CVE-2018-12171

3 documents3 sources

Severity

9.8CRITICAL

EPSS

0.7%

top 27.90%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Intel BMC Firmware Intel Corporation Intel(r) Baseboard Management Controller (bmc) Firmware

Timeline

PublishedSep 12

Latest updateMay 13

Description

Privilege escalation in Intel Baseboard Management Controller (BMC) firmware before version 1.43.91f76955 may allow an unprivileged user to potentially execute arbitrary code or perform denial of service over the network.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

▶CVEListV5intel_corporation/intel(r)_baseboard_management_controller_(bmc)_firmwareVersions before 1.43.91f76955.

▶NVDintel/bmc_firmware< 1.43.91f76955

🔴Vulnerability Details

GHSA

GHSA-j5h2-3r9v-6fhh: Privilege escalation in Intel Baseboard Management Controller (BMC) firmware before version 1↗2022-05-13

▶

CVEList

CVE-2018-12171: Privilege escalation in Intel Baseboard Management Controller (BMC) firmware before version 1↗2018-09-12

▶