Vulnerability Description
Logic errors in Intel(R) PROSet/Wireless WiFi Software before version 21.40 may allow an authenticated user to potentially enable escalation of privilege, denial of service, and information disclosure via local access.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Intel | Proset\/Wireless Wifi | < 21.40 |
| Intel | Dual Band Wireless-Ac 3165 | - |
| Intel | Dual Band Wireless-Ac 3168 | - |
| Intel | Dual Band Wireless-Ac 7265 \(Rev D\) | - |
| Intel | Dual Band Wireless-Ac 8260 | - |
| Intel | Dual Band Wireless-Ac 8265 | - |
| Intel | Dual Band Wireless-N 7265 \(Rev D\) | - |
| Intel | Wi-Fi 6 Ax200 | - |
| Intel | Wi-Fi 6 Ax201 | - |
| Intel | Wireless-Ac 9260 | - |
| Intel | Wireless-Ac 9461 | - |
| Intel | Wireless-Ac 9462 | - |
| Intel | Wireless-Ac 9560 | - |
| Intel | Wireless 7265 \(Rev D\) | - |
References
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00288.Vendor Advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00288.Vendor Advisory
FAQ
What is CVE-2019-11156?
CVE-2019-11156 is a vulnerability with a CVSS score of 7.8 (HIGH). Logic errors in Intel(R) PROSet/Wireless WiFi Software before version 21.40 may allow an authenticated user to potentially enable escalation of privilege, denial of service, and information disclosure...
How severe is CVE-2019-11156?
CVE-2019-11156 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-11156?
Check the references section above for vendor advisories and patch information. Affected products include: Intel Proset\/Wireless Wifi, Intel Dual Band Wireless-Ac 3165, Intel Dual Band Wireless-Ac 3168, Intel Dual Band Wireless-Ac 7265 \(Rev D\), Intel Dual Band Wireless-Ac 8260.