PT-2018-11040 · Intel · Intel Data Center Migration Center

Published

2018-09-12

Updated

2020-08-24

CVE-2018-12160

CVSS v3.1

5.3

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Name of the Vulnerable Software and Affected Versions Intel Data Center Migration Center Software versions 3.1 and earlier

Description A DLL injection issue in the software installer may allow an authenticated user to potentially execute code using default directory permissions via local access.

Recommendations For Intel Data Center Migration Center Software versions 3.1 and earlier, update to a version later than 3.1 to resolve the issue.

Fix

Incorrect Default Permissions

Uncontrolled Search Path Element

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-276CWE-427

Related Identifiers

CVE-2018-12160

Affected Products

Intel Data Center Migration Center

PT-2018-11040 · Intel · Intel Data Center Migration Center

CVE-2018-12160

Weakness Enumeration

Related Identifiers

Affected Products

References · 3