CVE-2019-0163: Input Validation
First published: Wed Apr 17 2019(Updated: )
Insufficient input validation in system firmware for Intel(R) Broadwell U i5 vPro before version MYBDWi5v.86A may allow an authenticated user to potentially enable escalation of privilege, denial of service, and/or information disclosure via local access.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Intel Core i5-5350U | <mybdwi5v.86a | |
| Intel Core i5-5350U |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2019-0163?
CVE-2019-0163 is considered a moderate severity vulnerability due to its potential for privilege escalation and information disclosure.
How do I fix CVE-2019-0163?
To mitigate CVE-2019-0163, update the Intel Broadwell U i5 vPro firmware to version MYBDWi5v.86A or later.
What causes CVE-2019-0163?
CVE-2019-0163 is caused by insufficient input validation in the system firmware of affected Intel processors.
Who is affected by CVE-2019-0163?
CVE-2019-0163 affects authenticated users of systems utilizing Intel Broadwell U i5 vPro processors prior to firmware version MYBDWi5v.86A.
What are the potential impacts of CVE-2019-0163?
The potential impacts of CVE-2019-0163 include escalation of privilege, denial of service, and information disclosure if exploited.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/references
- agent/severity
- agent/last-modified-date
- agent/remedy
- agent/first-publish-date
- agent/event
- agent/description
- agent/source
- agent/weakness
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/intel
- canonical/intel core i5-5350u