NI Security Update for Intel® Processors Voltage Settings Modification

Overview

Improper conditions check in voltage settings for some Intel® Processors may potentially enable escalation of privilege and/or information disclosure via local access as described in CVE-2019-11157 or known as VoltJockey or Plundervolt.

 

For more information, refer to NI Security Update for Microarchitectural Data Sampling Vulnerabilities.

Contents

Mitigation Guidance

Apply the BIOS update provided by NI for your controller.

Affected Products

Affected PXI/PXI Express Controllers

Controller Model

BIOS Download

PXIe-8861

19.5.1f0

Affected CompactDAQ/CompactRIO/Vision/OEM Controllers

Controller Model

BIOS Download

USRP-2974

1.0.4f0

CVSS Score

CVE-2019-11157 – 6.7 - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H