CVE-2018-12168

CWE-732Incorrect Permission Assignment3 documents3 sources
Severity
7.8HIGH
EPSS
0.0%
top 91.12%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Intel Computing Improvement ProgramIntel Corporation Intel(r) Computing Improvement Program
Timeline
PublishedSep 12
Latest updateMay 13

Description

Privilege escalation in file permissions in Intel Computing Improvement Program before version 2.2.0.03942 may allow an authenticated user to potentially execute code as administrator via local access.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

CVEListV5intel_corporation/intel(r)_computing_improvement_programVersions before 2.2.0.03942.

🔴Vulnerability Details

2
GHSA
GHSA-93jv-wchf-cfhw: Privilege escalation in file permissions in Intel Computing Improvement Program before version 22022-05-13
CVEList
CVE-2018-12168: Privilege escalation in file permissions in Intel Computing Improvement Program before version 22018-09-12
CVE-2018-12168 (HIGH CVSS 7.8) | Privilege escalation in file permis | cvebase.io