CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:N/A:P
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
14.2%
Improper conditions check in the voltage modulation interface for some Intelยฎ Xeonยฎ Scalable Processors may allow a privileged user to potentially enable denial of service via local access.
Vendor | Product | Version | CPE |
---|---|---|---|
debian | debian_linux | 8.0 | cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:* |
opensuse | leap | 15.0 | cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:* |
opensuse | leap | 15.1 | cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:* |
intel | xeon_8153_firmware | - | cpe:2.3:o:intel:xeon_8153_firmware:-:*:*:*:*:*:*:* |
intel | xeon_8153 | - | cpe:2.3:h:intel:xeon_8153:-:*:*:*:*:*:*:* |
intel | xeon_8156_firmware | - | cpe:2.3:o:intel:xeon_8156_firmware:-:*:*:*:*:*:*:* |
intel | xeon_8156 | - | cpe:2.3:h:intel:xeon_8156:-:*:*:*:*:*:*:* |
intel | xeon_8158_firmware | - | cpe:2.3:o:intel:xeon_8158_firmware:-:*:*:*:*:*:*:* |
intel | xeon_8158 | - | cpe:2.3:h:intel:xeon_8158:-:*:*:*:*:*:*:* |
intel | xeon_8160_firmware | - | cpe:2.3:o:intel:xeon_8160_firmware:-:*:*:*:*:*:*:* |
[
{
"product": "2019.2 IPU โ Intel(R) Xeon(R) Scalable Processors Voltage Setting Modulation",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "See provided reference"
}
]
}
]
lists.opensuse.org/opensuse-security-announce/2019-11/msg00045.html
lists.opensuse.org/opensuse-security-announce/2019-11/msg00046.html
lists.debian.org/debian-lts-announce/2019/12/msg00035.html
seclists.org/bugtraq/2019/Dec/28
support.f5.com/csp/article/K42433061?utm_source=f5support&%3Butm_medium=RSS
support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03969en_us
www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00271.html
More
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:N/A:P
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
14.2%