CVE-2019-0140

high

Description

Buffer overflow in firmware for Intel(R) Ethernet 700 Series Controllers before version 7.0 may allow an unauthenticated user to potentially enable an escalation of privilege via an adjacent access.

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00255.html

Details

Source: MITRE

Published: 2019-11-14

Updated: 2021-05-03

Type: CWE-120

Risk Information

CVSS v2

Base Score: 5.8

Vector: AV:A/AC:L/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 6.5

Severity: MEDIUM

CVSS v3

Base Score: 8.8

Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 2.8

Severity: HIGH