CVE-2019-11184
MEDIUMIntel Xeon E5-2670 Firmware - Authenticated Partial Information Disclosure via DDIO Cache Race Condition
Title source: llmDescription
A race condition in specific microprocessors using Intel (R) DDIO cache allocation and RDMA may allow an authenticated user to potentially enable partial information disclosure via adjacent access.
References (6)
Core 6
Core References
Vendor Advisory x_refsource_confirm
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00290.html
Technical Description, Third Party Advisory x_refsource_misc
https://arxiv.org/abs/1909.04841
Third Party Advisory x_refsource_confirm
https://support.f5.com/csp/article/K43220413
Third Party Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20190926-0001/
Vendor Advisory x_refsource_confirm
https://support.f5.com/csp/article/K43220413?utm_source=f5support&%3Butm_medium=RSS
Technical Description, Third Party Advisory x_refsource_misc
https://ieeexplore.ieee.org/document/9152768
Scores
CVSS v3
4.8
EPSS
0.0019
EPSS Percentile
40.8%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-362
Status
published
Products (50)
intel/3106_firmware
intel/4109t_firmware
intel/4110_firmware
intel/4114t_firmware
intel/4116_firmware
intel/4116t_firmware
intel/5118_firmware
intel/5119t_firmware
intel/5120t_firmware
intel/6126_firmware
... and 40 more
Published
Sep 16, 2019
Tracked Since
Feb 18, 2026