CVE-2019-14569

Published: Oct 11, 2019Modified: Nov 21, 2024

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

Pointer corruption in system firmware for Intel(R) NUC may allow a privileged user to potentially enable escalation of privilege, denial of service and/or information disclosure via local access.

Affected (7)

Products: Intel: Nuc 8 Mainstream Game Kit Firmware, Nuc 8 Mainstream Game Mini Computer Firmware, Nuc Board De3815tybe Firmware, Nuc Kit De3815tykhe Firmware, Nuc Kit Dn2820fykh Firmware

Intel

5 products

Nuc 8 Mainstream Game Kit Firmware

Nuc 8 Mainstream Game Mini Computer Firmware

Nuc Board De3815tybe Firmware

Nuc Kit De3815tykhe Firmware

Nuc Kit Dn2820fykh Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Intel Nuc 8 Mainstream Game Kit Firmware	Before inwhl357

Running on/with	Platform Versions
Intel Nuc 8 Mainstream Game Kit	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Intel Nuc 8 Mainstream Game Mini Computer Firmware	Before inwhl357

Running on/with	Platform Versions
Intel Nuc 8 Mainstream Game Mini Computer	All versions

Configuration C

1 vulnerable

Vulnerable Software	Affected Versions
Intel Nuc Board De3815tybe Firmware	Before ty0022

Configuration D

1 vulnerable

Vulnerable Software	Affected Versions
Intel Nuc Kit De3815tykhe Firmware	Before ty0022

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Intel Nuc Board De3815tybe Firmware	Before ty0067

Running on/with	Platform Versions
Intel Nuc Board De3815tybe	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Intel Nuc Kit De3815tykhe Firmware	Before ty0067

Running on/with	Platform Versions
Intel Nuc Kit De3815tykhe	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Intel Nuc Kit Dn2820fykh Firmware	Before fy0069

Running on/with	Platform Versions
Intel Nuc Kit Dn2820fykh	All versions

Related CWEs

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (2)

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00296.html

Source: secure@intel.com

Vendor Advisory

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00296.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.