CVE-2019-11094: Input Validation
First published: Fri May 17 2019(Updated: )
Insufficient input validation in system firmware for Intel (R) NUC Kit may allow an authenticated user to potentially enable escalation of privilege, denial of service, and/or information disclosure via local access.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Intel NUC Kit firmware | ||
| Intel NUC Kit D33217GKE | ||
| Intel NUC Kit D53427RKE | ||
| Intel NUC board D54250WYB | ||
| Intel NUC DE3815TYBE Firmware | ||
| Intel NUC Kit DN2820FYKH Firmware | ||
| Intel NUC Kit NUC5CPYH | ||
| Intel NUC kit nuc5i3myhe firmware | ||
| Intel NUC5i5MYHE | ||
| Intel NUC kit nuc5i7ryh firmware | ||
| Intel NUC kit NUC5PGYH firmware | ||
| Intel NUC6CAYS Firmware | ||
| Intel NUC kit nuc6i5syh firmware | ||
| Intel NUC kit nuc6i7kyk firmware | ||
| Intel NUC kit NUC7CJYH | ||
| Intel NUC kit NUC7i3DNHE firmware | ||
| Intel NUC Kit NUC7i5DNKE Firmware | ||
| Intel NUC NUC7i7BNH | ||
| Intel NUC NUC7i7DNKE | ||
| Intel NUC 8i7 HNK |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2019-11094?
The severity of CVE-2019-11094 is high, with a severity value of 7.8.
How does CVE-2019-11094 impact Intel NUC Kit firmware?
CVE-2019-11094 may allow an authenticated user to potentially enable escalation of privilege, denial of service, and/or information disclosure via local access.
Is Intel NUC Kit D33217gke vulnerable to CVE-2019-11094?
No, Intel NUC Kit D33217gke is not vulnerable to CVE-2019-11094.
How can I fix CVE-2019-11094?
To fix CVE-2019-11094, it is recommended to update the system firmware for Intel NUC Kit to a version that resolves the vulnerability.
Where can I find more information about CVE-2019-11094?
More information about CVE-2019-11094 can be found in the Intel Security Advisory INTEL-SA-00251.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/author
- agent/references
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- agent/weakness
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/intel
- canonical/intel nuc kit firmware
- canonical/intel nuc kit d33217gke
- canonical/intel nuc kit d53427rke
- canonical/intel nuc board d54250wyb
- canonical/intel nuc de3815tybe firmware
- canonical/intel nuc kit dn2820fykh firmware
- canonical/intel nuc kit nuc5cpyh
- canonical/intel nuc kit nuc5i3myhe firmware
- canonical/intel nuc5i5myhe
- canonical/intel nuc kit nuc5i7ryh firmware
- canonical/intel nuc kit nuc5pgyh firmware
- canonical/intel nuc6cays firmware
- canonical/intel nuc kit nuc6i5syh firmware
- canonical/intel nuc kit nuc6i7kyk firmware
- canonical/intel nuc kit nuc7cjyh
- canonical/intel nuc kit nuc7i3dnhe firmware
- canonical/intel nuc kit nuc7i5dnke firmware
- canonical/intel nuc nuc7i7bnh
- canonical/intel nuc nuc7i7dnke
- canonical/intel nuc 8i7 hnk