CVE-2019-14558

low-risk
Published 2020-10-05

Insufficient control flow management in BIOS firmware for 8th, 9th, 10th Generation Intel(R) Core(TM), Intel(R) Celeron(R) Processor 4000 & 5000 Series Processors may allow an authenticated user to potentially enable denial of service via adjacent access.

Do I need to act?

-
0.12% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
5
CVSS 5.7/10 Medium
ADJACENT_NETWORK / LOW complexity

Affected Products (2)

Affected Vendors

Debian Intel

References (4)

Mailing List https://lists.debian.org/debian-lts-announce/2021/04/msg00032.html
Vendor Advisory https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00356....
Mailing List https://lists.debian.org/debian-lts-announce/2021/04/msg00032.html
Vendor Advisory https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00356....
27
/ 100
low-risk
Severity 19/34 · Moderate
Exploitability 1/34 · Minimal
Exposure 7/34 · Low