HIGH✓ PATCH🇬🇧 English

CVE-2019-0145

CVSS 7.8v3.1pub. 2019-11-14upd. 2024-11-21

Buffer overflow in i40e driver for Intel(R) Ethernet 700 Series Controllers versions before 7.0 may allow an authenticated user to potentially enable an escalation of privilege via local access.

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Intel Ethernet 700 Series Software

    APP
    Intel
    < 24.0
  • Intel Ethernet Controller 710 Bm1

    HW
    Intel
    wszystkie wersje
  • Intel Ethernet Controller 710 Bm1 Firmware

    OS
    Intel
    < 7.0
  • Intel Ethernet Controller X710 At2

    HW
    Intel
    wszystkie wersje
  • Intel Ethernet Controller X710 At2 Firmware

    OS
    Intel
    < 7.0
  • Intel Ethernet Controller X710 Bm2

    HW
    Intel
    wszystkie wersje
  • Intel Ethernet Controller X710 Bm2 Firmware

    OS
    Intel
    < 7.0
  • Intel Ethernet Controller X710 Tm4

    HW
    Intel
    wszystkie wersje
  • Intel Ethernet Controller X710 Tm4 Firmware

    OS
    Intel
    < 7.0
  • Intel Ethernet Controller Xxv710 Am1

    HW
    Intel
    wszystkie wersje
  • Intel Ethernet Controller Xxv710 Am1 Firmware

    OS
    Intel
    < 7.0
  • Intel Ethernet Controller Xxv710 Am2

    HW
    Intel
    wszystkie wersje
  • Intel Ethernet Controller Xxv710 Am2 Firmware

    OS
    Intel
    < 7.0
  • Linux Kernel

    OS
    Linux
    4.6 – 4.9.244 (bez)4.10 – 4.14.205 (bez)4.15 – 4.19.139 (bez)4.20 – 5.2 (bez)
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
Tagi
Memory
CWE
Referencje

Powiązane podatności

CVE-2025-10585CRITICAL9.8⚠ KEVPL ✓ten sam produkt

Type confusion w V8 (Google Chrome) — zdalne uszkodzenie sterty

CVE-2025-34028CRITICAL9.3⚠ KEVPL ✓ten sam produkt

Commvault Command Center – nieuwierzytelniony RCE przez path traversal w ZIP

CVE-2022-47986CRITICAL9.8⚠ KEVten sam produkt

IBM Aspera Faspex 4.4.2 Patch Level 1 and earlier could allow a remote attacker to execute arbitrary code on t...

CVE-2022-22954CRITICAL9.8⚠ KEVten sam produkt

VMware Workspace ONE Access and Identity Manager contain a remote code execution vulnerability due to server-s...

CVE-2020-4006CRITICAL9.1⚠ KEVten sam produkt

VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector address have a...