Skip to main content

Intel Core I7 8700B Firmware CVE-2019-0184

MEDIUM
2019-11-14 secure@intel.com
Intel Information Disclosure Intel Core I7 8700B Firmware Intel Core I7 8850H Firmware Core I9 9880H Firmware Core I7 9850H Firmware Core I5 9400H Firmware Core I7 8700 Firmware Core I7 8700K Firmware Core I7 8700T Firmware Core I7 8086K Firmware Core I5 8500 Firmware Core I5 8500T Firmware Core I5 8600K Firmware Core I5 8600 Firmware Core I5 8600T Firmware Xeon E 2224G Firmware Xeon E 2244G Firmware Xeon E 2226G Firmware Xeon E 2274G Firmware Xeon E 2246G Firmware Xeon E 2276G Firmware Xeon E 2276M Firmware Xeon E 2286G Firmware Xeon E 2286M Firmware Xeon E 2278G Firmware Xeon E 2288G Firmware Xeon E 2186G Firmware Xeon E 2176G Firmware Xeon E 2174G Firmware Xeon E 2146G Firmware Xeon E 2144G Firmware Xeon E 2136 Firmware Xeon E 2134 Firmware Xeon E 2126G Firmware Xeon E 2124 Firmware Xeon E 2124G Firmware Core I9 9900K Firmware Core I7 9700K Firmware Core I9 9900 Firmware Core I9 9900T Firmware Core I7 9700 Firmware Core I7 9700T Firmware Core I5 9500 Firmware Core I5 9500T Firmware Core I5 9600 Firmware Core I5 9600T Firmware Core I5 9600K Firmware Core I7 8500Y Firmware Core I7 8510Y Firmware Core I5 8200Y Firmware Core I5 8210Y Firmware Core I5 8310Y Firmware Core I7 8706G Firmware Core I5 8305G Firmware Core I7 7820Hq Firmware Core I7 7920Hq Firmware Core I5 7440Hq Firmware Core I7 8650U Firmware Core I5 8350U Firmware Core I7 7700 Firmware Core I7 7700T Firmware Core I5 7500 Firmware Core I5 7500T Firmware Core I5 7600 Firmware Core I5 7600T Firmware Core I7 7820Eq Firmware Core I5 7440Eq Firmware Core I5 7442Eq Firmware Core I7 7600U Firmware Core I5 7300U Firmware Core I7 7660U Firmware Core I5 7360U Firmware Core I7 7Y75 Firmware Core I5 7Y57 Firmware Xeon E3 1220 V6 Firmware Xeon E3 1225 V6 Firmware Xeon E3 1230 V6 Firmware Xeon E3 1280 V6 Firmware Xeon E3 1240 V6 Firmware Xeon E3 1501L V6 Firmware Xeon E3 1501M V6 Firmware Xeon E3 1505L V6 Firmware Xeon E3 1505M V6 Firmware Xeon E3 1535M V6 Firmware Core I7 6820Hq Firmware Core I7 6920Hq Firmware Core I5 6440Hq Firmware Core I7 6700 Firmware Core I7 6700T Firmware Core I5 6500 Firmware Core I5 6500T Firmware Core I5 6600 Firmware Core I5 6600T Firmware Core I5 6585R Firmware Core I5 6685R Firmware Core I7 6650U Firmware Core I7 6660U Firmware Core I5 6360U Firmware Xeon E3 1220 V5 Firmware Xeon E3 1225 V5 Firmware Xeon E3 1230 V5 Firmware Xeon E3 1235L V5 Firmware Xeon E3 1240 V5 Firmware Xeon E3 1240L V5 Firmware Xeon E3 1245 V5 Firmware Xeon E3 1260L V5 Firmware Xeon E3 1270 V5 Firmware Xeon E3 1275 V5 Firmware Xeon E3 1280 V5 Firmware Xeon E3 1515M V5 Firmware Xeon E3 1505M V5 Firmware Xeon E3 1535M V5 Firmware Xeon E3 1545M V5 Firmware Xeon E3 1558L V5 Firmware Xeon E3 1565L V5 Firmware Xeon E3 1575M V5 Firmware Xeon E3 1578L V5 Firmware Xeon E3 1585 V5 Firmware Xeon E3 1585L V5 Firmware Core M7 6Y75 Firmware Core M5 6Y57 Firmware Core I7 6700Te Firmware Core I7 6820Eq Firmware Core I7 6822Eq Firmware Core I5 6440Eq Firmware Core I5 6442Eq Firmware Core I5 6500Te Firmware Core I7 8665U Firmware Core I5 8365U Firmware
5.5
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
5.5 MEDIUM
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None

Lifecycle Timeline

1
CVE Published
Nov 14, 2019 - 20:15 nvd
MEDIUM 5.5

DescriptionNVD

Insufficient access control in protected memory subsystem for Intel(R) TXT for 6th, 7th, 8th and 9th Generation Intel(R) Core(TM) Processor Families; Intel(R) Xeon(R) Processor E3-1500 v5 and v6 Families; Intel(R) Xeon(R) E-2100 and E-2200 Processor Families with Intel(R) Processor Graphics and Intel(R) TXT may allow a privileged user to potentially enable information disclosure via local access.

AnalysisAI

Insufficient access control in protected memory subsystem for Intel(R) TXT for 6th, 7th, 8th and 9th Generation Intel(R) Core(TM) Processor Families; Intel(R) Xeon(R) Processor E3-1500 v5 and v6. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Technical ContextAI

Insufficient access control in protected memory subsystem for Intel(R) TXT for 6th, 7th, 8th and 9th Generation Intel(R) Core(TM) Processor Families; Intel(R) Xeon(R) Processor E3-1500 v5 and v6 Families; Intel(R) Xeon(R) E-2100 and E-2200 Processor Families with Intel(R) Processor Graphics and Intel(R) TXT may allow a privileged user to potentially enable information disclosure via local access. Affected products include: Intel Intel Core I7-8700B Firmware, Intel Intel Core I7-8850H Firmware, Intel Core I9-9880H Firmware, Intel Core I7-9850H Firmware, Intel Core I5-9400H Firmware.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

Share

CVE-2019-0184 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy