CVE-2019-11157

MEDIUM

Intel Xeon E3 Firmware - Privilege Escalation and Information Disclosure via Voltage Settings

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-11157. PoCs published by zkenjar.

AI-analyzed exploit summary V0LTpwn is a software-controlled fault attack on x86 processors, specifically targeting Intel SGX enclaves by manipulating core voltages to induce bit flips in computations. The attack requires OS privileges and is detailed in a research paper, with Intel issuing patches for affected platforms.

Description

Improper conditions check in voltage settings for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege and/or information disclosure via local access.

Exploits (1)

nomisec WRITEUP 7 stars
by zkenjar · poc
https://github.com/zkenjar/v0ltpwn

V0LTpwn is a software-controlled fault attack on x86 processors, specifically targeting Intel SGX enclaves by manipulating core voltages to induce bit flips in computations. The attack requires OS privileges and is detailed in a research paper, with Intel issuing patches for affected platforms.

Classification
Writeup 90%
Attack Type
Other
Complexity
Complex
Reliability
Theoretical
Target: Intel x86 processors with SGX support
Auth required
Prerequisites: OS privileges · Access to voltage control interfaces
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (3)

Core 3

Scores

CVSS v3 6.7
EPSS 0.0019
EPSS Percentile 40.0%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Details

Status published
Products (50)
intel/core_i3-1000g1_firmware
intel/core_i3-1000g4_firmware
intel/core_i3-1005g1_firmware
intel/core_i3-10110u_firmware
intel/core_i3-10110y_firmware
intel/core_i3-6006u_firmware
intel/core_i3-6098p_firmware
intel/core_i3-6100_firmware
intel/core_i3-6100e_firmware
intel/core_i3-6100h_firmware
... and 40 more
Published Dec 16, 2019
Tracked Since Feb 18, 2026