Strix
26.1K

CVE-2019-0123

HIGHCVSS 7.8/10EPSS 0.38%

Last modified

CVE-2019-0123 is a high-severity vulnerability rated 7.8/10 on the CVSS scale. Insufficient memory protection in Intel(R) 6th Generation Core Processors and greater, supporting SGX, may allow a privileged user to potentially enable escalation of privilege via local access.. EPSS estimates a 0.38% chance of exploitation in the next 30 days.

Description

Insufficient memory protection in Intel(R) 6th Generation Core Processors and greater, supporting SGX, may allow a privileged user to potentially enable escalation of privilege via local access.

Metrics

CVSS 3.1
7.8/10

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Probability
0.38%

29.3th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

VendorProductVersions
IntelCore I7-6970hq FirmwareAll versions
IntelCore I7-6920hq FirmwareAll versions
IntelCore I7-6870hq FirmwareAll versions
IntelCore I7-6822eq FirmwareAll versions
IntelCore I7-6820hq FirmwareAll versions
IntelCore I7-6820hk FirmwareAll versions
IntelCore I7-6820eq FirmwareAll versions
IntelCore I7-6785r FirmwareAll versions
IntelCore I7-6700k FirmwareAll versions
IntelCore I7-6700t FirmwareAll versions
IntelCore I7-6700te FirmwareAll versions
IntelCore I7-6700 FirmwareAll versions
IntelCore I7-6770hq FirmwareAll versions
IntelCore I7-6700hq FirmwareAll versions
IntelCore I7-6660u FirmwareAll versions
IntelCore I7-6650u FirmwareAll versions
IntelCore I7-6600u FirmwareAll versions
IntelCore I7-6567u FirmwareAll versions
IntelCore I7-6560u FirmwareAll versions
IntelCore I7-6500u FirmwareAll versions
IntelCore I7-7920hq FirmwareAll versions
IntelCore I7-7820hq FirmwareAll versions
IntelCore I7-7820hk FirmwareAll versions
IntelCore I7-7820eq FirmwareAll versions
IntelCore I7-7700hq FirmwareAll versions
IntelCore I7-7700 FirmwareAll versions
IntelCore I7-7700k FirmwareAll versions
IntelCore I7-7700t FirmwareAll versions
IntelCore I7-7660u FirmwareAll versions
IntelCore I7-7600u FirmwareAll versions
IntelCore I7-7567u FirmwareAll versions
IntelCore I7-7560u FirmwareAll versions
IntelCore I7-7500u FirmwareAll versions
IntelCore I7-7y75 FirmwareAll versions
IntelCore I7-8665ue FirmwareAll versions
IntelCore I7-8665u FirmwareAll versions
IntelCore I7-8557u FirmwareAll versions
IntelCore I7-8850h FirmwareAll versions
IntelCore I7-8809g FirmwareAll versions
IntelCore I7-8750h FirmwareAll versions
IntelCore I7-8709g FirmwareAll versions
IntelCore I7-8706g FirmwareAll versions
IntelCore I7-8705g FirmwareAll versions
IntelCore I7-8700t FirmwareAll versions
IntelCore I7-8700k FirmwareAll versions
IntelCore I7-8700b FirmwareAll versions
IntelCore I7-8700 FirmwareAll versions
IntelCore I7\+8700 FirmwareAll versions
IntelCore I7-8569u FirmwareAll versions
IntelCore I7-8650u FirmwareAll versions

Showing 50 of 147 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2019-0123?
Insufficient memory protection in Intel(R) 6th Generation Core Processors and greater, supporting SGX, may allow a privileged user to potentially enable escalation of privilege via local access.
How severe is CVE-2019-0123?
CVE-2019-0123 has a CVSS score of 7.8/10 (HIGH severity). The EPSS model estimates a 0.38% probability of exploitation in the next 30 days.
How do I fix CVE-2019-0123?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2019-0123?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST