CVE-2019-11184

Name: CVE-2019-11184
Creator: NVD / NIST
Published: 2019-09-16T16:15:10.147+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

MEDIUMCVSS 4.8/10EPSS 0.75%

Last modified Jun 17, 2026

CVE-2019-11184 is a medium-severity vulnerability rated 4.8/10 on the CVSS scale. A race condition in specific microprocessors using Intel (R) DDIO cache allocation and RDMA may allow an authenticated user to potentially enable partial information disclosure via adjacent access.. EPSS estimates a 0.75% chance of exploitation in the next 30 days.

Description

A race condition in specific microprocessors using Intel (R) DDIO cache allocation and RDMA may allow an authenticated user to potentially enable partial information disclosure via adjacent access.

Metrics

CVSS 3.1

4.8/10

CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

EPSS Probability

0.75%

50.3th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-362

Affected Software

Vendor	Product	Versions
Intel	6138 Firmware	All versions
Intel	6130t Firmware	All versions
Intel	6130 Firmware	All versions
Intel	6126t Firmware	All versions
Intel	6126 Firmware	All versions
Intel	5120t Firmware	All versions
Intel	5119t Firmware	All versions
Intel	5118 Firmware	All versions
Intel	4116t Firmware	All versions
Intel	4116 Firmware	All versions
Intel	4114t Firmware	All versions
Intel	4110 Firmware	All versions
Intel	4109t Firmware	All versions
Intel	3106 Firmware	All versions
Intel	Xeon E5-1428l Firmware	All versions
Intel	Xeon E5-2403 Firmware	All versions
Intel	Xeon E5-2407 Firmware	All versions
Intel	Xeon E5-2418l Firmware	All versions
Intel	Xeon E5-2420 Firmware	All versions
Intel	Xeon E5-2428l Firmware	All versions
Intel	Xeon E5-2430 Firmware	All versions
Intel	Xeon E5-2430l Firmware	All versions
Intel	Xeon E5-2440 Firmware	All versions
Intel	Xeon E5-2448l Firmware	All versions
Intel	Xeon E5-2450 Firmware	All versions
Intel	Xeon E5-2450l Firmware	All versions
Intel	Xeon E5-2470 Firmware	All versions
Intel	Xeon E5-4603 Firmware	All versions
Intel	Xeon E5-4607 Firmware	All versions
Intel	Xeon E5-4610 Firmware	All versions
Intel	Xeon E5-4617 Firmware	All versions
Intel	Xeon E5-4620 Firmware	All versions
Intel	Xeon E5-4640 Firmware	All versions
Intel	Xeon E5-4650 Firmware	All versions
Intel	Xeon E5-4650l Firmware	All versions
Intel	Xeon E5-1620 Firmware	All versions
Intel	Xeon E5-1650 Firmware	All versions
Intel	Xeon E5-1660 Firmware	All versions
Intel	Xeon E5-2603 Firmware	All versions
Intel	Xeon E5-2609 Firmware	All versions
Intel	Xeon E5-2620 Firmware	All versions
Intel	Xeon E5-2630 Firmware	All versions
Intel	Xeon E5-2630l Firmware	All versions
Intel	Xeon E5-2637 Firmware	All versions
Intel	Xeon E5-2640 Firmware	All versions
Intel	Xeon E5-2643 Firmware	All versions
Intel	Xeon E5-2648l Firmware	All versions
Intel	Xeon E5-2650 Firmware	All versions
Intel	Xeon E5-2650l Firmware	All versions
Intel	Xeon E5-2658 Firmware	All versions

Showing 50 of 242 affected configurations. See NVD for the full list.

References

https://arxiv.org/abs/1909.04841Technical Description, Third Party Advisory
https://ieeexplore.ieee.org/document/9152768Technical Description, Third Party Advisory
https://security.netapp.com/advisory/ntap-20190926-0001/Third Party Advisory
https://support.f5.com/csp/article/K43220413Third Party Advisory
https://support.f5.com/csp/article/K43220413?utm_source=f5support&amp%3Butm_medium=RSS
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00290.htmlVendor Advisory
https://arxiv.org/abs/1909.04841Technical Description, Third Party Advisory
https://ieeexplore.ieee.org/document/9152768Technical Description, Third Party Advisory
https://security.netapp.com/advisory/ntap-20190926-0001/Third Party Advisory
https://support.f5.com/csp/article/K43220413Third Party Advisory
https://support.f5.com/csp/article/K43220413?utm_source=f5support&amp%3Butm_medium=RSS
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00290.htmlVendor Advisory

Timeline

Published: Sep 16, 2019
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2019-11184?

A race condition in specific microprocessors using Intel (R) DDIO cache allocation and RDMA may allow an authenticated user to potentially enable partial information disclosure via adjacent access.

How severe is CVE-2019-11184?

CVE-2019-11184 has a CVSS score of 4.8/10 (MEDIUM severity). The EPSS model estimates a 0.75% probability of exploitation in the next 30 days.

How do I fix CVE-2019-11184?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2019-11184?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST