Details of VAR-201906-0918

ID

VAR-201906-0918

CVE

CVE-2019-0174

TITLE

Intel Multiple vulnerabilities in the product

Trust: 0.8

sources: JVNDB: JVNDB-2019-004980

DESCRIPTION

Logic condition in specific microprocessors may allow an authenticated user to potentially enable partial physical address information disclosure via local access. Intel CoreX-seriesProcessors and so on are products of Intel Corporation of the United States. Intel CoreX-seriesProcessors is an X-Series central processing unit (CPU). 4thGenerationIntelCorei5Processors is a fourth-generation Corei5 series central processing unit (CPU). 4thGenerationIntelCorei3Processors is a fourth-generation Corei3 series central processing unit (CPU). There are information disclosure vulnerabilities in various Intel products that can be exploited by local attackers to disclose some physical addresses. DRAM is prone to an information disclosure vulnerability. The following products and versions are affected: Intel Core X-series Processors; 4th Generation Intel Core i5 Processors; 4th Generation Intel Core i3 Processors; Intel Pentium Processor G Series; Intel Pentium Processor 3000 Series; Intel Celeron Processor 2000 Series; Intel Xeon Processor E7 v3 Family; Intel Xeon Processor E5 v3 Family; Intel Xeon Processor E3 v3 Family

Trust: 1.8

sources: NVD: CVE-2019-0174 // CNVD: CNVD-2019-25499 // BID: 108731 // VULHUB: VHN-140205

