PT-2018-2674 · Intel · Intel Graphics Driver
Piotr Bania
·
Published
2018-10-09
·
Updated
2019-10-30
·
CVE-2018-12152
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Intel Graphics Driver versions prior to 10.18.x.5056 (aka 15.33.x.5056)
Intel Graphics Driver versions prior to 10.18.x.5057 (aka 15.36.x.5057)
Intel Graphics Driver versions prior to 20.19.x.5058 (aka 15.40.x.5058)
Description
The issue is related to a buffer overflow in the Unified Shader Compiler component of the Intel Graphics Driver. This could allow an attacker to execute arbitrary code. The exploitation of this issue may be done via local access, potentially allowing an unauthenticated remote user to execute arbitrary WebGL code.
Recommendations
For versions prior to 10.18.x.5056 (aka 15.33.x.5056), update to version 10.18.x.5056 or later.
For versions prior to 10.18.x.5057 (aka 15.36.x.5057), update to version 10.18.x.5057 or later.
For versions prior to 20.19.x.5058 (aka 15.40.x.5058), update to version 20.19.x.5058 or later.
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Intel Graphics Driver