CVE-2019-0145

Buffer overflow in i40e driver for Intel(R) Ethernet 700 Series Controllers versions before 7.0 may allow an authenticated user to potentially enable an escalation of privilege via local access.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:intel:ethernet_controller_x710-tm4_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:ethernet_controller_x710-tm4:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:intel:ethernet_controller_x710-at2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:ethernet_controller_x710-at2:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:intel:ethernet_controller_xxv710-am2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:ethernet_controller_xxv710-am2:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:intel:ethernet_controller_xxv710-am1_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:ethernet_controller_xxv710-am1:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:intel:ethernet_controller_x710-bm2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:ethernet_controller_x710-bm2:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:intel:ethernet_controller_710-bm1_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:intel:ethernet_controller_710-bm1:-:*:*:*:*:*:*:*

Configuration 7 (hide)

cpe:2.3:a:intel:ethernet_700_series_software:*:*:*:*:*:*:*:*

Configuration 8 (hide)

OR cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

History

21 Nov 2024, 04:16

Type Values Removed Values Added
References () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00255.html - Patch, Vendor Advisory () https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00255.html - Patch, Vendor Advisory

24 Feb 2023, 18:42

Type Values Removed Values Added
CPE cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Information

Published : 2019-11-14 19:15

Updated : 2024-11-21 04:16


NVD link : CVE-2019-0145

Mitre link : CVE-2019-0145

CVE.ORG link : CVE-2019-0145


JSON object : View

Products Affected

intel

  • ethernet_controller_710-bm1_firmware
  • ethernet_controller_xxv710-am2
  • ethernet_controller_x710-at2
  • ethernet_700_series_software
  • ethernet_controller_x710-tm4_firmware
  • ethernet_controller_xxv710-am2_firmware
  • ethernet_controller_x710-tm4
  • ethernet_controller_x710-at2_firmware
  • ethernet_controller_xxv710-am1
  • ethernet_controller_x710-bm2_firmware
  • ethernet_controller_x710-bm2
  • ethernet_controller_710-bm1
  • ethernet_controller_xxv710-am1_firmware

linux

  • linux_kernel
CWE
CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')