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2019-25499

AFFECTED PRODUCTS

vendor:	intel	model:	i5-4330m	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4158u	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e3-1270	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4130t	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2603	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i9-9960x	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4025u	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e3-1281	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	3805u	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4210u	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4160	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4102e	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-4640	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4430s	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4110e	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-4667	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2630l	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4330te	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4310m	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4350	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e7-8867	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2418l	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2690	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e3-1241	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2658a	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4370t	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e3-1220	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	2002e	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e3-1285l	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4210h	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4440	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4330t	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4422e	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e3-1240l	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4288u	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4202y	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4460	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4030y	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2428l	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4112e	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4200y	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	2980u	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-1620	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	3550m	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4440s	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4402ec	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i7-7800x	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4300u	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	2950m	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i9-9920x	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e3-1268l	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4110m	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e3-1245	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e3-1230	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e3-1225	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-4650	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4100u	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4402e	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	3556u	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e7-8880	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2687w	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e3-1285	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e3-1275	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4200h	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4100e	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4370	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i9-7920x	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4278u	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e7-8860	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4150t	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4005u	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2658	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4400e	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2697	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e3-1276	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i9-7940x	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4460s	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4170	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e3-1220l	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2628l	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4100m	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e7-4809	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4460t	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4340	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e3-1226	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e3-1286l	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2650l	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i9-9940x	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e7-4820	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-1650	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e3-1275l	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4302y	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i9-7900x	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	3561y	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-4655	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	3825u	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4170t	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2618l	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2699	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e7-4830	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2623	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2609	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e3-1265l	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e3-1246	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e7-8880l	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2670	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-4669	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e3-1280	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-1680	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-4648	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4150	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-4610	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4010u	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4220y	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2438l	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2683	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-1630	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4360	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4020y	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4360t	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	2981u	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e7-8870	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i7-7820x	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i9-9900x	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	2000e	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2648l	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	3560y	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4360u	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4410e	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4350t	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2643	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4308u	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e3-1231	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2408l	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4160t	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	2970m	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e3-1271	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4258u	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	3558u	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i9-7960x	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i9-7980xe	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2608l	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e3-1286	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4012y	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4210m	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4120u	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	2955u	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4200u	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2640	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	2957u	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4030u	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	2961y	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2660	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2650	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e3-1240	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e7-8891	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e7-8893	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4340m	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4130	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2630	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-4627	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4200m	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2620	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-1660	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2698	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2695	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-4620	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4330	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4310u	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4300m	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4210y	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e7-4850	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2637	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2680	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4000m	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-4660	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e7-8890	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	3560m	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e3-1230l	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i9-9980xe	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-2667	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	e5-1428l	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4250u	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4340te	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4300y	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i3-4010y	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4350u	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	i5-4260u	scope:	eq	version:	-	Trust: 1.0
vendor:	intel	model:	accelerated storage manager	scope:	-	version:	-	Trust: 0.8
vendor:	intel	model:	chipset device software	scope:	-	version:	-	Trust: 0.8
vendor:	intel	model:	compute card	scope:	-	version:	-	Trust: 0.8
vendor:	intel	model:	compute stick	scope:	-	version:	-	Trust: 0.8
vendor:	intel	model:	core i3	scope:	-	version:	-	Trust: 0.8
vendor:	intel	model:	core i5	scope:	-	version:	-	Trust: 0.8
vendor:	intel	model:	core x-series	scope:	-	version:	-	Trust: 0.8
vendor:	intel	model:	nuc kit	scope:	-	version:	-	Trust: 0.8
vendor:	intel	model:	omni-path fabric manager gui	scope:	-	version:	-	Trust: 0.8
vendor:	intel	model:	pentium	scope:	eq	version:	processor 2000 series	Trust: 0.8
vendor:	intel	model:	pentium	scope:	eq	version:	processor 3000 series	Trust: 0.8
vendor:	intel	model:	pentium	scope:	eq	version:	processor g series	Trust: 0.8
vendor:	intel	model:	proset/wireless software driver	scope:	-	version:	-	Trust: 0.8
vendor:	intel	model:	raid web console v3	scope:	eq	version:	for windows	Trust: 0.8
vendor:	intel	model:	sgx dcap linux driver	scope:	-	version:	-	Trust: 0.8
vendor:	intel	model:	sgx linux client driver	scope:	-	version:	-	Trust: 0.8
vendor:	intel	model:	turbo boost max technology	scope:	-	version:	-	Trust: 0.8
vendor:	intel	model:	xeon	scope:	eq	version:	processor e7 v3 family	Trust: 0.8
vendor:	intel	model:	xeon	scope:	eq	version:	processor e7 v5 family	Trust: 0.8
vendor:	intel	model:	xeon	scope:	eq	version:	processor e7 v7 family	Trust: 0.8
vendor:	intel	model:	ite tech* consumer infrared driver	scope:	eq	version:	for windows 10	Trust: 0.8
vendor:	intel	model:	open cloud integrity technology	scope:	-	version:	-	Trust: 0.8
vendor:	intel	model:	openattestation	scope:	-	version:	-	Trust: 0.8
vendor:	intel	model:	xeon processor e3 family	scope:	eq	version:	v3	Trust: 0.6
vendor:	intel	model:	xeon processor e5 family	scope:	eq	version:	v3	Trust: 0.6
vendor:	intel	model:	xeon processor e7 family	scope:	eq	version:	v3	Trust: 0.6
vendor:	intel	model:	core x-series processors	scope:	-	version:	-	Trust: 0.6
vendor:	intel	model:	4th generation intel core i5 processors	scope:	-	version:	-	Trust: 0.6
vendor:	intel	model:	4th generation intel core i3 processors	scope:	-	version:	-	Trust: 0.6
vendor:	intel	model:	pentium processor g series	scope:	-	version:	-	Trust: 0.6
vendor:	intel	model:	pentium processor series	scope:	eq	version:	3000	Trust: 0.6
vendor:	intel	model:	celeron processor series	scope:	eq	version:	2000	Trust: 0.6
vendor:	intel	model:	xeon processor e7 family	scope:	eq	version:	v30	Trust: 0.3
vendor:	intel	model:	xeon processor e5 family	scope:	eq	version:	v30	Trust: 0.3
vendor:	intel	model:	xeon processor e3 family	scope:	eq	version:	v30	Trust: 0.3
vendor:	intel	model:	pentium processor g series	scope:	eq	version:	0	Trust: 0.3
vendor:	intel	model:	pentium processor series	scope:	eq	version:	30000	Trust: 0.3
vendor:	intel	model:	core series processors	scope:	eq	version:	x0	Trust: 0.3
vendor:	intel	model:	celeron processor series	scope:	eq	version:	20000	Trust: 0.3
vendor:	intel	model:	4th generation core i5 processors	scope:	eq	version:	0	Trust: 0.3
vendor:	intel	model:	4th generation core i3 processors	scope:	eq	version:	0	Trust: 0.3
vendor:	dram	model:	dram	scope:	eq	version:	0	Trust: 0.3

sources: CNVD: CNVD-2019-25499 // BID: 108731 // JVNDB: JVNDB-2019-004980 // NVD: CVE-2019-0174

