Vulnerability Description
Insufficient input validation in system firmware for Intel (R) NUC Kit may allow an authenticated user to potentially enable escalation of privilege, denial of service, and/or information disclosure via local access.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Intel | Nuc Kit Firmware | - |
| Intel | Nuc Kit D33217Gke | - |
| Intel | Nuc Kit D53427Rke | - |
| Intel | Nuc Kit D54250Wyb | - |
| Intel | Nuc Kit De3815Tybe | - |
| Intel | Nuc Kit Dn2820Fykh | - |
| Intel | Nuc Kit Nuc5Cpyh | - |
| Intel | Nuc Kit Nuc5I3Myhe | - |
| Intel | Nuc Kit Nuc5I5Myhe | - |
| Intel | Nuc Kit Nuc5I7Ryh | - |
| Intel | Nuc Kit Nuc5Pgyh | - |
| Intel | Nuc Kit Nuc6Cays | - |
| Intel | Nuc Kit Nuc6I5Syh | - |
| Intel | Nuc Kit Nuc6I7Kyk | - |
| Intel | Nuc Kit Nuc7Cjyh | - |
| Intel | Nuc Kit Nuc7I3Dnhe | - |
| Intel | Nuc Kit Nuc7I5Dnke | - |
| Intel | Nuc Kit Nuc7I7Bnh | - |
| Intel | Nuc Kit Nuc7I7Dnke | - |
| Intel | Nuc Kit Nuc8I7Hnk | - |
Related Weaknesses (CWE)
References
- https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00251.Not Applicable
- https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00251.Not Applicable
FAQ
What is CVE-2019-11094?
CVE-2019-11094 is a vulnerability with a CVSS score of 7.8 (HIGH). Insufficient input validation in system firmware for Intel (R) NUC Kit may allow an authenticated user to potentially enable escalation of privilege, denial of service, and/or information disclosure v...
How severe is CVE-2019-11094?
CVE-2019-11094 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-11094?
Check the references section above for vendor advisories and patch information. Affected products include: Intel Nuc Kit Firmware, Intel Nuc Kit D33217Gke, Intel Nuc Kit D53427Rke, Intel Nuc Kit D54250Wyb, Intel Nuc Kit De3815Tybe.