PT-2018-16117 · Intel · Intel Processor Diagnostic Tool

Publicado

2018-07-10

Atualizado

2019-10-03

CVE-2018-3667

CVSS v3.1

7.8

Alta

Vetor

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Intel Processor Diagnostic Tool version 4.1.0.24

Description The issue concerns the installation tool IPDT, which sets permissions of installed files incorrectly. This incorrect setting allows for the execution of arbitrary code and potential privilege escalation.

Recommendations For Intel Processor Diagnostic Tool version 4.1.0.24, update the installation to correctly set permissions of installed files to prevent arbitrary code execution and potential privilege escalation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-1188

Identificadores relacionados

CVE-2018-3667

Produtos afetados

Intel Processor Diagnostic Tool

PT-2018-16117 · Intel · Intel Processor Diagnostic Tool

CVE-2018-3667

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3