7.8

CVE-2019-11085

Insufficient input validation in Kernel Mode Driver in Intel(R) i915 Graphics for Linux before version 5.0 may allow an authenticated user to potentially enable escalation of privilege via local access.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IntelI915 Firmware SwPlatformlinux Version < 5.0
   IntelI915 Version- SwPlatformlinux
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.48% 0.373
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 4.6 3.9 6.4
AV:L/AC:L/Au:N/C:P/I:P/A:P
CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00071.html
http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00048.html
https://usn.ubuntu.com/4118-1/
https://access.redhat.com/errata/RHSA-2019:1873
https://access.redhat.com/errata/RHSA-2019:1891
https://access.redhat.com/errata/RHSA-2019:1959
https://access.redhat.com/errata/RHSA-2019:1971
https://access.redhat.com/errata/RHSA-2020:0543
https://usn.ubuntu.com/4068-1/
https://usn.ubuntu.com/4068-2/
http://www.securityfocus.com/bid/108488
https://access.redhat.com/errata/RHSA-2020:0592
https://access.redhat.com/errata/RHSA-2020:0609
https://support.f5.com/csp/article/K09376613
Third Party Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00249.html
Patch
Vendor Advisory