CVE-2019-11184

Home/CVE/A race condition in specific microprocessors using Intel (R) DDIO cache allocation and RDMA may allow an authenticated u

CVE

A race condition in specific microprocessors using Intel (R) DDIO cache allocation and RDMA may allow an authenticated u

A race condition in specific microprocessors using Intel (R) DDIO cache allocation and RDMA may allow an authenticated user to potentially enable partial information disclosure via adjacent access.

MEDIUM · CVSS 4.8 EPSS 0.00192

Monitor

No active-exploitation, high-EPSS, or public-exploit signals - routine patching cadence

Sigma rules0 YARA rules0

⬡

Weakness Classification

CWE-362Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

▤

Affected Products & Versions

intel 6138 firmwareall versions
intel 6130t firmwareall versions
intel 6130 firmwareall versions
intel 6126t firmwareall versions
intel 6126 firmwareall versions
intel 5120t firmwareall versions
intel 5119t firmwareall versions
intel 5118 firmwareall versions
Show all 60 affected productsintel 4116t firmwareall versions
intel 4116 firmwareall versions
intel 4114t firmwareall versions
intel 4110 firmwareall versions
intel 4109t firmwareall versions
intel 3106 firmwareall versions
intel xeon e5-1428l firmwareall versions
intel xeon e5-2403 firmwareall versions
intel xeon e5-2407 firmwareall versions
intel xeon e5-2418l firmwareall versions
intel xeon e5-2420 firmwareall versions
intel xeon e5-2428l firmwareall versions
intel xeon e5-2430 firmwareall versions
intel xeon e5-2430l firmwareall versions
intel xeon e5-2440 firmwareall versions
intel xeon e5-2448l firmwareall versions
intel xeon e5-2450 firmwareall versions
intel xeon e5-2450l firmwareall versions
intel xeon e5-2470 firmwareall versions
intel xeon e5-4603 firmwareall versions
intel xeon e5-4607 firmwareall versions
intel xeon e5-4610 firmwareall versions
intel xeon e5-4617 firmwareall versions
intel xeon e5-4620 firmwareall versions
intel xeon e5-4640 firmwareall versions
intel xeon e5-4650 firmwareall versions
intel xeon e5-4650l firmwareall versions
intel xeon e5-1620 firmwareall versions
intel xeon e5-1650 firmwareall versions
intel xeon e5-1660 firmwareall versions
intel xeon e5-2603 firmwareall versions
intel xeon e5-2609 firmwareall versions
intel xeon e5-2620 firmwareall versions
intel xeon e5-2630 firmwareall versions
intel xeon e5-2630l firmwareall versions
intel xeon e5-2637 firmwareall versions
intel xeon e5-2640 firmwareall versions
intel xeon e5-2643 firmwareall versions
intel xeon e5-2648l firmwareall versions
intel xeon e5-2650 firmwareall versions
intel xeon e5-2650l firmwareall versions
intel xeon e5-2658 firmwareall versions
intel xeon e5-2660 firmwareall versions
intel xeon e5-2665 firmwareall versions
intel xeon e5-2667 firmwareall versions
intel xeon e5-2670 firmwareall versions
intel xeon e5-2680 firmwareall versions
intel xeon e5-2687w firmwareall versions
intel xeon e5-2690 firmwareall versions
intel xeon e5-4603 v2 firmwareall versions
intel xeon e5-4607 v2 firmwareall versions
intel xeon e5-4610 v2 firmwareall versions

▣

Scoring & Timeline

4.8

MEDIUM · CVSS v3.1 · secure@intel.com

View on NVD

Attack Vector

Network Adjacent Local Physical

Attack Complexity

Low High

Privileges Required

None Low High

User Interaction

None Required

Scope

Unchanged Changed

Confidentiality

None Low High

Integrity

None Low High

Availability

None Low High

Published to NVD16 Sep 2019 · 04:15 PM

CVSS VectorCVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

🔗

References & Sources

Source URLs (vendor pages, mailing lists, write-ups). Exploit/PoC links are in their own section above to avoid duplication.

https://arxiv.org/abs/1909.04841Technical DescriptionThird Party Advisory

https://ieeexplore.ieee.org/document/9152768Technical DescriptionThird Party Advisory

https://security.netapp.com/advisory/ntap-20190926-0001/Third Party Advisory

https://support.f5.com/csp/article/K43220413Third Party Advisory

https://support.f5.com/csp/article/K43220413?utm_source=f5support&amp

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00290.htmlVendor Advisory

Intelligence Graph · click any node to traverse

CVETechnique ActorTool Family

drag to reposition · click any node to traverse · button top-right enlarges

External lookups - second-class, for what we don’t hold ourselves

NVD CVE.org CISA Vulners Exploit-DB GitHub PoC VulnCheck KEV GreyNoise

Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities

Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs

Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures

Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1

About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service

threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin