Vulnerabilities > CVE-2019-0142 - Unspecified vulnerability in Intel products

CVSS 8.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

intel

NVD

Published: 2019-11-14

Updated: 2021-07-21

Summary

Insufficient access control in ilp60x64.sys driver for Intel(R) Ethernet 700 Series Controllers before version 1.33.0.0 may allow a privileged user to potentially enable escalation of privilege via local access.

Vulnerable Configurations

Part	Description	Count
OS	Intel Intel Ethernet Controller X710 TM4 Firmware - Intel Ethernet Controller X710 AT2 Firmware - Intel Ethernet Controller Xxv710 AM2 Firmware - Intel Ethernet Controller Xxv710 AM1 Firmware - Intel Ethernet Controller X710 BM2 Firmware - Intel Ethernet Controller 710 BM1 Firmware -	6
Hardware	Intel Intel Ethernet Controller X710 TM4 - Intel Ethernet Controller X710 AT2 - Intel Ethernet Controller Xxv710 AM2 - Intel Ethernet Controller Xxv710 AM1 - Intel Ethernet Controller X710 BM2 - Intel Ethernet Controller 710 BM1 -	6
Application	Intel Intel Ethernet 700 Series Software - Intel Ethernet 700 Series Software 22.10 Intel Ethernet 700 Series Software 23.4 Intel Ethernet 700 Series Software 23.5 Intel Ethernet 700 Series Software 23.5.1 Intel Ethernet 700 Series Software 23.5.2	6

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00255.html