2019-11-14 17:02:11 +00:00
{
"data_type" : "CVE" ,
"data_format" : "MITRE" ,
"data_version" : "4.0" ,
"CVE_data_meta" : {
"ID" : "CVE-2019-14566" ,
"ASSIGNER" : "secure@intel.com" ,
"STATE" : "PUBLIC"
} ,
"affects" : {
"vendor" : {
"vendor_data" : [
{
"vendor_name" : "Intel" ,
"product" : {
"product_data" : [
{
"product_name" : "2019.2 IPU \u2013 Intel(R) SGX" ,
"version" : {
"version_data" : [
{
"version_value" : "See provided reference"
}
]
}
}
]
}
}
]
}
} ,
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng" ,
"value" : "Escalation of Privilege, Denial of Service, Information Disclosure"
}
]
}
]
} ,
"references" : {
"reference_data" : [
{
"refsource" : "MISC" ,
"name" : "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00293.html" ,
"url" : "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00293.html"
2019-11-19 08:01:47 +00:00
} ,
{
"refsource" : "CONFIRM" ,
"name" : "https://support.f5.com/csp/article/K57201259?utm_source=f5support&utm_medium=RSS" ,
"url" : "https://support.f5.com/csp/article/K57201259?utm_source=f5support&utm_medium=RSS"
2019-11-14 17:02:11 +00:00
}
]
} ,
"description" : {
"description_data" : [
{
"lang" : "eng" ,
"value" : "Insufficient input validation in Intel(R) SGX SDK multiple Linux and Windows versions may allow an authenticated user to enable information disclosure, escalation of privilege or denial of service via local access."
}
]
}
}