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2019-0174
value:	LOW
Trust: 1.0
CNVD:	CNVD-2019-25499
value:	LOW
Trust: 0.6
CNNVD:	CNNVD-201906-527
value:	LOW
Trust: 0.6
VULHUB:	VHN-140205
value:	LOW
Trust: 0.1

nvd@nist.gov:	CVE-2019-0174
severity:	LOW
baseScore:	2.1
vectorString:	AV:L/AC:L/AU:N/C:P/I:N/A:N
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
CNVD:	CNVD-2019-25499
severity:	LOW
baseScore:	2.1
vectorString:	AV:L/AC:L/AU:N/C:P/I:N/A:N
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
VULHUB:	VHN-140205
severity:	LOW
baseScore:	2.1
vectorString:	AV:L/AC:L/AU:N/C:P/I:N/A:N
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2019-0174
baseSeverity:	LOW
baseScore:	3.3
vectorString:	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	LOW
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	1.8
impactScore:	1.4
version:	3.0
Trust: 1.0

sources: CNVD: CNVD-2019-25499 // VULHUB: VHN-140205 // CNNVD: CNNVD-201906-527 // NVD: CVE-2019-0174

PROBLEMTYPE DATA

problemtype:	NVD-CWE-noinfo	Trust: 1.0
problemtype:	CWE-200	Trust: 0.1

sources: VULHUB: VHN-140205 // NVD: CVE-2019-0174

THREAT TYPE

local

Trust: 0.9

sources: BID: 108731 // CNNVD: CNNVD-201906-527

TYPE

information disclosure

Trust: 0.6

sources: CNNVD: CNNVD-201906-527

CONFIGURATIONS

sources: JVNDB: JVNDB-2019-004980

PATCH

title:	[INTEL-SA-00248] Open Cloud Integrity Technology and OpenAttestation Advisory	url:	https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00248.html	Trust: 0.8
title:	[INTEL-SA-00257] Intel Omni-Path Fabric Manager GUI Advisory	url:	https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00257.html	Trust: 0.8
title:	[INTEL-SA-00259] Intel RAID Web Console 3 for Windows* Advisory	url:	https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00259.html	Trust: 0.8
title:	[INTEL-SA-00224] Intel Chipset Device Software (INF Update Utility) Advisory	url:	https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00224.html	Trust: 0.8
title:	[INTEL-SA-00264] Intel NUC Firmware Advisory	url:	https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00264.html	Trust: 0.8
title:	[INTEL-SA-00226] Intel Accelerated Storage Manager in Intel Rapid Storage Technology Enterprise Advisory	url:	https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00226.html	Trust: 0.8
title:	[INTEL-SA-00206] ITE Tech* Consumer Infrared Driver for Windows 10 Advisory	url:	https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00206.html	Trust: 0.8
title:	[INTEL-SA-00232] Intel PROSet/Wireless WiFi Software Advisory	url:	https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00232.html	Trust: 0.8
title:	[INTEL-SA-00235] Intel SGX for Linux Advisory	url:	https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00235.html	Trust: 0.8
title:	[INTEL-SA-00243] Intel Turbo Boost Max Technology 3.0 Advisory	url:	https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00243.html	Trust: 0.8
title:	[INTEL-SA-00247] Partial Physical Address Leakage Advisory	url:	https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00247.html	Trust: 0.8

sources: JVNDB: JVNDB-2019-004980

EXTERNAL IDS

db:	NVD	id:	CVE-2019-0174	Trust: 3.4
db:	BID	id:	108731	Trust: 2.6
db:	LENOVO	id:	LEN-27842	Trust: 2.3
db:	JVN	id:	JVNVU95572531	Trust: 0.8
db:	JVNDB	id:	JVNDB-2019-004980	Trust: 0.8
db:	CNNVD	id:	CNNVD-201906-527	Trust: 0.7
db:	CNVD	id:	CNVD-2019-25499	Trust: 0.6
db:	VULHUB	id:	VHN-140205	Trust: 0.1

sources: CNVD: CNVD-2019-25499 // VULHUB: VHN-140205 // BID: 108731 // JVNDB: JVNDB-2019-004980 // CNNVD: CNNVD-201906-527 // NVD: CVE-2019-0174

