7.8
CVE-2019-14570
- EPSS 0.06%
- Published 11.10.2019 18:15:11
- Last modified 21.11.2024 04:26:58
- Source secure@intel.com
- Teams watchlist Login
- Open Login
Memory corruption in system firmware for Intel(R) NUC may allow a privileged user to potentially enable escalation of privilege, denial of service and/or information disclosure via local access.
Data is provided by the National Vulnerability Database (NVD)
Intel ≫ Nuc 8 Mainstream Game Kit Firmware Version < inwhl357
Intel ≫ Nuc 8 Mainstream Game Mini Computer Firmware Version < inwhl357
Intel ≫ Nuc Board De3815tybe Firmware Version < ty0022
Intel ≫ Nuc Kit De3815tykhe Firmware Version < ty0022
Intel ≫ Nuc Board De3815tybe Firmware Version < ty0067
Intel ≫ Nuc Kit De3815tykhe Firmware Version < ty0067
Intel ≫ Nuc Kit Dn2820fykh Firmware Version < fy0069
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
Type | Source | Score | Percentile |
---|---|---|---|
EPSS | FIRST.org | 0.06% | 0.167 |
Source | Base Score | Exploit Score | Impact Score | Vector string |
---|---|---|---|---|
nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
nvd@nist.gov | 4.6 | 3.9 | 6.4 |
AV:L/AC:L/Au:N/C:P/I:P/A:P
|
CWE-787 Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.