CVE-2019-0139

MEDIUM

Intel Ethernet 700 Series Firmware < 7.0 - Privilege Escalation, DoS, or Info Disclosure via Local Access

Title source: llm

Description

Insufficient access control in firmware for Intel(R) Ethernet 700 Series Controllers before version 7.0 may allow a privileged user to potentially enable an escalation of privilege, denial of service, or information disclosure via local access.

References (2)

Core 2

Core References

Patch, Vendor Advisory x_refsource_misc

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00255.html

Vendor Advisory x_refsource_confirm

https://support.f5.com/csp/article/K08441753?utm_source=f5support&amp%3Butm_medium=RSS

Scores

CVSS v3 6.7

EPSS 0.0012

EPSS Percentile 31.1%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Details

Status published

Products (7)

intel/ethernet_700_series_software < 24.0

intel/ethernet_controller_710-bm1_firmware < 7.0

intel/ethernet_controller_x710-at2_firmware < 7.0

intel/ethernet_controller_x710-bm2_firmware < 7.0

intel/ethernet_controller_x710-tm4_firmware < 7.0

intel/ethernet_controller_xxv710-am1_firmware < 7.0

intel/ethernet_controller_xxv710-am2_firmware < 7.0

Published Nov 14, 2019

Tracked Since Feb 18, 2026