CVE-2019-11139 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	6 MEDIUM	LOCAL	LOW	HIGH	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H
intel	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 31%

Vendor	Product	Version
debian	debian_linux	8.0
opensuse	leap	15.0
opensuse	leap	15.1
intel	xeon_8153_firmware	-
intel	xeon_8156_firmware	-
intel	xeon_8158_firmware	-
intel	xeon_8160_firmware	-
intel	xeon_8160f_firmware	-
intel	xeon_8160m_firmware	-
intel	xeon_8160t_firmware	-
intel	xeon_8164_firmware	-
intel	xeon_8168_firmware	-
intel	xeon_8170_firmware	-
intel	xeon_8170m_firmware	-
intel	xeon_8176_firmware	-
intel	xeon_8176f_firmware	-
intel	xeon_8176m_firmware	-
intel	xeon_8180_firmware	-
intel	xeon_8180m_firmware	-
intel	xeon_5115_firmware	-
intel	xeon_5118_firmware	-
intel	xeon_5119t_firmware	-
intel	xeon_5120_firmware	-
intel	xeon_5120t_firmware	-
intel	xeon_5122_firmware	-
intel	xeon_6126_firmware	-
intel	xeon_6126f_firmware	-
intel	xeon_6126t_firmware	-
intel	xeon_6128_firmware	-
intel	xeon_6130_firmware	-
intel	xeon_6130f_firmware	-
intel	xeon_6130t_firmware	-
intel	xeon_6132_firmware	-
intel	xeon_6134_firmware	-
intel	xeon_6134m_firmware	-
intel	xeon_6136_firmware	-
intel	xeon_6138_firmware	-
intel	xeon_6138f_firmware	-
intel	xeon_6138t_firmware	-
intel	xeon_6140_firmware	-
intel	xeon_6140m_firmware	-
intel	xeon_6142_firmware	-
intel	xeon_6142f_firmware	-
intel	xeon_6144_firmware	-
intel	xeon_6146_firmware	-
intel	xeon_6148_firmware	-
intel	xeon_6148f_firmware	-
intel	xeon_6150_firmware	-
intel	xeon_6152_firmware	-
intel	xeon_6154_firmware	-
intel	xeon_4108_firmware	-
intel	xeon_4109t_firmware	-
intel	xeon_4110_firmware	-
intel	xeon_4112_firmware	-
intel	xeon_4114_firmware	-
intel	xeon_4114t_firmware	-
intel	xeon_4116_firmware	-
intel	xeon_4116t_firmware	-
intel	xeon_3104_firmware	-
intel	xeon_3106_firmware	-

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

intel-microcode

bullseye/non-free	3.20240813.1~deb11u1 fixed
bullseye/non-free (security)	3.20231114.1~deb11u1 fixed
bookworm/non-free-firmware	3.20240813.1~deb12u1 fixed
bookworm/non-free-firmware (security)	3.20231114.1~deb12u1 fixed
sid/non-free-firmware	3.20240910.1 fixed
trixie/non-free-firmware	3.20240910.1 fixed

Ubuntu Releases

Ubuntu Product

Codename

intel-microcode

eoan	Fixed 3.20191112-0ubuntu0.19.10.2 released
disco	Fixed 3.20191112-0ubuntu0.19.04.2 released
bionic	Fixed 3.20191112-0ubuntu0.18.04.2 released
xenial	Fixed 3.20191112-0ubuntu0.16.04.2 released
trusty	Fixed 3.20191112-0ubuntu0.14.04.2 released

Common Weakness Enumeration

CWE-754 - Improper Check for Unusual or Exceptional Conditions
The software does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the software.

References

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00045.html

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00046.html

https://lists.debian.org/debian-lts-announce/2019/12/msg00035.html

https://seclists.org/bugtraq/2019/Dec/28

https://support.f5.com/csp/article/K42433061?utm_source=f5support&amp%3Butm_medium=RSS

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03969en_us

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00271.html

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00045.html

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00046.html

https://lists.debian.org/debian-lts-announce/2019/12/msg00035.html

https://seclists.org/bugtraq/2019/Dec/28

https://support.f5.com/csp/article/K42433061?utm_source=f5support&amp%3Butm_medium=RSS

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03969en_us

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00271.html