PT-2019-5649 · Intel+2 · Intel Celeron+3

Published

2019-12-31

·

Updated

2024-06-15

·

CVE-2019-14558

CVSS v3.1

5.7

Medium

VectorAV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Intel(R) Core(TM) versions 8th, 9th, 10th Generation Intel(R) Celeron(R) Processor versions 4000 & 5000 Series
Description The issue is related to insufficient control flow management in BIOS firmware, which may allow an authenticated user to potentially enable denial of service via adjacent access. This can be exploited by a remote attacker to cause a denial of service.
Recommendations For Intel(R) Core(TM) versions 8th, 9th, 10th Generation, update the BIOS firmware to a version that includes the necessary security patches. For Intel(R) Celeron(R) Processor versions 4000 & 5000 Series, update the BIOS firmware to a version that includes the necessary security patches. As a temporary workaround, consider restricting access to the BIOS settings to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

ALT-PU-2020-1971
ALT-PU-2020-1972
ALT-PU-2020-2429
ALT-PU-2020-2430
BDU:2020-04779
CVE-2019-14558
DLA-2645-1
MGASA-2021-0035
OPENSUSE-SU-2024:11134-1
USN-4349-1

Affected Products

Alt Linux
Intel Celeron
Intel Core
Ubuntu