Vulnerabilities > CVE-2019-11111 - NULL Pointer Dereference vulnerability in multiple products

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

intel

netapp

CWE-476

NVD

Published: 2019-11-14

Updated: 2022-11-10

Summary

Pointer corruption in the Unified Shader Compiler in Intel(R) Graphics Drivers before 10.18.14.5074 (aka 15.36.x.5074) may allow an authenticated user to potentially enable escalation of privilege via local access.

Vulnerable Configurations

Part	Description	Count
Application	Intel Intel Graphics Driver - Intel Graphics Driver 15.22.54.64.2622 Intel Graphics Driver 15.22.54.2622 Intel Graphics Driver 15.22.58.64.2993 Intel Graphics Driver 15.22.58.2993 Intel Graphics Driver 15.28.24.64.4229 Intel Graphics Driver 15.28.24.4229 Intel Graphics Driver 15.33.43.4425 Intel Graphics Driver 15.33.45.4653 Intel Graphics Driver 15.33.46.4885 Intel Graphics Driver 15.33.48.5069 Intel Graphics Driver 15.36.26.4294 Intel Graphics Driver 15.36.28.4332 Intel Graphics Driver 15.36.31.4414 Intel Graphics Driver 15.36.33.4578 Intel Graphics Driver 15.36.34.4889 Intel Graphics Driver 15.36.36.5067	17
Application	Netapp Netapp Cloud Backup - Netapp Steelstore Cloud Integrated Storage - Netapp Data Availability Services -	3
OS	Netapp Netapp Solidfire Baseboard Management Controller Firmware -	1
Hardware	Netapp Netapp Solidfire Baseboard Management Controller -	1

Common Weakness Enumeration (CWE)

CWE-476 - NULL Pointer Dereference

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References