high
7.2
Advisory Published
Updated

CVE-2019-0126

First published: Fri May 17 2019(Updated: )

Insufficient access control in silicon reference firmware for Intel(R) Xeon(R) Scalable Processor, Intel(R) Xeon(R) Processor D Family may allow a privileged user to potentially enable escalation of privilege and/or denial of service via local access.

Credit: secure@intel.com

Affected SoftwareAffected VersionHow to fix
Intel Xeon D-1649n Firmware
Intel xeon d-1649n
Intel xeon d-1633n firmware
Intel xeon d-1633n
Intel xeon d-1637 firmware
Intel xeon d-1637
Intel xeon d-1627 firmware
Intel xeon d-1627
Intel xeon d-1623n firmware
Intel xeon d-1623n
Intel xeon d-1622 firmware
Intel xeon d-1622
Intel xeon d-1653n firmware
Intel xeon d-1653n
Intel xeon d-1602 firmware
Intel xeon d-1602
Intel xeon d-2141i firmware
Intel xeon d-2141i
Intel xeon d-2177nt firmware
Intel xeon d-2177nt
Intel xeon d-2161i firmware
Intel xeon d-2161i
Intel xeon d-2143it firmware
Intel xeon d-2143it
Intel xeon d-2146nt firmware
Intel xeon d-2146nt
Intel xeon d-2145nt firmware
Intel xeon d-2145nt
Intel xeon d-2123it firmware
Intel xeon d-2123it
Intel xeon d-2173it firmware
Intel xeon d-2173it
Intel xeon d-2191 firmware
Intel xeon d-2191
Intel xeon d-2187nt firmware
Intel xeon d-2187nt
Intel xeon d-2142it firmware
Intel xeon d-2142it
Intel xeon d-2163it firmware
Intel xeon d-2163it
Intel xeon d-2183it firmware
Intel xeon d-2183it
Intel xeon d-2166nt firmware
Intel xeon d-2166nt
Intel xeon d-1513n firmware
Intel xeon d-1513n
Intel xeon d-1533n firmware
Intel xeon d-1533n
Intel xeon d-1553n firmware
Intel xeon d-1553n
Intel xeon d-1523n firmware
Intel xeon d-1523n
Intel xeon d-1543n firmware
Intel xeon d-1543n
Intel xeon d-1559 firmware
Intel xeon d-1559
Intel xeon d-1529 firmware
Intel xeon d-1529
Intel xeon d-1539 firmware
Intel xeon d-1539
Intel xeon d-1567 firmware
Intel xeon d-1567
Intel xeon d-1557 firmware
Intel xeon d-1557
Intel xeon d-1577 firmware
Intel xeon d-1577
Intel xeon d-1571 firmware
Intel xeon d-1571
Intel xeon d-1528 firmware
Intel xeon d-1528
Intel xeon d-1541 firmware
Intel xeon d-1541
Intel xeon d-1518 firmware
Intel xeon d-1518
Intel xeon d-1521 firmware
Intel xeon d-1521
Intel xeon d-1531 firmware
Intel xeon d-1531
Intel xeon d-1548 firmware
Intel xeon d-1548
Intel xeon d-1527 firmware
Intel xeon d-1527
Intel xeon d-1537 firmware
Intel xeon d-1537
Intel xeon d-1540 firmware
Intel xeon d-1540
Intel xeon d-1520 firmware
Intel xeon d-1520
Intel Xeon Platinum Processors Firmware
Intel Xeon Platinum Processors Firmware
Intel Xeon Gold Processors Firmware
Intel Xeon Gold Processors Firmware
Intel Xeon Silver Processors Firmware
Intel Xeon Silver Processors Firmware
Intel Xeon Bronze Processors Firmware
Intel Xeon Bronze Processors Firmware

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2019-0126?

    CVE-2019-0126 is classified as a high severity vulnerability due to the potential for privilege escalation and denial of service.

  • How do I fix CVE-2019-0126?

    To mitigate CVE-2019-0126, apply the latest firmware updates provided by Intel for the affected Xeon processor models.

  • Who is affected by CVE-2019-0126?

    CVE-2019-0126 affects users of Intel Xeon Scalable Processors and certain firmware versions.

  • What could be the impact of CVE-2019-0126?

    Exploitation of CVE-2019-0126 may lead to escalation of privileges or denial of service in systems utilizing the vulnerable Intel firmware.

  • Is CVE-2019-0126 remotely exploitable?

    CVE-2019-0126 requires local access, meaning it is not remotely exploitable without local user privileges.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203