CVE-2019-11136
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
14/11/2019
Last modified:
07/11/2023
Description
Insufficient access control in system firmware for Intel(R) Xeon(R) Scalable Processors, 2nd Generation Intel(R) Xeon(R) Scalable Processors and Intel(R) Xeon(R) Processors D Family may allow a privileged user to potentially enable escalation of privilege, denial of service and/or information disclosure via local access.
Impact
Base Score 3.x
6.70
Severity 3.x
MEDIUM
Base Score 2.0
4.60
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:intel:xeon_platinum_8253_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:intel:xeon_platinum_8253:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:intel:xeon_platinum_8256_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:intel:xeon_platinum_8256:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:intel:xeon_platinum_8260_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:intel:xeon_platinum_8260:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:intel:xeon_platinum_8276_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:intel:xeon_platinum_8276:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:intel:xeon_platinum_8276m_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:intel:xeon_platinum_8276m:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:intel:xeon_platinum_8276l_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:intel:xeon_platinum_8276l:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:intel:xeon_platinum_8280l_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:intel:xeon_platinum_8280l:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:intel:xeon_platinum_8260l_firmware:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page