PT-2018-16117 · Intel · Intel Processor Diagnostic Tool

Published

2018-07-10

Updated

2019-10-03

CVE-2018-3667

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Intel Processor Diagnostic Tool version 4.1.0.24

Description The issue concerns the installation tool IPDT, which sets permissions of installed files incorrectly. This incorrect setting allows for the execution of arbitrary code and potential privilege escalation.

Recommendations For Intel Processor Diagnostic Tool version 4.1.0.24, update the installation to correctly set permissions of installed files to prevent arbitrary code execution and potential privilege escalation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-1188

Related Identifiers

CVE-2018-3667

Affected Products

Intel Processor Diagnostic Tool

PT-2018-16117 · Intel · Intel Processor Diagnostic Tool

CVE-2018-3667

Weakness Enumeration

Related Identifiers

Affected Products

References · 3