CVE-2019-14557

Buffer overflow in BIOS firmware for 8th, 9th, 10th Generation Intel(R) Core(TM), Intel(R) Celeron(R) Processor 4000 & 5000 Series Processors may allow an authenticated user to potentially enable elevation of privilege or denial of service via adjacent access.

CVSS v3 8.0 HIGH
CVSS v2.0 5.2 MEDIUM

8.0^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.1 / Impact : 5.9

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

5.2^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:A/AC:L/Au:S/C:P/I:P/A:P

Exploitability : 5.1 / Impact : 6.4

Access Vector ADJACENT_NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00356.html	Vendor Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00356.html	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:intel:bios:-:*:*:*:*:*:*:*

OR	cpe:2.3:h:intel:celeron_4205u:-:::::::*
	cpe:2.3:h:intel:celeron_4305u:-:::::::*
	cpe:2.3:h:intel:celeron_4305ue:-:::::::*
	cpe:2.3:h:intel:celeron_5205u:-:::::::*
	cpe:2.3:h:intel:celeron_5305u:-:::::::*
	cpe:2.3:h:intel:core_i3_8100:-:::::::*
	cpe:2.3:h:intel:core_i3_8100f:-:::::::*
	cpe:2.3:h:intel:core_i3_8100t:-:::::::*
	cpe:2.3:h:intel:core_i3_8300:-:::::::*
	cpe:2.3:h:intel:core_i3_8300t:-:::::::*
	cpe:2.3:h:intel:core_i3_8350k:-:::::::*
	cpe:2.3:h:intel:core_i3_9100:-:::::::*
	cpe:2.3:h:intel:core_i3_9100f:-:::::::*
	cpe:2.3:h:intel:core_i3_9100t:-:::::::*
	cpe:2.3:h:intel:core_i3_9300:-:::::::*
	cpe:2.3:h:intel:core_i3_9300t:-:::::::*
	cpe:2.3:h:intel:core_i3_9320:-:::::::*
	cpe:2.3:h:intel:core_i3_9350k:-:::::::*
	cpe:2.3:h:intel:core_i3_9350kf:-:::::::*
	cpe:2.3:h:intel:core_i5_8400:-:::::::*
	cpe:2.3:h:intel:core_i5_8400t:-:::::::*
	cpe:2.3:h:intel:core_i5_8500:-:::::::*
	cpe:2.3:h:intel:core_i5_8500t:-:::::::*
	cpe:2.3:h:intel:core_i5_8600:-:::::::*
	cpe:2.3:h:intel:core_i5_8600k:-:::::::*
	cpe:2.3:h:intel:core_i5_8600t:-:::::::*
	cpe:2.3:h:intel:core_i5_9400:-:::::::*
	cpe:2.3:h:intel:core_i5_9400f:-:::::::*
	cpe:2.3:h:intel:core_i5_9400t:-:::::::*
	cpe:2.3:h:intel:core_i5_9500:-:::::::*
	cpe:2.3:h:intel:core_i5_9500f:-:::::::*
	cpe:2.3:h:intel:core_i5_9500t:-:::::::*
	cpe:2.3:h:intel:core_i5_9600:-:::::::*
	cpe:2.3:h:intel:core_i5_9600k:-:::::::*
	cpe:2.3:h:intel:core_i5_9600kf:-:::::::*
	cpe:2.3:h:intel:core_i5_9600t:-:::::::*
	cpe:2.3:h:intel:core_i7_1060g7:-:::::::*
	cpe:2.3:h:intel:core_i7_1060ng7:-:::::::*
	cpe:2.3:h:intel:core_i7_1065g7:-:::::::*
	cpe:2.3:h:intel:core_i7_1068ng7:-:::::::*
	cpe:2.3:h:intel:core_i7_8086k:-:::::::*
	cpe:2.3:h:intel:core_i7_8700:-:::::::*
	cpe:2.3:h:intel:core_i7_8700k:-:::::::*
	cpe:2.3:h:intel:core_i7_8700t:-:::::::*
	cpe:2.3:h:intel:core_i7_9700:-:::::::*
	cpe:2.3:h:intel:core_i7_9700f:-:::::::*
	cpe:2.3:h:intel:core_i7_9700k:-:::::::*
	cpe:2.3:h:intel:core_i7_9700kf:-:::::::*
	cpe:2.3:h:intel:core_i7_9700t:-:::::::*
	cpe:2.3:h:intel:core_i9_9900:-:::::::*
	cpe:2.3:h:intel:core_i9_9900k:-:::::::*
	cpe:2.3:h:intel:core_i9_9900kf:-:::::::*
	cpe:2.3:h:intel:core_i9_9900ks:-:::::::*
	cpe:2.3:h:intel:core_i9_9900t:-:::::::*

