Lucene search

[email protected]CVE-2019-14574

HistoryNov 14, 2019 - 8:15 p.m.

CVE-2019-14574

2019-11-1420:15:00

CWE-125

[email protected]

web.nvd.nist.gov

cve-2019-14574

out of bounds read

intel graphics driver

denial of service

nvd

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

5.8 Medium

AI Score

Confidence

High

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

0.0004 Low

EPSS

Percentile

11.8%

JSON

Out of bounds read in a subsystem for Intel® Graphics Driver versions before 26.20.100.7209 may allow an authenticated user to potentially enable denial of service via local access.

CPENameOperatorVersion
intel:graphics_driverintel graphics driverlt26.20.100.7209
netapp:cloud_backupnetapp cloud backupeq-
netapp:steelstore_cloud_integrated_storagenetapp steelstore cloud integrated storageeq-
netapp:data_availability_servicesnetapp data availability serviceseq-
netapp:solidfire_baseboard_management_controller_firmwarenetapp solidfire baseboard management controller firmwareeq-

CPE	Name	Operator	Version
intel:graphics_driver	intel graphics driver	lt	26.20.100.7209
netapp:cloud_backup	netapp cloud backup	eq	-
netapp:steelstore_cloud_integrated_storage	netapp steelstore cloud integrated storage	eq	-
netapp:data_availability_services	netapp data availability services	eq	-
netapp:solidfire_baseboard_management_controller_firmware	netapp solidfire baseboard management controller firmware	eq	-

References

security.netapp.com/advisory/ntap-20200320-0005/

www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00242.html

Social References

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

5.8 Medium

AI Score

Confidence

High

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

0.0004 Low

EPSS

Percentile

11.8%

JSON

Related for CVE-2019-14574

talosblog1 prion1 talos1 lenovo2 intel1 hp1