Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2019-11109

Logic issue in the subsystem for Intel(R) SPS before versions SPS_E5_04.01.04.275.0, SPS_SoC-X_04.00.04.100.0 and SPS_SoC-A_04.00.04.191.0 may allow a privileged user to potentially enable denial of service via local access.

Published

2019-12-18T22:15:13.127

Last Modified

2024-11-21T04:20:33.233

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 4.4 (MEDIUM)

CVSSv2 Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: PARTIAL
Availability Impact: PARTIAL

Exploitability Score

3.9

Impact Score

6.4

Weaknesses

Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	intel	server_platform_services_firmware	< sps_e5_04.01.04.275.0	Yes
Operating System	intel	server_platform_services_firmware	< sps_soc-a_04.00.04.191.0	Yes
Operating System	intel	server_platform_services_firmware	< sps_soc-x_04.00.04.100.0	Yes
Operating System	f5	big-ip_b2250_firmware	-	Yes
Hardware	f5	big-ip_b2250	-	No
Operating System	f5	big-ip_b4300_firmware	-	Yes
Hardware	f5	big-ip_b4300	-	No
Operating System	f5	big-ip_b4340n_firmware	-	Yes
Hardware	f5	big-ip_b4340n	-	No
Operating System	f5	big-ip_b4450n_firmware	-	Yes
Hardware	f5	big-ip_b4450n	-	No
Operating System	f5	big-ip_10000s_firmware	-	Yes
Hardware	f5	big-ip_10000s	-	No
Operating System	f5	big-ip_10050s_firmware	-	Yes
Hardware	f5	big-ip_10050s	-	No
Operating System	f5	big-ip_10150v-n_firmware	-	Yes
Hardware	f5	big-ip_10150v-n	-	No
Operating System	f5	big-ip_10200v-s_firmware	-	Yes
Hardware	f5	big-ip_10200v-s	-	No
Operating System	f5	big-ip_10250v_firmware	-	Yes
Hardware	f5	big-ip_10250v	-	No
Operating System	f5	big-ip_10350v-n_firmware	-	Yes
Hardware	f5	big-ip_10350v-n	-	No
Operating System	f5	big-ip_12250v_firmware	-	Yes
Hardware	f5	big-ip_12250v	-	No
Operating System	f5	viprion_2200_firmware	-	Yes
Hardware	f5	viprion_2200	-	No
Operating System	f5	big-ip_i5600_firmware	-	Yes
Hardware	f5	big-ip_i5600	-	No
Operating System	f5	big-ip_i5800_firmware	-	Yes
Hardware	f5	big-ip_i5800	-	No
Operating System	f5	big-ip_i7600_firmware	-	Yes
Hardware	f5	big-ip_i7600	-	No
Operating System	f5	big-ip_i7800_firmware	-	Yes
Hardware	f5	big-ip_i7800	-	No
Operating System	f5	big-ip_i10600_firmware	-	Yes
Hardware	f5	big-ip_i10600	-	No
Operating System	f5	big-ip_i10800_firmware	-	Yes
Hardware	f5	big-ip_i10800	-	No
Operating System	f5	big-ip_i11600_firmware	-	Yes
Hardware	f5	big-ip_i11600	-	No
Operating System	f5	big-ip_i11800_firmware	-	Yes
Hardware	f5	big-ip_i11800	-	No
Operating System	f5	big-ip_i15600_firmware	-	Yes
Hardware	f5	big-ip_i15600	-	No
Operating System	f5	big-ip_i15800_firmware	-	Yes
Hardware	f5	big-ip_i15800	-	No
Application	f5	big-ip_access_policy_manager	≤ 11.6.5	Yes
Application	f5	big-ip_access_policy_manager	≤ 12.1.5	Yes
Application	f5	big-ip_access_policy_manager	≤ 13.1.3	Yes
Application	f5	big-ip_access_policy_manager	≤ 14.1.2	Yes
Application	f5	big-ip_access_policy_manager	≤ 15.0.1	Yes
Application	f5	big-ip_advanced_firewall_manager	≤ 11.6.5	Yes
Application	f5	big-ip_advanced_firewall_manager	≤ 12.1.5	Yes
Application	f5	big-ip_advanced_firewall_manager	≤ 13.1.3	Yes
