medium
6.7
CWE
20
Advisory Published
Updated

CVE-2019-11128: Input Validation

First published: Thu Jun 13 2019(Updated: )

Insufficient input validation in system firmware for Intel(R) NUC Kit may allow a privileged user to potentially enable escalation of privilege, denial of service and/or information disclosure via local access.

Credit: secure@intel.com

Affected SoftwareAffected VersionHow to fix
Intel NUC Kit firmware
Intel NUC Kit NUC8i3BE
Intel NUC Kit NUC8i3BE=nuc_kit_d34010wyx
Intel NUC Kit NUC8i3BE=nuc_kit_d54250wyx
Intel NUC Kit NUC8i3BE=nuc_kit_de3815tyb
Intel NUC Kit NUC8i3BE=nuc_kit_dn2820fykh
Intel NUC Kit NUC8i3BE=nuc_kit_nuc5cpyh
Intel NUC Kit NUC8i3BE=nuc_kit_nuc5i3myx
Intel NUC Kit NUC8i3BE=nuc_kit_nuc5i3ryx
Intel NUC Kit NUC8i3BE=nuc_kit_nuc5i5myx
Intel NUC Kit NUC8i3BE=nuc_kit_nuc5i5ryx
Intel NUC Kit NUC8i3BE=nuc_kit_nuc5i7ryx
Intel NUC Kit NUC8i3BE=nuc_kit_nuc5pgyh
Intel NUC Kit NUC8i3BE=nuc_kit_nuc5ppyh
Intel NUC Kit NUC8i3BE=nuc_kit_nuc6cayx
Intel NUC Kit NUC8i3BE=nuc_kit_nuc6i3syx
Intel NUC Kit NUC8i3BE=nuc_kit_nuc6i5syx
Intel NUC Kit NUC8i3BE=nuc_kit_nuc6i7kyk
Intel NUC Kit NUC8i3BE=nuc_kit_nuc7cjy
Intel NUC Kit NUC8i3BE=nuc_kit_nuc7i3bnx
Intel NUC Kit NUC8i3BE=nuc_kit_nuc7i3dnx
Intel NUC Kit NUC8i3BE=nuc_kit_nuc7i5bnx
Intel NUC Kit NUC8i3BE=nuc_kit_nuc7i5dnx
Intel NUC Kit NUC8i3BE=nuc_kit_nuc7i7bnx
Intel NUC Kit NUC8i3BE=nuc_kit_nuc7i7dnx
Intel NUC Kit NUC8i3BE=nuc_kit_nuc7pjy
Intel NUC Kit NUC8i3BE=nuc_kit_nuc8i3cyx
Intel NUC Kit NUC8i3BE=nuc_kit_nuc8i5bex
Intel NUC Kit NUC8i3BE=nuc_kit_nuc8i7bex
Intel NUC Kit NUC8i3BE=nuc_kit_nuc8i7hnk
Intel NUC Kit NUC8i3BE=nuc_kit_nuc8i7hvk
Intel Compute Card Firmware
Intel Compute Card CD1C64GK
Intel CD1IV128MK Firmware
Intel Compute Card Firmware
Intel Compute Card Firmware
Intel Compute Stick Firmware
Intel Compute Stick STCK1A32WFC Firmware
Intel Compute Stick STCK1A8LFC Firmware
Intel Compute Stick Firmware
Intel Compute Stick STK2M3W64CC Firmware
Intel Compute Stick Firmware

Remedy

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00264.html?wapkw=2019-11129

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2019-11128?

    CVE-2019-11128 has a severity of medium with a severity value of 6.7.

  • How does CVE-2019-11128 impact Intel(R) NUC Kit?

    CVE-2019-11128 may allow a privileged user to potentially enable escalation of privilege, denial of service, and/or information disclosure via local access on Intel(R) NUC Kit.

  • What software is affected by CVE-2019-11128?

    The affected software includes Intel NUC Kit Firmware and Intel Compute Card Firmware.

  • How can I fix CVE-2019-11128?

    To fix CVE-2019-11128, users should refer to the advisories provided by Intel and apply any available patches or updates.

  • Where can I find more information about CVE-2019-11128?

    More information about CVE-2019-11128 can be found in the security advisories provided by Intel.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203