CVE-2019-14608 — Vulnetix

CVE-2019-14608 PUBLISHED CVSS 7.800000190734863 HIGH

Improper buffer restrictions in firmware for Intel(R) NUC(R) may allow an authenticated user to potentially enable escalation of privilege via local access.

EPSS 0.19% · 40.4th percentile

Risk Scores

CVSS 3.1

7.800000190734863

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Score

0.19%

40.4th percentile

Affected Products

Vendor	Product	Versions
intel	nuc6i7kyk_firmware	0
intel	cd1iv128mk_firmware	0
intel	nuc6cays_firmware	0
intel	nuc_8_mainstream_game_kit_firmware	0
intel	nuc6i5syh_firmware	0
intel	nuc7cjyh_firmware	0
intel	nuc_8_mainstream_game_mini_computer_firmware	0
intel	cd1p64gk_firmware	0
intel	de3815tybe_firmware	0
intel	nuc8i7hnk_firmware	0
intel	nuc7i3dnhe_firmware	0
intel	stk2mv64cc_firmware	0
intel	nuc7i7dnke_firmware	0
intel	stk2m3w64cc_firmware	0
intel	nuc8i7bek_firmware	0
intel	nuc7i5dnke_firmware	0
intel	nuc8i3cysm_firmware	0
intel	d34010wyb_firmware	0
intel	cd1m3128mk_firmware	0
n/a	Intel(R) NUC(R)	*

Exploit Intelligence

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00323.html (circl)

Timeline

Dec 11, 2019 CVE Published
Apr 14, 2021 EPSS Score
Jun 23, 2021 EPSS Score
Aug 24, 2021 EPSS Score
Oct 26, 2021 EPSS Score
Dec 27, 2021 EPSS Score
Feb 28, 2022 EPSS Score
Apr 1, 2022 EPSS Score
May 1, 2022 EPSS Score
Jul 3, 2022 EPSS Score
Sep 4, 2022 EPSS Score
Nov 6, 2022 EPSS Score

References

Open in Interactive Console →