CVE-2019-0119
https://notcve.org/view.php?id=CVE-2019-0119
Buffer overflow vulnerability in system firmware for Intel(R) Xeon(R) Processor D Family, Intel(R) Xeon(R) Scalable Processor, Intel(R) Server Board, Intel(R) Server System and Intel(R) Compute Module may allow a privileged user to potentially enable escalation of privilege and/or denial of service via local access. Una vulnerabilidad de desbordamiento de búfer en el firmware del sistema para Intel(R) Xeon(R) Processor D Family, Intel(R) Xeon(R) Scalable Processor, Intel(R) Server Board, Intel(R) Server System and Intel(R) Compute Module, puede permitir que un usuario privilegiado habilite potencialmente la escalada de privilegios y/o Denegación de Servicio (DoS) por medio del acceso local. • http://www.securityfocus.com/bid/108485 https://support.f5.com/csp/article/K85585101 https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00223.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2018-12172
https://notcve.org/view.php?id=CVE-2018-12172
Improper password hashing in firmware in Intel Server Board (S7200AP,S7200APR) and Intel Compute Module (HNS7200AP, HNS7200AP) may allow a privileged user to potentially disclose firmware passwords via local access. Hasheo de contraseñas incorrecto en el firmware en Intel Server Board (S7200AP, S7200APR) e Intel Compute Module (HNS7200AP, HNS7200AP) podría permitir que un usuario privilegiado divulgue contraseñas del firmware mediante acceso local. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00138.html •