PT-2019-4408 · Intel+8 · Intel Processors+8

Published

2019-10-28

·

Updated

2025-09-25

·

CVE-2019-11135

CVSS v3.1

6.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions Intel processors (affected versions not specified)
Description The issue is related to the implementation of Intel Transactional Synchronization Extensions (TSX) technology in Intel processor microcode, which lacks protection for service data. This may allow an authenticated user with local access to potentially enable information disclosure via a side channel. The vulnerability can be exploited to obtain sensitive information and affect the system. It is also associated with a new variant of the Zombieload attack, known as ZombieLoad 2.0, which can extract confidential information from other processes, the operating system, virtual machines, and protected enclaves. The problem only affects Intel processors.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

ALSA-2020:0279
BDU:2020-00130
CESA-2019_3832
CESA-2019_3833
CESA-2019_3834
CESA-2019_3836
CESA-2019_3936
CESA-2020_0279
CESA-2020_0366
CVE-2019-11135
DLA-1989-1
DLA-1990-1
DLA-2051-1
DSA-4564-1
DSA-4565-1
DSA-4565-2
DSA-4602-1
MGASA-2019-0332
MGASA-2019-0333
MGASA-2019-0334
MGASA-2019-0413
MGASA-2020-0113
OPENSUSE-SU-2019:2503-1
OPENSUSE-SU-2019:2504-1
OPENSUSE-SU-2019:2505-1
OPENSUSE-SU-2019:2506-1
OPENSUSE-SU-2019:2507-1
OPENSUSE-SU-2019:2509-1
OPENSUSE-SU-2019:2510-1
OPENSUSE-SU-2019:2527-1
OPENSUSE-SU-2019:2528-1
OPENSUSE-SU-2019:2710-1
OPENSUSE-SU-2019_2503-1
OPENSUSE-SU-2019_2504-1
OPENSUSE-SU-2019_2505-1
OPENSUSE-SU-2019_2506-1
OPENSUSE-SU-2019_2507-1
OPENSUSE-SU-2019_2509-1
OPENSUSE-SU-2019_2510-1
OPENSUSE-SU-2019_2527-1
OPENSUSE-SU-2019_2528-1
OPENSUSE-SU-2019_2710-1
OPENSUSE-SU-2024:11008-1
OPENSUSE-SU-2024:11287-1
OPENSUSE-SU-2024:11396-1
OPENSUSE-SU-2024:11478-1
RHSA-2019:3832
RHSA-2019:3833
RHSA-2019:3834
RHSA-2019:3835
RHSA-2019:3836
RHSA-2019:3837
RHSA-2019:3838
RHSA-2019:3839
RHSA-2019:3840
RHSA-2019:3841
RHSA-2019:3842
RHSA-2019:3843
RHSA-2019:3844
RHSA-2019:3860
RHSA-2019:3936
RHSA-2019_3832
RHSA-2019_3833
RHSA-2019_3834
RHSA-2019_3835
RHSA-2019_3836
RHSA-2020:0026
RHSA-2020:0028
RHSA-2020:0204
RHSA-2020:0279
RHSA-2020:0366
RHSA-2020:0555
RHSA-2020:0666
RHSA-2020:0730
RHSA-2020_0279
RHSA-2020_0366
RLSA-2020:0279
SUSE-SU-2019:14217-1
SUSE-SU-2019:14218-1
SUSE-SU-2019:14220-1
SUSE-SU-2019:2946-1
SUSE-SU-2019:2947-1
SUSE-SU-2019:2948-1
SUSE-SU-2019:2949-1
SUSE-SU-2019:2950-1
SUSE-SU-2019:2951-1
SUSE-SU-2019:2952-1
SUSE-SU-2019:2953-1
SUSE-SU-2019:2954-1
SUSE-SU-2019:2955-1
SUSE-SU-2019:2956-1
SUSE-SU-2019:2957-1
SUSE-SU-2019:2958-1
SUSE-SU-2019:2959-1
SUSE-SU-2019:2960-1
SUSE-SU-2019:2961-1
SUSE-SU-2019:2962-1
SUSE-SU-2019:2984-1
SUSE-SU-2019:2986-1
SUSE-SU-2019:2987-1
SUSE-SU-2019:2988-1
SUSE-SU-2019:3091-1
SUSE-SU-2019:3200-1
SUSE-SU-2019:3294-1
SUSE-SU-2019:3295-1
SUSE-SU-2019:3297-1
SUSE-SU-2019:3340-1
SUSE-SU-2019:3348-1
SUSE-SU-2019_14217-1
SUSE-SU-2019_14218-1
SUSE-SU-2019_14220-1
SUSE-SU-2019_2957-1
SUSE-SU-2019_2958-1
SUSE-SU-2019_2959-1
SUSE-SU-2019_2986-1
SUSE-SU-2019_2987-1
SUSE-SU-2019_2988-1
SUSE-SU-2019_3091-1
SUSE-SU-2020:0093-1
SUSE-SU-2020:0334-1
SUSE-SU-2020:0388-1
SUSE-SU-2020:14444-1
SUSE-SU-2025:02853-1
SUSE-SU-2025:02923-1
SUSE-SU-2025:02969-1
SUSE-SU-2025:02996-1
SUSE-SU-2025:02997-1
SUSE-SU-2025:03011-1
SUSE-SU-2025:03023-1
SUSE-SU-2025:20577-1
SUSE-SU-2025:20586-1
SUSE-SU-2025:20601-1
SUSE-SU-2025:20602-1
SUSE-SU-2025_02853-1
SUSE-SU-2025_02969-1
SUSE-SU-2025_02996-1
SUSE-SU-2025_02997-1
SUSE-SU-2025_03011-1
SUSE-SU-2025_03023-1
USN-4182-1
USN-4182-2
USN-4182-3
USN-4182-4
USN-4183-1
USN-4184-1
USN-4185-1
USN-4185-2
USN-4186-1
USN-4186-2
USN-4187-1
USN-4188-1

Affected Products

Almalinux
Centos
Intel Processors
Red Hat
Rocky Linux
Suse
Ubuntu
Vmware Workstation
Windows