PT-2018-11046 · Intel · Intel Server Boards+1

Published

2018-10-10

Updated

2019-10-03

CVE-2018-12172

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Intel Server Board versions S7200AP, S7200APR Intel Compute Module versions HNS7200AP, HNS7200AP

Description The issue is related to improper password hashing in the firmware, which may allow a privileged user with local access to potentially disclose firmware passwords.

Recommendations For Intel Server Board versions S7200AP, S7200APR, update the firmware to a version that properly hashes passwords. For Intel Compute Module versions HNS7200AP, HNS7200AP, update the firmware to a version that properly hashes passwords.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2018-12172

Affected Products

Intel Compute Modules

Intel Server Boards

PT-2018-11046 · Intel · Intel Server Boards+1

CVE-2018-12172

Related Identifiers

Affected Products

References · 3