CVE-2019-14558
published 2020-10-05CVE-2019-14558: Insufficient control flow management in BIOS firmware for 8th, 9th, 10th Generation Intel(R) Core(TM), Intel(R) Celeron(R) Processor 4000 & 5000 Series…
medium5.7CVSS 3.1
AVAACLPRLUINSUCNINAH
Insufficient control flow management in BIOS firmware for 8th, 9th, 10th Generation Intel(R) Core(TM), Intel(R) Celeron(R) Processor 4000 & 5000 Series Processors may allow an authenticated user to potentially enable denial of service via adjacent access.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | edk2 | < edk2 0~20200229.4c0f6e34-1 (bookworm) | edk2 0~20200229.4c0f6e34-1 (bookworm) |
| tianocore | edk2 | >= 0 < 0~20200229.4c0f6e34-1 | 0~20200229.4c0f6e34-1 |
| tianocore | edk2 | >= 0 < 0~20200229.4c0f6e34-1 | 0~20200229.4c0f6e34-1 |
| tianocore | edk2 | >= 0 < 0~20200229.4c0f6e34-1 | 0~20200229.4c0f6e34-1 |
| tianocore | edk2 | >= 0 < 0~20200229.4c0f6e34-1 | 0~20200229.4c0f6e34-1 |
| tianocore | edk2 | >= 0 < 0~20160408.ffea0a2c-2ubuntu0.1 | 0~20160408.ffea0a2c-2ubuntu0.1 |
| tianocore | edk2 | >= 0 < 0~20180205.c0d9813c-2ubuntu0.2 | 0~20180205.c0d9813c-2ubuntu0.2 |
CVSS provenance
nvdv3.15.7MEDIUMCVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
osv9.1CRITICAL