PRIOn knowledge basePRION:CVE-2019-0154Improper access control
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
6 Medium
AI Score
Confidence
High
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:N/A:P
0.0004 Low
EPSS
Percentile
12.3%
Insufficient access control in subsystem for Intel ยฎ processor graphics in 6th, 7th, 8th and 9th Generation Intelยฎ Coreโข Processor Families; Intelยฎ Pentiumยฎ Processor J, N, Silver and Gold Series; Intelยฎ Celeronยฎ Processor J, N, G3900 and G4900 Series; Intelยฎ Atomยฎ Processor A and E3900 Series; Intelยฎ Xeonยฎ Processor E3-1500 v5 and v6 and E-2100 Processor Families may allow an authenticated user to potentially enable denial of service via local access.
References
packetstormsecurity.com/files/155375/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html
access.redhat.com/errata/RHSA-2020:0204
seclists.org/bugtraq/2019/Nov/26
security.netapp.com/advisory/ntap-20200320-0004/
support.f5.com/csp/article/K73659122?utm_source=f5support&utm_medium=RSS
usn.ubuntu.com/4186-2/
www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00260.html
Related
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
6 Medium
AI Score
Confidence
High
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:N/A:P
0.0004 Low
EPSS
Percentile
12.3%