Vulnerability Details : CVE-2019-0119
Buffer overflow vulnerability in system firmware for Intel(R) Xeon(R) Processor D Family, Intel(R) Xeon(R) Scalable Processor, Intel(R) Server Board, Intel(R) Server System and Intel(R) Compute Module may allow a privileged user to potentially enable escalation of privilege and/or denial of service via local access.
Vulnerability category: OverflowDenial of service
Exploit prediction scoring system (EPSS) score for CVE-2019-0119
Probability of exploitation activity in the next 30 days: 0.04%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 10 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2019-0119
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
7.2
|
HIGH | AV:L/AC:L/Au:N/C:C/I:C/A:C |
3.9
|
10.0
|
NIST |
6.7
|
MEDIUM | CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H |
0.8
|
5.9
|
NIST |
CWE ids for CVE-2019-0119
-
The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.Assigned by: nvd@nist.gov (Primary)
References for CVE-2019-0119
-
https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00223.html
INTEL-SA-00223Vendor Advisory
-
http://www.securityfocus.com/bid/108485
Intel Unified Extensible Firmware Interface Multiple Security Vulnerabilities
-
https://support.f5.com/csp/article/K85585101
Products affected by CVE-2019-0119
- cpe:2.3:o:intel:hns7200ap_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns7200apr_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1649n_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1633n_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1637_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1627_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1623n_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1622_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1653n_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1602_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-2141i_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-2177nt_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-2161i_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-2143it_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-2146nt_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-2145nt_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-2123it_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-2173it_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-2191_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-2187nt_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-2142it_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-2163it_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-2183it_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-2166nt_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_platinum_processors_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_gold_processors_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_silver_processors_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_bronze_processors_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:server_board_s2600wf_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:server_board_s2600bp_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:server_board_s2600st_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:server_board_s2600wt_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:server_board_s2600kp_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:server_board_s2600tp_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:server_board_s2600cw_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:server_board_s7200ap_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:server_board_s1200sp_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:server_system_s9200wk_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns2600bpq24_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns2600bps_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns2600bps24_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns7200apl_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns7200aprl_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns2600tp_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns2600tp24r_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns2600tp24sr_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns2600tp24str_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns2600tpf_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns2600tpfr_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns2600tpnr_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns2600tpr_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns2600kp_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns2600kpf_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns2600kpfr_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns2600kpr_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns2600bpb24_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns2600bpb_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns2600bpblc_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns2600bpblc24_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns2600bpq_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns2400lp_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns2600jf_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns2600jff_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns2600jfq_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns2600wp_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns2600wpf_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:hns2600wpq_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:mfs2600ki_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:mfs5000si_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:mfs5520vir_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1533n_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1513n_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1543n_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1523n_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1553n_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1539_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1529_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1559_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1557_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1567_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1577_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1571_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1528_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1541_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1518_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1521_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1531_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1548_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1527_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1537_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1520_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:intel:xeon_d-1540_firmware:-:*:*:*:*:*:*:*