TROYANOSYVIRUS
Retour aux CVEs

CVE-2019-11171

CRITICAL
9.8

Description

Heap corruption in Intel(R) Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable information disclosure, escalation of privilege and/or denial of service via network access.

Details CVE

Score CVSS v3.19.8
SeveriteCRITICAL
Vecteur CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vecteur d'attaqueNETWORK
ComplexiteLOW
Privileges requisNONE
Interaction utilisateurNONE
Publie11/14/2019
Derniere modification11/21/2024
Sourcenvd
Observations honeypot0

Produits affectes

intel:baseboard_management_controller_firmwareintel:bbs2600bpbintel:bbs2600bpbrintel:bbs2600bpqintel:bbs2600bpqrintel:bbs2600bpsintel:bbs2600bpsrintel:bbs2600stbintel:bbs2600stbrintel:bbs2600stqintel:bbs2600stqrintel:hns2600bpbintel:hns2600bpb24intel:hns2600bpb24rintel:hns2600bpb24rxintel:hns2600bpblcintel:hns2600bpblc24intel:hns2600bpblc24rintel:hns2600bpblcrintel:hns2600bpbrintel:hns2600bpbrxintel:hns2600bpqintel:hns2600bpq24intel:hns2600bpq24rintel:hns2600bpqrintel:hns2600bpsintel:hns2600bps24intel:hns2600bps24rintel:hns2600bpsrintel:hpchns2600bpbrintel:hpchns2600bpqrintel:hpchns2600bpsrintel:hpcr1208wfqysrintel:hpcr1208wftysrintel:hpcr1304wf0ysrintel:hpcr1304wftysrintel:hpcr2208wf0zsrintel:hpcr2208wfqzsrintel:hpcr2208wftzsrintel:hpcr2208wftzsrxintel:hpcr2224wftzsrintel:hpcr2308wftzsrintel:hpcr2312wf0nprintel:hpcr2312wftzsrintel:r1208wfqysrintel:r1208wftysintel:r1208wftysrintel:r1304wf0ysintel:r1304wf0ysrintel:r1304wftysintel:r1304wftysrintel:r2208wf0zsintel:r2208wf0zsrintel:r2208wfqzsintel:r2208wfqzsrintel:r2208wftzsintel:r2208wftzsrintel:r2208wftzsrxintel:r2224wfqzsintel:r2224wftzsintel:r2224wftzsrintel:r2308wftzsintel:r2308wftzsrintel:r2312wf0npintel:r2312wf0nprintel:r2312wfqzsintel:r2312wftzsintel:r2312wftzsrintel:s2600stbintel:s2600stbrintel:s2600stqintel:s2600stqrintel:s2600wf0intel:s2600wf0rintel:s2600wfqintel:s2600wfqrintel:s2600wftintel:s2600wftrintel:s9232wk1hlcintel:s9232wk2hacintel:s9232wk2hlcintel:s9248wk1hlcintel:s9248wk2hacintel:s9248wk2hlcintel:s9256wk1hlc

Faiblesses (CWE)

CWE-787

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00313.html(secure@intel.com)
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00313.html(af854a3a-2127-422b-91ae-364da2661108)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.