REFERENCES

url:	http://www.securityfocus.com/bid/108731	Trust: 2.9
url:	https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00247.html	Trust: 2.6
url:	https://security.netapp.com/advisory/ntap-20190612-0001/	Trust: 2.3
url:	https://support.f5.com/csp/article/k18165180	Trust: 1.7
url:	https://support.lenovo.com/us/en/product_security/len-27842	Trust: 1.7
url:	https://nvd.nist.gov/vuln/detail/cve-2019-0174	Trust: 1.4
url:	https://support.lenovo.com/us/zh/product_security/len-27842	Trust: 1.2
url:	https://rambleed.com/docs/20190603-rambleed-web.pdf	Trust: 0.9
url:	https://blogs.oracle.com/security/rambleed	Trust: 0.9
url:	https://access.redhat.com/security/cve/cve-2019-0174	Trust: 0.9
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-0130	Trust: 0.8
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-0179	Trust: 0.8
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-11123	Trust: 0.8
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-0136	Trust: 0.8
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-0180	Trust: 0.8
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-11124	Trust: 0.8
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-0157	Trust: 0.8
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-0181	Trust: 0.8
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-11125	Trust: 0.8
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-0164	Trust: 0.8
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-0182	Trust: 0.8
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-11126	Trust: 0.8
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-11127	Trust: 0.8
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-0174	Trust: 0.8
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-0183	Trust: 0.8
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-11128	Trust: 0.8
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-0175	Trust: 0.8
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-11092	Trust: 0.8
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-11129	Trust: 0.8
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-3702	Trust: 0.8
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-0177	Trust: 0.8
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-11117	Trust: 0.8
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-0128	Trust: 0.8
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-0178	Trust: 0.8
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-11119	Trust: 0.8
url:	http://jvn.jp/cert/jvnvu95572531	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2019-0128	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2019-0178	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2019-11119	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2019-0130	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2019-0179	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2019-11123	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2019-0136	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2019-0180	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2019-11124	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2019-0157	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2019-0181	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2019-11125	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2019-0164	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2019-0182	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2019-11126	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2019-0183	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2019-11127	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2019-0175	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2019-11092	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2019-11128	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2018-3702	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2019-0177	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2019-11117	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2019-11129	Trust: 0.8
url:	https://www.intel.com/content/www/us/en/security-center/advisory/in	Trust: 0.6

sources: CNVD: CNVD-2019-25499 // VULHUB: VHN-140205 // BID: 108731 // JVNDB: JVNDB-2019-004980 // CNNVD: CNNVD-201906-527 // NVD: CVE-2019-0174

CREDITS

Andrew Kwong and Daniel Genkin from University of Michigan. Daniel Gruss from Graz University of Technology. Yuval Yarom from University of Adelaide.

Trust: 0.6

sources: CNNVD: CNNVD-201906-527

SOURCES

db:	CNVD	id:	CNVD-2019-25499
db:	VULHUB	id:	VHN-140205
db:	BID	id:	108731
db:	JVNDB	id:	JVNDB-2019-004980
db:	CNNVD	id:	CNNVD-201906-527
db:	NVD	id:	CVE-2019-0174

LAST UPDATE DATE

2024-11-23T20:32:19.224000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2019-25499	date:	2019-08-02T00:00:00
db:	VULHUB	id:	VHN-140205	date:	2020-08-24T00:00:00
db:	BID	id:	108731	date:	2019-06-11T00:00:00
db:	JVNDB	id:	JVNDB-2019-004980	date:	2019-06-13T00:00:00
db:	CNNVD	id:	CNNVD-201906-527	date:	2020-08-25T00:00:00
db:	NVD	id:	CVE-2019-0174	date:	2024-11-21T04:16:24.493

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2019-25499	date:	2019-08-02T00:00:00
db:	VULHUB	id:	VHN-140205	date:	2019-06-13T00:00:00
db:	BID	id:	108731	date:	2019-06-11T00:00:00
db:	JVNDB	id:	JVNDB-2019-004980	date:	2019-06-13T00:00:00
db:	CNNVD	id:	CNNVD-201906-527	date:	2019-06-11T00:00:00
db:	NVD	id:	CVE-2019-0174	date:	2019-06-13T16:29:00.887