PT-2018-1599 · Intel · Intel Computing Improvement Program

Publicado

2018-09-11

Atualizado

2019-10-03

CVE-2018-12168

CVSS v3.1

7.8

Alta

Vetor

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Intel Computing Improvement Program versions prior to 2.2.0.03942

Description The issue is related to privilege escalation in file permissions, potentially allowing an authenticated user to execute code as an administrator via local access. It is caused by errors in privilege management, which may enable an attacker to run arbitrary code with administrator privileges.

Recommendations For versions prior to 2.2.0.03942, update to version 2.2.0.03942 or later to resolve the issue.

Correção

Incorrect Permission

Improper Privilege Management

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-732CWE-269

Identificadores relacionados

BDU:2018-01156

CVE-2018-12168

Produtos afetados

Intel Computing Improvement Program

PT-2018-1599 · Intel · Intel Computing Improvement Program

CVE-2018-12168

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5