CVE-2019-14558 : Insufficient control flow management in BIOS firmware for 8th, 9th, 10th Generat

Insufficient control flow management in BIOS firmware for 8th, 9th, 10th Generation Intel(R) Core(TM), Intel(R) Celeron(R) Processor 4000 & 5000 Series Processors may allow an authenticated user to potentially enable denial of service via adjacent access.

Published 2020-10-05 14:15:13

Updated 2022-01-01 18:16:09

Source Intel Corporation

View at NVD, CVE.org

Vulnerability category: Denial of service

Products affected by CVE-2019-14558

Debian » Debian Linux » Version: 9.0
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Matching versions
Intel » Bios » Version: N/A
cpe:2.3:o:intel:bios:-:*:*:*:*:*:*:*
Matching versions
When used together with: Intel » Celeron 4205u » Version: N/A
When used together with: Intel » Celeron 4305u » Version: N/A
When used together with: Intel » Celeron 4305ue » Version: N/A
When used together with: Intel » Celeron 5205u » Version: N/A
When used together with: Intel » Celeron 5305u » Version: N/A
When used together with: Intel » Core I3 8100 » Version: N/A
When used together with: Intel » Core I3 8100f » Version: N/A
When used together with: Intel » Core I3 8100t » Version: N/A
When used together with: Intel » Core I3 8300 » Version: N/A
When used together with: Intel » Core I3 8300t » Version: N/A
When used together with: Intel » Core I3 8350k » Version: N/A
When used together with: Intel » Core I3 9100 » Version: N/A
When used together with: Intel » Core I3 9100f » Version: N/A
When used together with: Intel » Core I3 9100t » Version: N/A
When used together with: Intel » Core I3 9300 » Version: N/A
When used together with: Intel » Core I3 9300t » Version: N/A
When used together with: Intel » Core I3 9320 » Version: N/A
When used together with: Intel » Core I3 9350k » Version: N/A
When used together with: Intel » Core I3 9350kf » Version: N/A
When used together with: Intel » Core I5 8400 » Version: N/A
When used together with: Intel » Core I5 8400t » Version: N/A
When used together with: Intel » Core I5 8500 » Version: N/A
When used together with: Intel » Core I5 8500t » Version: N/A
When used together with: Intel » Core I5 8600 » Version: N/A
When used together with: Intel » Core I5 8600k » Version: N/A
When used together with: Intel » Core I5 8600t » Version: N/A
When used together with: Intel » Core I5 9400 » Version: N/A
When used together with: Intel » Core I5 9400f » Version: N/A
When used together with: Intel » Core I5 9400t » Version: N/A
When used together with: Intel » Core I5 9500 » Version: N/A
When used together with: Intel » Core I5 9500f » Version: N/A
When used together with: Intel » Core I5 9500t » Version: N/A
When used together with: Intel » Core I5 9600 » Version: N/A
When used together with: Intel » Core I5 9600k » Version: N/A
When used together with: Intel » Core I5 9600kf » Version: N/A
When used together with: Intel » Core I5 9600t » Version: N/A
When used together with: Intel » Core I7 1060g7 » Version: N/A
When used together with: Intel » Core I7 1060ng7 » Version: N/A
When used together with: Intel » Core I7 1065g7 » Version: N/A
When used together with: Intel » Core I7 1068ng7 » Version: N/A
When used together with: Intel » Core I7 8086k » Version: N/A
When used together with: Intel » Core I7 8700 » Version: N/A
When used together with: Intel » Core I7 8700k » Version: N/A
When used together with: Intel » Core I7 8700t » Version: N/A
When used together with: Intel » Core I7 9700 » Version: N/A
When used together with: Intel » Core I7 9700f » Version: N/A
When used together with: Intel » Core I7 9700k » Version: N/A
When used together with: Intel » Core I7 9700kf » Version: N/A
When used together with: Intel » Core I7 9700t » Version: N/A
When used together with: Intel » Core I9 9900 » Version: N/A
When used together with: Intel » Core I9 9900k » Version: N/A
When used together with: Intel » Core I9 9900kf » Version: N/A
When used together with: Intel » Core I9 9900ks » Version: N/A
When used together with: Intel » Core I9 9900t » Version: N/A

Exploit prediction scoring system (EPSS) score for CVE-2019-14558

EPSS FAQ

0.20%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 39 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2019-14558

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
2.7	LOW	AV:A/AC:L/Au:S/C:N/I:N/A:P	5.1	2.9	NIST
Access Vector: Adjacent Network Access Complexity: Low Authentication: Single Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial
5.7	MEDIUM	CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H	2.1	3.6	NIST
Attack Vector: Adjacent Network Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

References for CVE-2019-14558

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00356.html

INTEL-SA-00356
Vendor Advisory

CVEs referencing this url
https://lists.debian.org/debian-lts-announce/2021/04/msg00032.html

[SECURITY] [DLA 2645-1] edk2 security update
Mailing List;Third Party Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2019-14558

Products affected by CVE-2019-14558

Exploit prediction scoring system (EPSS) score for CVE-2019-14558

CVSS scores for CVE-2019-14558

References for CVE-2019-14558