Application	f5	big-ip_advanced_firewall_manager	≤ 14.1.2	Yes
Application	f5	big-ip_advanced_firewall_manager	≤ 15.0.1	Yes
Application	f5	big-ip_analytics	≤ 11.6.5	Yes
Application	f5	big-ip_analytics	≤ 12.1.5	Yes
Application	f5	big-ip_analytics	≤ 13.1.3	Yes
Application	f5	big-ip_analytics	≤ 14.1.2	Yes
Application	f5	big-ip_analytics	≤ 15.0.1	Yes
Application	f5	big-ip_application_acceleration_manager	≤ 11.6.5	Yes
Application	f5	big-ip_application_acceleration_manager	≤ 12.1.5	Yes
Application	f5	big-ip_application_acceleration_manager	≤ 13.1.3	Yes
Application	f5	big-ip_application_acceleration_manager	≤ 14.1.2	Yes
Application	f5	big-ip_application_acceleration_manager	≤ 15.0.1	Yes
Application	f5	big-ip_application_security_manager	≤ 11.6.5	Yes
Application	f5	big-ip_application_security_manager	≤ 12.1.5	Yes
Application	f5	big-ip_application_security_manager	≤ 13.1.3	Yes
Application	f5	big-ip_application_security_manager	≤ 14.1.2	Yes
Application	f5	big-ip_application_security_manager	≤ 15.0.1	Yes
Application	f5	big-ip_domain_name_system	≤ 11.6.5	Yes
Application	f5	big-ip_domain_name_system	≤ 12.1.5	Yes
Application	f5	big-ip_domain_name_system	≤ 13.1.3	Yes
Application	f5	big-ip_domain_name_system	≤ 14.1.2	Yes
Application	f5	big-ip_domain_name_system	≤ 15.0.1	Yes
Application	f5	big-ip_fraud_protection_service	≤ 11.6.5	Yes
Application	f5	big-ip_fraud_protection_service	≤ 12.1.5	Yes
Application	f5	big-ip_fraud_protection_service	≤ 13.1.3	Yes
Application	f5	big-ip_fraud_protection_service	≤ 14.1.2	Yes
Application	f5	big-ip_global_traffic_manager	≤ 11.6.5	Yes
Application	f5	big-ip_global_traffic_manager	≤ 12.1.5	Yes
Application	f5	big-ip_global_traffic_manager	≤ 13.1.3	Yes
Application	f5	big-ip_global_traffic_manager	≤ 14.1.2	Yes
Application	f5	big-ip_global_traffic_manager	≤ 15.0.1	Yes
Application	f5	big-ip_link_controller	≤ 11.6.5	Yes
Application	f5	big-ip_link_controller	≤ 12.1.5	Yes
Application	f5	big-ip_link_controller	≤ 13.1.3	Yes
Application	f5	big-ip_link_controller	≤ 14.1.2	Yes
Application	f5	big-ip_link_controller	≤ 15.0.1	Yes
Application	f5	big-ip_local_traffic_manager	≤ 11.6.5	Yes
Application	f5	big-ip_local_traffic_manager	≤ 12.1.5	Yes
Application	f5	big-ip_local_traffic_manager	≤ 13.1.3	Yes
Application	f5	big-ip_local_traffic_manager	≤ 14.1.2	Yes
Application	f5	big-ip_local_traffic_manager	≤ 15.0.1	Yes
Application	f5	big-ip_policy_enforcement_manager	≤ 11.6.5	Yes
Application	f5	big-ip_policy_enforcement_manager	≤ 12.1.5	Yes
Application	f5	big-ip_policy_enforcement_manager	≤ 13.1.3	Yes
Application	f5	big-ip_policy_enforcement_manager	≤ 14.1.2	Yes
Application	f5	big-ip_policy_enforcement_manager	≤ 15.0.1	Yes

References

https://support.f5.com/csp/article/K54164678?utm_source=f5support&amp%3Butm_medium=RSS ([email protected])
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00241.html Vendor Advisory ([email protected])
https://support.f5.com/csp/article/K54164678?utm_source=f5support&amp%3Butm_medium=RSS (af854a3a-2127-422b-91ae-364da2661108)
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00241.html Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)