CVE-2019-0139

Published: Nov 14, 2019Modified: Jun 17, 2026

6.7

Vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Exploitability: 0.8 / Impact: 5.9

Source: NVD

Description

Insufficient access control in firmware for Intel(R) Ethernet 700 Series Controllers before version 7.0 may allow a privileged user to potentially enable an escalation of privilege, denial of service, or information disclosure via local access.

Affected (7)

Products: Intel: Ethernet Controller X710 Tm4 Firmware, Ethernet Controller X710 At2 Firmware, Ethernet Controller Xxv710 Am2 Firmware, Ethernet Controller Xxv710 Am1 Firmware, Ethernet Controller X710 Bm2 Firmware, Ethernet Controller 710 Bm1 Firmware, Ethernet 700 Series Software

Intel

7 products

Ethernet Controller X710 Tm4 Firmware

Ethernet Controller X710 At2 Firmware

Ethernet Controller Xxv710 Am2 Firmware

Ethernet Controller Xxv710 Am1 Firmware

Ethernet Controller X710 Bm2 Firmware

Ethernet Controller 710 Bm1 Firmware

Ethernet 700 Series Software

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Intel Ethernet Controller X710 Tm4 Firmware	Before 7.0

Running on/with	Platform Versions
Intel Ethernet Controller X710 Tm4	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Intel Ethernet Controller X710 At2 Firmware	Before 7.0

Running on/with	Platform Versions
Intel Ethernet Controller X710 At2	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Intel Ethernet Controller Xxv710 Am2 Firmware	Before 7.0

Running on/with	Platform Versions
Intel Ethernet Controller Xxv710 Am2	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Intel Ethernet Controller Xxv710 Am1 Firmware	Before 7.0

Running on/with	Platform Versions
Intel Ethernet Controller Xxv710 Am1	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Intel Ethernet Controller X710 Bm2 Firmware	Before 7.0

Running on/with	Platform Versions
Intel Ethernet Controller X710 Bm2	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Intel Ethernet Controller 710 Bm1 Firmware	Before 7.0

Running on/with	Platform Versions
Intel Ethernet Controller 710 Bm1	All versions

Configuration G

1 vulnerable

Vulnerable Software	Affected Versions
Intel Ethernet 700 Series Software	Before 24.0

References (4)

https://support.f5.com/csp/article/K08441753?utm_source=f5support&amp%3Butm_medium=RSS

Source: secure@intel.com

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00255.html

Source: secure@intel.com

PatchVendor Advisory

https://support.f5.com/csp/article/K08441753?utm_source=f5support&amp%3Butm_medium=RSS

Source: af854a3a-2127-422b-91ae-364da2661108

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00255.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

Timeline

No history available yet.