History

21 Nov 2024, 04:26

Type	Values Removed	Values Added
References	~~() https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00356.html - Vendor Advisory~~	() https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00356.html - Vendor Advisory

Information

Published : 2020-10-05 14:15

Updated : 2024-11-21 04:26

NVD link : CVE-2019-14557

Mitre link : CVE-2019-14557

CVE.ORG link : CVE-2019-14557

JSON object : View

Products Affected

intel

core_i5_8600t
core_i5_9500f
celeron_4305u
celeron_5205u
core_i3_9100f
bios
core_i5_9600k
core_i9_9900k
core_i7_9700f
core_i3_9320
core_i5_8600
core_i9_9900
core_i5_9400f
core_i3_9350k
core_i5_8600k
core_i9_9900t
core_i3_8100f
core_i5_9600
core_i5_8400t
core_i5_9400t
core_i7_1060g7
core_i3_9100t
core_i5_9600kf
core_i3_9350kf
core_i5_9400
core_i3_9300
core_i3_8300
core_i7_1065g7
core_i3_8300t
core_i5_9500
core_i7_9700kf
core_i7_8086k
core_i5_8400
celeron_4305ue
core_i7_1068ng7
celeron_4205u
core_i3_9300t
core_i7_1060ng7
core_i7_8700k
core_i5_9600t
core_i5_8500
core_i3_8350k
core_i7_8700
core_i3_9100
core_i5_8500t
core_i7_9700k
core_i7_9700
celeron_5305u
core_i7_9700t
core_i3_8100t
core_i7_8700t
core_i5_9500t
core_i9_9900kf
core_i3_8100
core_i9_9900ks

