CVE-2019-0136high
New! CVE Severity Now Using CVSS v3
The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Description
Insufficient access control in the Intel(R) PROSet/Wireless WiFi Software driver before version 21.10 may allow an unauthenticated user to potentially enable denial of service via adjacent access.
References
http://jvn.jp/en/jp/JVN75617741/index.html
http://packetstormsecurity.com/files/154951/Kernel-Live-Patch-Security-Notice-LSN-0058-1.html
http://www.securityfocus.com/bid/108777
https://lists.debian.org/debian-lts-announce/2019/09/msg00014.html
https://lists.debian.org/debian-lts-announce/2019/09/msg00015.html
https://lists.debian.org/debian-lts-announce/2019/09/msg00025.html
https://lists.debian.org/debian-lts-announce/2020/03/msg00001.html
https://support.lenovo.com/us/en/product_security/LEN-27828
https://usn.ubuntu.com/4115-1/
https://usn.ubuntu.com/4118-1/
https://usn.ubuntu.com/4145-1/
https://usn.ubuntu.com/4147-1/
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00232.html
Details
Source: MITRE
Published: 2019-06-13
Updated: 2020-08-24
Type: NVD-CWE-noinfo
Risk Information
CVSS v2
Base Score: 3.3
Vector: AV:A/AC:L/Au:N/C:N/I:N/A:P
Impact Score: 2.9
Exploitability Score: 6.5
Severity: LOW
CVSS v3
Base Score: 7.4
Vector: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Impact Score: 4
Exploitability Score: 2.8
Severity: HIGH
Vulnerable Software
Configuration 1
AND
OR
OR
cpe:2.3:o:google:chrome_os:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 144831 | EulerOS Virtualization 3.0.2.6 : kernel (EulerOS-SA-2021-1056) | Nessus | Huawei Local Security Checks | critical |
| 134486 | EulerOS Virtualization for ARM 64 3.0.2.0 : kernel (EulerOS-SA-2020-1197) | Nessus | Huawei Local Security Checks | critical |
| 134240 | Debian DLA-2114-1 : linux-4.9 security update | Nessus | Debian Local Security Checks | critical |
| 132796 | EulerOS Virtualization for ARM 64 3.0.5.0 : kernel (EulerOS-SA-2020-1042) | Nessus | Huawei Local Security Checks | critical |
| 132134 | EulerOS 2.0 SP3 : kernel (EulerOS-SA-2019-2599) | Nessus | Huawei Local Security Checks | high |
| 131845 | EulerOS 2.0 SP2 : kernel (EulerOS-SA-2019-2353) | Nessus | Huawei Local Security Checks | critical |
| 131805 | EulerOS 2.0 SP5 : kernel (EulerOS-SA-2019-2531) | Nessus | Huawei Local Security Checks | high |
| 131349 | EulerOS 2.0 SP8 : kernel (EulerOS-SA-2019-2283) | Nessus | Huawei Local Security Checks | high |
| 129677 | Ubuntu 18.04 LTS / 19.04 : linux, linux-aws, linux-azure, linux-gcp, linux-gke-5.0, linux-hwe, (USN-4147-1) | Nessus | Ubuntu Local Security Checks | critical |
| 129491 | Ubuntu 16.04 LTS : linux, linux-aws, linux-kvm, linux-raspi2, linux-snapdragon vulnerabilities (USN-4145-1) | Nessus | Ubuntu Local Security Checks | critical |
| 129361 | Debian DLA-1930-1 : linux security update | Nessus | Debian Local Security Checks | critical |
| 128779 | Debian DLA-1919-2 : linux-4.9 security update | Nessus | Debian Local Security Checks | critical |
| 128680 | Ubuntu 16.04 LTS / 18.04 LTS : Linux kernel regression (USN-4115-2) | Nessus | Ubuntu Local Security Checks | critical |
| 128478 | Ubuntu 16.04 LTS / 18.04 LTS : linux-aws vulnerabilities (USN-4118-1) | Nessus | Ubuntu Local Security Checks | critical |
| 128475 | Ubuntu 16.04 LTS / 18.04 LTS : linux, linux-azure, linux-gcp, linux-gke-4.15, linux-hwe, linux-kvm, (USN-4115-1) | Nessus | Ubuntu Local Security Checks | critical |