1. Home
  2. Vulnerabilities
  3. CVE-2019-0140

CVE-2019-0140

CVSS v3.1 8.8 (High)
88% Progress
CVSS v2.0 5.8 (Medium)
58% Progress
EPSS 0.08 % (35th)
0.08% Progress
Affected Products 13
Advisories 1
Info CVSS EPSS CAPEC Affected Configurations References Security Advisories Packages & Software Tools, Exploits & PoC Graph Web & Social Timeline

Buffer overflow in firmware for Intel(R) Ethernet 700 Series Controllers before version 7.0 may allow an unauthenticated user to potentially enable an escalation of privilege via an adjacent access.

Weaknesses
CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CVE Status
PUBLISHED
CNA
Intel Corporation
Published Date
2019-11-14 19:15:11
(4 years ago)
Updated Date
2021-05-03 17:16:26
(3 years ago)

Affected Products

Intel

Configuration #1

AND
    CPE23 From Up To
OR  
  Intel Ethernet Controller X710-tm4 Firmware prior 7.0 version cpe:2.3:o:intel:ethernet_controller_x710-tm4_firmware < 7.0
OR  
  Running on/with
  Intel Ethernet Controller X710-tm4 cpe:2.3:h:intel:ethernet_controller_x710-tm4:-

Configuration #2

AND
    CPE23 From Up To
OR  
  Intel Ethernet Controller X710-at2 Firmware prior 7.0 version cpe:2.3:o:intel:ethernet_controller_x710-at2_firmware < 7.0
OR  
  Running on/with
  Intel Ethernet Controller X710-at2 cpe:2.3:h:intel:ethernet_controller_x710-at2:-

Configuration #3

AND
    CPE23 From Up To
OR  
  Intel Ethernet Controller Xxv710-am2 Firmware prior 7.0 version cpe:2.3:o:intel:ethernet_controller_xxv710-am2_firmware < 7.0
OR  
  Running on/with
  Intel Ethernet Controller Xxv710-am2 cpe:2.3:h:intel:ethernet_controller_xxv710-am2:-

Configuration #4

AND
    CPE23 From Up To
OR  
  Intel Ethernet Controller Xxv710-am1 Firmware prior 7.0 version cpe:2.3:o:intel:ethernet_controller_xxv710-am1_firmware < 7.0
OR  
  Running on/with
  Intel Ethernet Controller Xxv710-am1 cpe:2.3:h:intel:ethernet_controller_xxv710-am1:-

Configuration #5

AND
    CPE23 From Up To
OR  
  Intel Ethernet Controller X710-bm2 Firmware prior 7.0 version cpe:2.3:o:intel:ethernet_controller_x710-bm2_firmware < 7.0
OR  
  Running on/with
  Intel Ethernet Controller X710-bm2 cpe:2.3:h:intel:ethernet_controller_x710-bm2:-

Configuration #6

AND
    CPE23 From Up To
OR  
  Intel Ethernet Controller 710-bm1 Firmware prior 7.0 version cpe:2.3:o:intel:ethernet_controller_710-bm1_firmware < 7.0
OR  
  Running on/with
  Intel Ethernet Controller 710-bm1 cpe:2.3:h:intel:ethernet_controller_710-bm1:-

Configuration #7

AND
    CPE23 From Up To
OR  
  Intel Ethernet 700 Series Software prior 24.0 version cpe:2.3:a:intel:ethernet_700_series_software < 24.0