CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-11090

Cryptographic timing conditions in the subsystem for Intel(R) PTT before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.0 and 14.0.10; Intel(R) TXE 3.1.70 and 4.0.20; Intel(R) SPS before versions SPS_E5_04.01.04.305.0, SPS_SoC-X_04.00.04.108.0, SPS_SoC-A_04.00.04.191.0, SPS_E3_04.01.04.086.0, SPS_E3_04.08.04.047.0 may allow an unauthenticated user to potentially enable information disclosure via network access.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 72.5%

CVSS Severity

CVSS v3 Score 5.9

CVSS v2 Score 4.3

References

Products affected by CVE-2019-11090

Intel » Platform Trust Technology Firmware » Version: 11.0

cpe:2.3:o:intel:platform_trust_technology_firmware:11.0
Intel » Platform Trust Technology Firmware » Version: 11.10

cpe:2.3:o:intel:platform_trust_technology_firmware:11.10
Intel » Platform Trust Technology Firmware » Version: 11.11.65

cpe:2.3:o:intel:platform_trust_technology_firmware:11.11.65
Intel » Platform Trust Technology Firmware » Version: 11.20

cpe:2.3:o:intel:platform_trust_technology_firmware:11.20
Intel » Platform Trust Technology Firmware » Version: 11.22.65

cpe:2.3:o:intel:platform_trust_technology_firmware:11.22.65
Intel » Platform Trust Technology Firmware » Version: 11.8.65

cpe:2.3:o:intel:platform_trust_technology_firmware:11.8.65
Intel » Platform Trust Technology Firmware » Version: 11.8.70

cpe:2.3:o:intel:platform_trust_technology_firmware:11.8.70
Intel » Platform Trust Technology Firmware » Version: 12.0

cpe:2.3:o:intel:platform_trust_technology_firmware:12.0
Intel » Platform Trust Technology Firmware » Version: 12.0.35

cpe:2.3:o:intel:platform_trust_technology_firmware:12.0.35
Intel » Platform Trust Technology Firmware » Version: 13.0

cpe:2.3:o:intel:platform_trust_technology_firmware:13.0
Intel » Platform Trust Technology Firmware » Version: 14.0.0

cpe:2.3:o:intel:platform_trust_technology_firmware:14.0.0
Intel » Server Platform Services Firmware » Version: Any

cpe:2.3:o:intel:server_platform_services_firmware:*
Intel » Server Platform Services Firmware » Version: 3.0.6.267.4

cpe:2.3:o:intel:server_platform_services_firmware:3.0.6.267.4
Intel » Server Platform Services Firmware » Version: 4.0

cpe:2.3:o:intel:server_platform_services_firmware:4.0
Intel » Server Platform Services Firmware » Version: 4.00.04.367

cpe:2.3:o:intel:server_platform_services_firmware:4.00.04.367
Intel » Server Platform Services Firmware » Version: 4.00.04.382

cpe:2.3:o:intel:server_platform_services_firmware:4.00.04.382
Intel » Server Platform Services Firmware » Version: 4.00.04.383

cpe:2.3:o:intel:server_platform_services_firmware:4.00.04.383
Intel » Server Platform Services Firmware » Version: 4.01.00.152.0

cpe:2.3:o:intel:server_platform_services_firmware:4.01.00.152.0
Intel » Server Platform Services Firmware » Version: 4.01.02.173

cpe:2.3:o:intel:server_platform_services_firmware:4.01.02.173
Intel » Server Platform Services Firmware » Version: 4.01.02.174

cpe:2.3:o:intel:server_platform_services_firmware:4.01.02.174
Intel » Server Platform Services Firmware » Version: 5.00.04.012

cpe:2.3:o:intel:server_platform_services_firmware:5.00.04.012
Intel » Server Platform Services Firmware » Version: sps_e3_04.01.00.000.0

cpe:2.3:o:intel:server_platform_services_firmware:sps_e3_04.01.00.000.0
Intel » Server Platform Services Firmware » Version: sps_e3_04.01.04.085.0

cpe:2.3:o:intel:server_platform_services_firmware:sps_e3_04.01.04.085.0
Intel » Server Platform Services Firmware » Version: sps_e3_04.01.04.086.0

cpe:2.3:o:intel:server_platform_services_firmware:sps_e3_04.01.04.086.0
Intel » Server Platform Services Firmware » Version: sps_e3_04.01.04.700.0

cpe:2.3:o:intel:server_platform_services_firmware:sps_e3_04.01.04.700.0
Intel » Server Platform Services Firmware » Version: sps_e3_05.00.04.027.0

cpe:2.3:o:intel:server_platform_services_firmware:sps_e3_05.00.04.027.0
Intel » Server Platform Services Firmware » Version: sps_e3_06.00.03.035.0

cpe:2.3:o:intel:server_platform_services_firmware:sps_e3_06.00.03.035.0
Intel » Server Platform Services Firmware » Version: sps_e5_04.00.00.000.0

cpe:2.3:o:intel:server_platform_services_firmware:sps_e5_04.00.00.000.0
Intel » Server Platform Services Firmware » Version: sps_e5_04.00.04.393.0

cpe:2.3:o:intel:server_platform_services_firmware:sps_e5_04.00.04.393.0
Intel » Server Platform Services Firmware » Version: sps_e5_04.01.04.304.0

cpe:2.3:o:intel:server_platform_services_firmware:sps_e5_04.01.04.304.0
Intel » Server Platform Services Firmware » Version: sps_e5_04.01.04.305.0

cpe:2.3:o:intel:server_platform_services_firmware:sps_e5_04.01.04.305.0
Intel » Server Platform Services Firmware » Version: sps_soc-x_04.00.00.000.0

cpe:2.3:o:intel:server_platform_services_firmware:sps_soc-x_04.00.00.000.0
Intel » Server Platform Services Firmware » Version: sps_soc-x_04.00.04.107.0

cpe:2.3:o:intel:server_platform_services_firmware:sps_soc-x_04.00.04.107.0
Intel » Server Platform Services Firmware » Version: sps_soc-x_04.00.04.108.0

cpe:2.3:o:intel:server_platform_services_firmware:sps_soc-x_04.00.04.108.0
Intel » Trusted Execution Engine Firmware » Version: 3.0

cpe:2.3:o:intel:trusted_execution_engine_firmware:3.0
Intel » Trusted Execution Engine Firmware » Version: 3.1.50

cpe:2.3:o:intel:trusted_execution_engine_firmware:3.1.50
Intel » Trusted Execution Engine Firmware » Version: 3.1.60

cpe:2.3:o:intel:trusted_execution_engine_firmware:3.1.60
Intel » Trusted Execution Engine Firmware » Version: 3.1.65

cpe:2.3:o:intel:trusted_execution_engine_firmware:3.1.65
Intel » Trusted Execution Engine Firmware » Version: 4.0

cpe:2.3:o:intel:trusted_execution_engine_firmware:4.0
Intel » Trusted Execution Engine Firmware » Version: 4.0.10

cpe:2.3:o:intel:trusted_execution_engine_firmware:4.0.10
Intel » Trusted Execution Engine Firmware » Version: 4.0.15

cpe:2.3:o:intel:trusted_execution_engine_firmware:4.0.15
Intel » Trusted Execution Engine Firmware » Version: 4.0.5

cpe:2.3:o:intel:trusted_execution_engine_firmware:4.0.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-11090

Products

Pricing

Contact Us