CVE-2019-11157

Name of the Vulnerable Software and Affected Versions Intel Processors (affected versions not specified)

Description The issue is related to insufficient checking of exceptional states in Intel processor microcode, which may allow an attacker to elevate privileges or disclose protected information. This can be achieved through local access by exploiting improper conditions in voltage settings for some Intel processors. Researchers have demonstrated a technique, known as Plundervolt, that compromises the integrity of Intel SGX technology on modern processors by tweaking the CPU's voltage, resulting in easy retrieval of sensitive data protected by hardware-isolated SGX enclaves.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.