CVE-2019-0140

Buffer overflow in firmware for Intel(R) Ethernet 700 Series Controllers before version 7.0 may allow an unauthenticated user to potentially enable an escalation of privilege via an adjacent access.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:intel:ethernet_controller_x710-tm4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:ethernet_controller_x710-tm4:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:intel:ethernet_controller_x710-at2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:ethernet_controller_x710-at2:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:intel:ethernet_controller_xxv710-am2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:ethernet_controller_xxv710-am2:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:intel:ethernet_controller_xxv710-am1_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:ethernet_controller_xxv710-am1:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:intel:ethernet_controller_x710-bm2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:ethernet_controller_x710-bm2:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:intel:ethernet_controller_710-bm1_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:ethernet_controller_710-bm1:-:*:*:*:*:*:*:*

Configuration 7 (hide)

cpe:2.3:a:intel:ethernet_700_series_software:*:*:*:*:*:*:*:*

History

21 Nov 2024, 04:16

Type Values Removed Values Added
References () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00255.html - Patch, Vendor Advisory () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00255.html - Patch, Vendor Advisory

Information

Published : 2019-11-14 19:15

Updated : 2024-11-21 04:16


NVD link : CVE-2019-0140

Mitre link : CVE-2019-0140

CVE.ORG link : CVE-2019-0140


JSON object : View

Products Affected

intel

  • ethernet_controller_710-bm1_firmware
  • ethernet_controller_xxv710-am2
  • ethernet_controller_x710-at2
  • ethernet_700_series_software
  • ethernet_controller_x710-tm4_firmware
  • ethernet_controller_xxv710-am2_firmware
  • ethernet_controller_x710-tm4
  • ethernet_controller_x710-at2_firmware
  • ethernet_controller_xxv710-am1
  • ethernet_controller_x710-bm2_firmware
  • ethernet_controller_x710-bm2
  • ethernet_controller_710-bm1
  • ethernet_controller_xxv710-am1_firmware
CWE
CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')