PT-2018-3334 · Intel · Intel Smart Sound Technology

Published

2018-07-24

Updated

2019-10-03

CVE-2018-3666

CVSS v3.1

8.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: Intel Smart Sound Technology versions prior to 9.21.00.3541

Description: The issue is related to a non-paged pool overflow in the driver module of Intel Smart Sound Technology. This could potentially allow a local attacker to execute arbitrary code with elevated privileges.

Recommendations: For versions prior to 9.21.00.3541, update to version 9.21.00.3541 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

BDU:2019-04869

CVE-2018-3666

Affected Products

Intel Smart Sound Technology

PT-2018-3334 · Intel · Intel Smart Sound Technology

CVE-2018-3666

Weakness Enumeration

Related Identifiers

Affected Products

References · 5