← Back

CVE-2019-11089

nvd nist
Published: Nov 14, 2019Modified: Nov 21, 2024

JSON object

Loading...
5.5
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Exploitability: 1.8 / Impact: 3.6
Source: NVD

Description

Insufficient input validation in Kernel Mode module for Intel(R) Graphics Driver before version 25.20.100.6519 may allow an authenticated user to potentially enable denial of service via local access.

Affected (5)

Intel
1 product
Graphics Driver
Netapp
4 products
Cloud Backup
Data Availability Services
Steelstore Cloud Integrated Storage
Solidfire Baseboard Management Controller Firmware
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Graphics Driver
Before 25.20.100.6519
Configuration B
3 vulnerable
Vulnerable SoftwareAffected Versions
Cloud Backup
All versions
Data Availability Services
All versions
Steelstore Cloud Integrated Storage
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Solidfire Baseboard Management Controller Firmware
All versions
Running on/withPlatform Versions
Netapp
Solidfire Baseboard Management Controller
All versions

Related CWEs

CWE-20
Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (4)

Source: secure@intel.com
Third Party Advisory
Source: secure@intel.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.