1. CVE-Search
  2. CVE-2019-0122
ID CVE-2019-0122
Summary Double free in Intel(R) SGX SDK for Linux before version 2.2 and Intel(R) SGX SDK for Windows before version 2.1 may allow an authenticated user to potentially enable information disclosure or denial of service via local access.
References
Vulnerable Configurations
  • cpe:2.3:a:intel:software_guard_extensions_sdk:1.6:*:*:*:*:*:*:*
    cpe:2.3:a:intel:software_guard_extensions_sdk:1.6:*:*:*:*:*:*:*
  • cpe:2.3:a:intel:software_guard_extensions_sdk:1.7:*:*:*:*:*:*:*
    cpe:2.3:a:intel:software_guard_extensions_sdk:1.7:*:*:*:*:*:*:*
  • cpe:2.3:a:intel:software_guard_extensions_sdk:1.8:*:*:*:*:*:*:*
    cpe:2.3:a:intel:software_guard_extensions_sdk:1.8:*:*:*:*:*:*:*
  • cpe:2.3:a:intel:software_guard_extensions_sdk:1.9:*:*:*:*:*:*:*
    cpe:2.3:a:intel:software_guard_extensions_sdk:1.9:*:*:*:*:*:*:*
  • cpe:2.3:a:intel:software_guard_extensions_sdk:2.0:*:*:*:*:*:*:*
    cpe:2.3:a:intel:software_guard_extensions_sdk:2.0:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
  • cpe:2.3:a:intel:software_guard_extensions_sdk:2.1:*:*:*:*:*:*:*
    cpe:2.3:a:intel:software_guard_extensions_sdk:2.1:*:*:*:*:*:*:*
  • cpe:2.3:a:intel:software_guard_extensions_sdk:2.1.1:*:*:*:*:*:*:*
    cpe:2.3:a:intel:software_guard_extensions_sdk:2.1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:intel:software_guard_extensions_sdk:2.1.2:*:*:*:*:*:*:*
    cpe:2.3:a:intel:software_guard_extensions_sdk:2.1.2:*:*:*:*:*:*:*
  • cpe:2.3:a:intel:software_guard_extensions_sdk:2.1.3:*:*:*:*:*:*:*
    cpe:2.3:a:intel:software_guard_extensions_sdk:2.1.3:*:*:*:*:*:*:*
  • cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
    cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
CVSS
Base: 3.6 (as of 18-03-2019 - 17:02)
Impact:
Exploitability:
CWE CWE-415
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE PARTIAL
cvss-vector via4 AV:L/AC:L/Au:N/C:P/I:N/A:P
refmap via4
confirm https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00217.html
Last major update 18-03-2019 - 17:02
Published 14-03-2019 - 20:29
Last modified 18-03-2019 - 17:02
Back to Top