602 firmware 
Intel -> Xeon d-2166nt firmware 
Intel -> Xeon processor d-1531 firmware 
Intel -> Hns2600kpfr firmware 
Intel -> Hns7200aprl firmware 
Intel -> Xeon d-1622 firmware 
Intel -> Xeon d-2173it firmware 
Intel -> Xeon processor d-1533n firmware 

 References:
http://www.securityfocus.com/bid/108485
https://support.f5.com/csp/article/K85585101
https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00223.html

Copyright 2024, cxsecurity.com

 

Back to Top