CVE-2019-0115

CWE-20 — Improper Input Validation3 documents3 sources

Severity

5.5MEDIUM

EPSS

0.1%

top 68.65%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Intel Graphics Driver

Timeline

PublishedMay 17

Latest updateMay 24

Description

Insufficient input validation in KMD module for Intel(R) Graphics Driver before version 10.18.14.5067 (aka 15.36.x.5067) and 10.18.10.5069 (aka 15.33.x.5069) may allow an authenticated user to potentially enable denial of service via local access.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

▶CVEListV5intel(r)_graphics_driver_kmd_moduleVersions before 10.18.14.5067 (aka 15.36.x.5067) and 10.18.10.5069 (aka 15.33.x.5069).

▶NVDintel/graphics_driver8 versions+7

🔴Vulnerability Details

GHSA

GHSA-v46x-hjrh-hhr9: Insufficient input validation in KMD module for Intel(R) Graphics Driver before version 10↗2022-05-24

▶

CVEList

CVE-2019-0115: Insufficient input validation in KMD module for Intel(R) Graphics Driver before version 10↗2019-05-17

▶