CWE

CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

{"id": "CVE-2019-14557", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.2, "accessVector": "ADJACENT_NETWORK", "vectorString": "AV:A/AC:L/Au:S/C:P/I:P/A:P", "authentication": "SINGLE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 5.1, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.0, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.1}]}, "published": "2020-10-05T14:15:12.547", "references": [{"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00356.html", "tags": ["Vendor Advisory"], "source": "secure@intel.com"}, {"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00356.html", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-120"}]}], "descriptions": [{"lang": "en", "value": "Buffer overflow in BIOS firmware for 8th, 9th, 10th Generation Intel(R) Core(TM), Intel(R) Celeron(R) Processor 4000 & 5000 Series Processors may allow an authenticated user to potentially enable elevation of privilege or denial of service via adjacent access."}, {"lang": "es", "value": "Un desbordamiento del b\u00fafer en el firmware de la BIOS para Procesadores de las series 4000 y 5000 del Procesador Intel\u00ae Celeron\u00ae de la 8va, 9na y 10ma Generaci\u00f3n, puede permitir a un usuario autentificado habilitar potencialmente una escalada de privilegios o una denegaci\u00f3n del servicio por medio de un acceso adyacente"}], "lastModified": "2024-11-21T04:26:57.597", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:intel:bios:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F44332FD-46C6-4E7A-B400-7B93D179CD49"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:intel:celeron_4205u:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6910BDD0-4968-45AE-AD19-3A1206F5D068"}, {"criteria": "cpe:2.3:h:intel:celeron_4305u:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "14C91CFB-C318-4F06-9A01-DCCEE2E901B4"}, {"criteria": "cpe:2.3:h:intel:celeron_4305ue:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F5C0F89F-0C58-44B8-A02C-50A97B086659"}, {"criteria": "cpe:2.3:h:intel:celeron_5205u:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BFA35154-5EFD-4DF9-B099-6D752452A8D0"}, {"criteria": "cpe:2.3:h:intel:celeron_5305u:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "39831D4E-743A-4C09-900F-24DDAB5D1B22"}, {"criteria": "cpe:2.3:h:intel:core_i3_8100:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6CCEDC1E-D090-4528-93E7-F10A4A157903"}, {"criteria": "cpe:2.3:h:intel:core_i3_8100f:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "76659D14-67EB-4570-B18F-8054DC49B22A"}, {"criteria": "cpe:2.3:h:intel:core_i3_8100t:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "33B23442-3009-40DE-8C9A-B0FB16BD2178"}, {"criteria": "cpe:2.3:h:intel:core_i3_8300:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4AFFA071-138D-4538-B809-72380B072899"}, {"criteria": "cpe:2.3:h:intel:core_i3_8300t:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0B0830A0-9398-4886-8604-EEFAD40D0453"}, {"criteria": "cpe:2.3:h:intel:core_i3_8350k:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "873C5935-533E-4A71-9871-FBDA99BC1B83"}, {"criteria": "cpe:2.3:h:intel:core_i3_9100:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E280CDC9-5AC0-4EA8-B1F8-C6D8A14FD444"}, {"criteria": "cpe:2.3:h:intel:core_i3_9100f:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "94E72867-C6C3-4E90-8E0D-39C8AE5E15D9"}, {"criteria": "cpe:2.3:h:intel:core_i3_9100t:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "764E99C4-6E89-450F-B1B3-97F235911460"}, {"criteria": "cpe:2.3:h:intel:core_i3_9300:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0BA26068-CF24-4373-8BAA-28A0B652D48D"}, {"criteria": "cpe:2.3:h:intel:core_i3_9300t:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "89B3CFF2-81F6-4462-B9CA-D740378FA35E"}, {"criteria": "cpe:2.3:h:intel:core_i3_9320:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "AB904621-1216-4C11-A86E-336ACB80F0DA"}, {"criteria": "cpe:2.3:h:intel:core_i3_9350k:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D644F64A-FEA4-464A-BFBC-7B27DFAA5763"}, {"criteria": "cpe:2.3:h:intel:core_i3_9350kf:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6B80D2A9-B009-4084-BB66-B65FEB55D4E2"}, {"criteria": "cpe:2.3:h:intel:core_i5_8400:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8519F788-4422-4D12-AD34-7F2FC84A8F4B"}, {"criteria": "cpe:2.3:h:intel:core_i5_8400t:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "01C22B03-00B3-4089-8D57-798C1193597B"}, {"criteria": "cpe:2.3:h:intel:core_i5_8500:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "95295D93-EB33-47AD-B132-576623086FAB"}, {"criteria": "cpe:2.3:h:intel:core_i5_8500t:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5606CCF0-454C-48F2-9073-85EEAE24A35E"}, {"criteria": "cpe:2.3:h:intel:core_i5_8600:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A953CAF6-93FF-4E7E-BD35-0032A2C68C87"}, {"criteria": "cpe:2.3:h:intel:core_i5_8600k:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A0379716-C812-479A-A2E3-335AA69932A7"}, {"criteria": "cpe:2.3:h:intel:core_i5_8600t:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8B60F2B9-0A4C-44AC-85B9-54302DCEDF34"}, {"criteria": "cpe:2.3:h:intel:core_i5_9400:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BA8492FE-8B9D-43BA-80D1-608720B83B56"}, {"criteria": "cpe:2.3:h:intel:core_i5_9400f:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "82039F74-BE0C-43B5-BE08-5D09147E3DE0"}, {"criteria": "cpe:2.3:h:intel:core_i5_9400t:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B6569E8E-5D81-4DE2-9BD2-D17466F9C993"}, {"criteria": "cpe:2.3:h:intel:core_i5_9500:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "892F53CC-4113-45D1-8693-F98DE00641D4"}, {"criteria": "cpe:2.3:h:intel:core_i5_9500f:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1AC5E270-73AB-440C-BA1B-1D9CCDEE9F7F"}, {"criteria": "cpe:2.3:h:intel:core_i5_9500t:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "30420C2D-F3BE-4D5C-B7CE-04B68F54C437"}, {"criteria": "cpe:2.3:h:intel:core_i5_9600:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CA935504-E306-407F-83D3-5100CB4932DB"}, {"criteria": "cpe:2.3:h:intel:core_i5_9600k:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B303953A-487F-45A8-B584-EDE0ED77EA69"}, {"criteria": "cpe:2.3:h:intel:core_i5_9600kf:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "96D61995-CB46-403F-9A8D-B3F1D6A75E02"}, {"criteria": "cpe:2.3:h:intel:core_i5_9600t:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C85318F0-C2F5-443E-BF09-4641CD6CE3C5"}, {"criteria": "cpe:2.3:h:intel:core_i7_1060g7:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BBD04BA0-473B-48E7-B56C-76DDD4024811"}, {"criteria": "cpe:2.3:h:intel:core_i7_1060ng7:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9FC29A35-EF34-4034-A119-CA44E458A195"}, {"criteria": "cpe:2.3:h:intel:core_i7_1065g7:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C837421F-9FB6-4A8E-9267-7064CE199BF6"}, {"criteria": "cpe:2.3:h:intel:core_i7_1068ng7:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2AAD2BFC-DDD7-4B14-9D5E-144F701BD3EC"}, {"criteria": "cpe:2.3:h:intel:core_i7_8086k:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "98D04BB8-B9C1-46F8-8A1D-1958B9BBC403"}, {"criteria": "cpe:2.3:h:intel:core_i7_8700:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DD561718-500D-404A-849F-5194EFD83DEE"}, {"criteria": "cpe:2.3:h:intel:core_i7_8700k:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "32FF6953-96D7-4CDB-A2C1-D0FC8B21195C"}, {"criteria": "cpe:2.3:h:intel:core_i7_8700t:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C0136220-738E-44D1-B2E6-B2E98D9DA36E"}, {"criteria": "cpe:2.3:h:intel:core_i7_9700:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9E971296-E033-4B15-9D46-BC44D0060412"}, {"criteria": "cpe:2.3:h:intel:core_i7_9700f:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DA34B5AA-F1D9-4F05-9B45-496B7DD3F671"}, {"criteria": "cpe:2.3:h:intel:core_i7_9700k:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E02EEC32-F9AD-4454-A4C9-79F57DE68618"}, {"criteria": "cpe:2.3:h:intel:core_i7_9700kf:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "58383912-CAD9-415A-B81D-3CB6B19FE777"}, {"criteria": "cpe:2.3:h:intel:core_i7_9700t:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DE5B4FF9-F099-4640-AAEE-89A0C8FB2103"}, {"criteria": "cpe:2.3:h:intel:core_i9_9900:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E67CC06F-CD6F-4A52-AE31-B857F31BAEBC"}, {"criteria": "cpe:2.3:h:intel:core_i9_9900k:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7B29FBC6-ABAA-4651-989D-1D8DE3ACD591"}, {"criteria": "cpe:2.3:h:intel:core_i9_9900kf:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8BC9A9B0-89BB-45AA-9567-2A10282806E4"}, {"criteria": "cpe:2.3:h:intel:core_i9_9900ks:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9B98F76F-B3C3-459F-80F0-F7D3EED64F7C"}, {"criteria": "cpe:2.3:h:intel:core_i9_9900t:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "477DCC2F-611F-4C63-BCA2-B58476CF8188"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "secure@intel.com"}

8.0 /10