PT-2018-11049 · Intel · Intel Distribution For Python

Published

2018-09-12

Updated

2019-10-03

CVE-2018-12175

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Intel Distribution for Python (IDP) version 2018

Description The issue concerns default install directory permissions in Intel Distribution for Python, which may allow an unprivileged user to escalate privileges via local access.

Recommendations For Intel Distribution for Python (IDP) version 2018, consider changing the default install directory permissions to prevent unprivileged users from escalating privileges. As a temporary workaround, restrict local access to the install directory until a fix is available.

Fix

Incorrect Default Permissions

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-276

Related Identifiers

CVE-2018-12175

Affected Products

Intel Distribution For Python

PT-2018-11049 · Intel · Intel Distribution For Python

CVE-2018-12175

Weakness Enumeration

Related Identifiers

Affected Products

References · 3