Description
Buffer overflow vulnerability in system firmware for Intel(R) Xeon(R) Processor D Family, Intel(R) Xeon(R) Scalable Processor, Intel(R) Server Board, Intel(R) Server System and Intel(R) Compute Module may allow a privileged user to potentially enable escalation of privilege and/or denial of service via local access.
References (3)
Core 3
Core References
Vendor Advisory x_refsource_misc
https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00223.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/108485
Vendor Advisory x_refsource_confirm
https://support.f5.com/csp/article/K85585101
Scores
CVSS v3
6.7
EPSS
0.0004
EPSS Percentile
13.2%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-119
Status
published
Products (50)
intel/hns2400lp_firmware
intel/hns2600bpb24_firmware
intel/hns2600bpb_firmware
intel/hns2600bpblc24_firmware
intel/hns2600bpblc_firmware
intel/hns2600bpq24_firmware
intel/hns2600bpq_firmware
intel/hns2600bps24_firmware
intel/hns2600bps_firmware
intel/hns2600jf_firmware
... and 40 more
Published
May 17, 2019
Tracked Since
Feb 18, 2026