CVE-2019-0155

Name: CVE-2019-0155
Creator: NVD / NIST
Published: 2019-11-14T19:15:12.877+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

HIGHCVSS 7.8/10EPSS 0.67%

Last modified Jun 17, 2026

CVE-2019-0155 is a high-severity vulnerability rated 7.8/10 on the CVSS scale. Insufficient access control in a subsystem for Intel (R) processor graphics in 6th, 7th, 8th and 9th Generation Intel(R) Core(TM) Processor Families; Intel(R) Pentium(R) Processor J, N, Silver and Gold Series; Intel(R) Celeron(R) Processor J, N, G3900 and G4900 Series; Intel(R) Atom(R) Processor A and E3900 Series; Intel(R) Xeon(R) Processor E3-1500 v5 and v6, E-2100 and E-2200 Processor Families; Intel(R) Graphics Driver for Windows before 26.20.100.6813 (DCH) or 26.20.100.6812 and before 21.20.x.5077 (aka15.45.5077), i915 Linux Driver for Intel(R) Processor Graphics before versions 5.4-rc7, 5.3.11, 4.19.84, 4.14.154, 4.9.201, 4.4.201 may allow an authenticated user to potentially enable escalation of privilege via local access.. EPSS estimates a 0.67% chance of exploitation in the next 30 days.

Description

Insufficient access control in a subsystem for Intel (R) processor graphics in 6th, 7th, 8th and 9th Generation Intel(R) Core(TM) Processor Families; Intel(R) Pentium(R) Processor J, N, Silver and Gold Series; Intel(R) Celeron(R) Processor J, N, G3900 and G4900 Series; Intel(R) Atom(R) Processor A and E3900 Series; Intel(R) Xeon(R) Processor E3-1500 v5 and v6, E-2100 and E-2200 Processor Families; Intel(R) Graphics Driver for Windows before 26.20.100.6813 (DCH) or 26.20.100.6812 and before 21.20.x.5077 (aka15.45.5077), i915 Linux Driver for Intel(R) Processor Graphics before versions 5.4-rc7, 5.3.11, 4.19.84, 4.14.154, 4.9.201, 4.4.201 may allow an authenticated user to potentially enable escalation of privilege via local access.

Metrics

CVSS 3.1

7.8/10

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Probability

0.67%

47.2th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

Vendor	Product	Versions
Redhat	Enterprise Linux Server Aus	7.2
Redhat	Enterprise Linux Server Eus	7.5
Redhat	Enterprise Linux Server Tus	7.2
Intel	Graphics Driver	< 26.20.100.6813
Intel	Core I9-10980xe Firmware	All versions
Intel	Core I9-10900x Firmware	All versions
Intel	Core I9-10920x Firmware	All versions
Intel	Core I9-9900x Firmware	All versions
Intel	Core I9-9920x Firmware	All versions
Intel	Core I9-9960x Firmware	All versions
Intel	Core I9-9980xe Firmware	All versions
Intel	Core I9-9940x Firmware	All versions
Intel	Core I9-7960x Firmware	All versions
Intel	Core I9-7940x Firmware	All versions
Intel	Core I9-7980xe Firmware	All versions
Intel	Core I9-7920x Firmware	All versions
Intel	Core I9-7900x Firmware	All versions
Intel	Core I7-7820x Firmware	All versions
Intel	Core I7-7800x Firmware	All versions
Intel	Core I9-9900ks Firmware	All versions
Intel	Core I9-9900t Firmware	All versions
Intel	Core I9-9900 Firmware	All versions
Intel	Core I9-9880h Firmware	All versions
Intel	Core I9-9980hk Firmware	All versions
Intel	Core I9-9900k Firmware	All versions
Intel	Core I9-8950hk Firmware	All versions
Intel	Core I7-10510u Firmware	All versions
Intel	Core I7-10510y Firmware	All versions
Intel	Core I7-10710u Firmware	All versions
Intel	Core I7-1065g7 Firmware	All versions
Intel	Core I7-9700t Firmware	All versions
Intel	Core I7-9700 Firmware	All versions
Intel	Core I7-9750h Firmware	All versions
Intel	Core I7-9850h Firmware	All versions
Intel	Core I7-9700k Firmware	All versions
Intel	Core I7-8565u Firmware	All versions
Intel	Core I7-8500y Firmware	All versions
Intel	Core I7-8086k Firmware	All versions
Intel	Core I7-8750h Firmware	All versions
Intel	Core I7-8559u Firmware	All versions
Intel	Core I7\+8700 Firmware	All versions
Intel	Core I7-8709g Firmware	All versions
Intel	Core I7-8809g Firmware	All versions
Intel	Core I7-8705g Firmware	All versions
Intel	Core I7-8706g Firmware	All versions
Intel	Core I7-8550u Firmware	All versions
Intel	Core I7-8650u Firmware	All versions
Intel	Core I7-7700t Firmware	All versions
Intel	Core I7-7820hk Firmware	All versions
Intel	Core I7-7700hq Firmware	All versions

Showing 50 of 363 affected configurations. See NVD for the full list.

References

http://packetstormsecurity.com/files/155375/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.htmlThird Party Advisory, VDB Entry
https://access.redhat.com/errata/RHSA-2019:3841Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:3887Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:3889Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:3908Third Party Advisory
https://access.redhat.com/errata/RHSA-2020:0204Third Party Advisory
https://seclists.org/bugtraq/2019/Nov/26Issue Tracking, Mailing List, Third Party Advisory
https://security.netapp.com/advisory/ntap-20200320-0005/Third Party Advisory
https://support.f5.com/csp/article/K73659122?utm_source=f5support&amp%3Butm_medium=RSS
https://usn.ubuntu.com/4186-2/Third Party Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00242.htmlVendor Advisory
http://packetstormsecurity.com/files/155375/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.htmlThird Party Advisory, VDB Entry
https://access.redhat.com/errata/RHSA-2019:3841Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:3887Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:3889Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:3908Third Party Advisory
https://access.redhat.com/errata/RHSA-2020:0204Third Party Advisory
https://seclists.org/bugtraq/2019/Nov/26Issue Tracking, Mailing List, Third Party Advisory
https://security.netapp.com/advisory/ntap-20200320-0005/Third Party Advisory
https://support.f5.com/csp/article/K73659122?utm_source=f5support&amp%3Butm_medium=RSS
https://usn.ubuntu.com/4186-2/Third Party Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00242.htmlVendor Advisory

Timeline

Published: Nov 14, 2019
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2019-0155?

How severe is CVE-2019-0155?

CVE-2019-0155 has a CVSS score of 7.8/10 (HIGH severity). The EPSS model estimates a 0.67% probability of exploitation in the next 30 days.

How do I fix CVE-2019-0155?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2019-0155?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST