CVE-2019-0155

Description

Insufficient access control in a subsystem for Intel (R) processor graphics in 6th, 7th, 8th and 9th Generation Intel(R) Core(TM) Processor Families; Intel(R) Pentium(R) Processor J, N, Silver and Gold Series; Intel(R) Celeron(R) Processor J, N, G3900 and G4900 Series; Intel(R) Atom(R) Processor A and E3900 Series; Intel(R) Xeon(R) Processor E3-1500 v5 and v6, E-2100 and E-2200 Processor Families; Intel(R) Graphics Driver for Windows before 26.20.100.6813 (DCH) or 26.20.100.6812 and before 21.20.x.5077 (aka15.45.5077), i915 Linux Driver for Intel(R) Processor Graphics before versions 5.4-rc7, 5.3.11, 4.19.84, 4.14.154, 4.9.201, 4.4.201 may allow an authenticated user to potentially enable escalation of privilege via local access.

7.8
CVSS
Severity: High
CVSS 3.1 •
CVSS 2.0 •
EPSS 0.10%
Vendor Advisory redhat.com Vendor Advisory redhat.com Vendor Advisory redhat.com Vendor Advisory redhat.com Vendor Advisory ubuntu.com Vendor Advisory redhat.com Vendor Advisory intel.com
Affected: n/a 2019.2 IPU – Intel(R) Graphics Driver for Windows* and Linux
Published at:
Updated at:

References

Link Tags
https://access.redhat.com/errata/RHSA-2019:3841 third party advisory vendor advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00242.html vendor advisory
https://access.redhat.com/errata/RHSA-2019:3889 third party advisory vendor advisory
https://access.redhat.com/errata/RHSA-2019:3887 third party advisory vendor advisory
https://seclists.org/bugtraq/2019/Nov/26 mailing list third party advisory issue tracking
http://packetstormsecurity.com/files/155375/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html third party advisory vdb entry
https://access.redhat.com/errata/RHSA-2019:3908 third party advisory vendor advisory
https://support.f5.com/csp/article/K73659122?utm_source=f5support&%3Butm_medium=RSS
https://usn.ubuntu.com/4186-2/ third party advisory vendor advisory
https://access.redhat.com/errata/RHSA-2020:0204 third party advisory vendor advisory
https://security.netapp.com/advisory/ntap-20200320-0005/ third party advisory

Frequently Asked Questions

What is the severity of CVE-2019-0155?
CVE-2019-0155 has been scored as a high severity vulnerability.
How to fix CVE-2019-0155?
To fix CVE-2019-0155, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2019-0155 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2019-0155 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2019-0155?
CVE-2019-0155 affects n/a 2019.2 IPU – Intel(R) Graphics Driver for Windows* and Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.