7.8
CVE-2019-11094
- EPSS 0.07%
- Veröffentlicht 17.05.2019 16:29:03
- Zuletzt bearbeitet 21.11.2024 04:20:31
- Quelle secure@intel.com
- Teams Watchlist Login
- Unerledigt Login
Insufficient input validation in system firmware for Intel (R) NUC Kit may allow an authenticated user to potentially enable escalation of privilege, denial of service, and/or information disclosure via local access.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Intel ≫ Nuc Kit Firmware Version-
Intel ≫ Nuc Kit D33217gke Version-
Intel ≫ Nuc Kit D53427rke Version-
Intel ≫ Nuc Kit D54250wyb Version-
Intel ≫ Nuc Kit De3815tybe Version-
Intel ≫ Nuc Kit Dn2820fykh Version-
Intel ≫ Nuc Kit Nuc5cpyh Version-
Intel ≫ Nuc Kit Nuc5i3myhe Version-
Intel ≫ Nuc Kit Nuc5i5myhe Version-
Intel ≫ Nuc Kit Nuc5i7ryh Version-
Intel ≫ Nuc Kit Nuc5pgyh Version-
Intel ≫ Nuc Kit Nuc6cays Version-
Intel ≫ Nuc Kit Nuc6i5syh Version-
Intel ≫ Nuc Kit Nuc6i7kyk Version-
Intel ≫ Nuc Kit Nuc7cjyh Version-
Intel ≫ Nuc Kit Nuc7i3dnhe Version-
Intel ≫ Nuc Kit Nuc7i5dnke Version-
Intel ≫ Nuc Kit Nuc7i7bnh Version-
Intel ≫ Nuc Kit Nuc7i7dnke Version-
Intel ≫ Nuc Kit Nuc8i7hnk Version-
Intel ≫ Nuc Kit D53427rke Version-
Intel ≫ Nuc Kit D54250wyb Version-
Intel ≫ Nuc Kit De3815tybe Version-
Intel ≫ Nuc Kit Dn2820fykh Version-
Intel ≫ Nuc Kit Nuc5cpyh Version-
Intel ≫ Nuc Kit Nuc5i3myhe Version-
Intel ≫ Nuc Kit Nuc5i5myhe Version-
Intel ≫ Nuc Kit Nuc5i7ryh Version-
Intel ≫ Nuc Kit Nuc5pgyh Version-
Intel ≫ Nuc Kit Nuc6cays Version-
Intel ≫ Nuc Kit Nuc6i5syh Version-
Intel ≫ Nuc Kit Nuc6i7kyk Version-
Intel ≫ Nuc Kit Nuc7cjyh Version-
Intel ≫ Nuc Kit Nuc7i3dnhe Version-
Intel ≫ Nuc Kit Nuc7i5dnke Version-
Intel ≫ Nuc Kit Nuc7i7bnh Version-
Intel ≫ Nuc Kit Nuc7i7dnke Version-
Intel ≫ Nuc Kit Nuc8i7hnk Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.07% | 0.173 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 4.6 | 3.9 | 6.4 |
AV:L/AC:L/Au:N/C:P/I:P/A:P
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.