CVE-2019-11135
Advisory lineage Upstream: 0 Downstream: 105
Modified
Published: 14 Nov 2019, 18:19
Last modified:28 May 2026, 18:21
Vulnerability Summary
Overall Risk (default)
medium
26/100 CVSS Score
6.5 MEDIUM
v3.1 (nvd)
EPSS Score
0.32% LOW
0% probability 0.00%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
14 Nov 2019, 18:19
Published
Vulnerability first disclosed
28 May 2026, 18:21
Last Modified
Vulnerability information updated
Description
TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access.
CVSS Metrics
- v3.1•MEDIUM•Score: 6.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
- v2.0•LOW•Score: 2.1AV:L/AC:L/Au:N/C:P/I:N/A:N
EPSS Trends
Current EPSS score: 0.32%• Percentile: 55%
Affected Systems
- canonical•ubuntu_linux
14.04
- debian•debian_linux
8.0 | 9.0 | 10.0
- fedoraproject•fedora
30 | 31
- hp•apollo_2000_firmware
< 2.20
- hp•apollo_4200_firmware
< 2.20
- hp•proliant_bl460c_firmware
< 2.20
- hp•proliant_dl120_firmware
< 2.20
- hp•proliant_dl160_firmware
< 2.20
- hp•proliant_dl180_firmware
< 2.20
- hp•proliant_dl20_firmware
< 2.10
- hp•proliant_dl360_firmware
< 2.20
- hp•proliant_dl380_firmware
< 2.20
- hp•proliant_dl560_firmware
< 2.20
- hp•proliant_dl580_firmware
< 2.20
- hp•proliant_e910_firmware
< 2.20
- hp•proliant_ml110_firmware
< 2.20
- hp•proliant_ml30_firmware
< 2.10
- hp•proliant_ml350_firmware
< 2.20
- hp•proliant_xl170r_firmware
< 2.20
- hp•proliant_xl190r_firmware
< 2.20
- hp•proliant_xl230k_firmware
< 2.20
- hp•proliant_xl270d_firmware
< 2.20
- hp•proliant_xl450_firmware
< 2.20
- hp•synergy_480_firmware
< 2.20
- hp•synergy_660_firmware
< 2.20
- intel•celeron_5305u_firmware
na
- intel•core_i5-10110y_firmware
na
- intel•core_i5-10210u_firmware
na
- intel•core_i5-10210y_firmware
na
- intel•core_i5-10310y_firmware
na
- intel•core_i5-8200y_firmware
na
- intel•core_i5-8210y_firmware
na
- intel•core_i5-8265u_firmware
na
- intel•core_i5-8310y_firmware
na
- intel•core_i5-8365u_firmware
na
- intel•core_i5-9300h_firmware
na
- intel•core_i5-9400_firmware
na
- intel•core_i5-9400f_firmware
na
- intel•core_i5-9400h_firmware
na
- intel•core_i5-9600k_firmware
na
- intel•core_i5-9600kf_firmware
na
- intel•core_i7-10510u_firmware
na
- intel•core_i7-10510y_firmware
na
- intel•core_i7-8500y_firmware
na
- intel•core_i7-8565u_firmware
na
- intel•core_i7-8665u_firmware
na
- intel•core_i7-9700k_firmware
na
- intel•core_i7-9700kf_firmware
na
- intel•core_i7-9750hf_firmware
na
- intel•core_i7-9850h_firmware
na
Showing first 50 affected entries in server-rendered view.
References (30)
- https://seclists.org/bugtraq/2019/Nov/26
- http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00046.html
- http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00045.html
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I5WWPW4BSZDDW7VHU427XTVXV7ROOFFW/
- https://access.redhat.com/errata/RHSA-2019:3936
- https://usn.ubuntu.com/4186-2/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IZYATWNUGHRBG6I3TC24YHP5Y3J7I6KH/
- http://www.openwall.com/lists/oss-security/2019/12/10/3
- http://www.openwall.com/lists/oss-security/2019/12/10/4
- http://www.openwall.com/lists/oss-security/2019/12/11/1
- https://seclists.org/bugtraq/2019/Dec/28
- https://lists.debian.org/debian-lts-announce/2019/12/msg00035.html
- http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00042.html
- https://access.redhat.com/errata/RHSA-2020:0026
- https://access.redhat.com/errata/RHSA-2020:0028
- https://www.debian.org/security/2020/dsa-4602
- https://seclists.org/bugtraq/2020/Jan/21
- https://access.redhat.com/errata/RHSA-2020:0204
- https://access.redhat.com/errata/RHSA-2020:0279
- https://access.redhat.com/errata/RHSA-2020:0366
- https://access.redhat.com/errata/RHSA-2020:0555
- https://access.redhat.com/errata/RHSA-2020:0666
- https://access.redhat.com/errata/RHSA-2020:0730
- https://security.gentoo.org/glsa/202003-56
- https://www.oracle.com/security-alerts/cpujan2021.html
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00270.html
- https://support.f5.com/csp/article/K02912734?utm_source=f5support&%3Butm_medium=RSS
- http://packetstormsecurity.com/files/155375/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03968en_us
- https://kc.mcafee.com/corporate/index?page=content&id=SB10306