CVE-2018-12221Improper Input Validation in Corporation Intel Graphics Driver FOR Windows

CWE-20Improper Input Validation3 documents3 sources
Severity
7.8HIGHNVD
EPSS
0.1%
top 82.05%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Intel Corporation Intel Graphics Driver FOR WindowsIntel Graphics Driver
Timeline
PublishedMar 14
Latest updateMay 14

Description

Insufficient input validation in Kernel Mode Driver in Intel(R) Graphics Driver for Windows* before versions 10.18.x.5059 (aka 15.33.x.5059), 10.18.x.5057 (aka 15.36.x.5057), 20.19.x.5063 (aka 15.40.x.5063) 21.20.x.5064 (aka 15.45.x.5064) and 24.20.100.6373 potentially enables an unprivileged user to cause an integer overflow via local access.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

NVDintel/graphics_driver23 versions+22

Patches

Patch: www.intel.comPatch: www.intel.com

🔴Vulnerability Details

2
GHSA
GHSA-m7fj-x8p4-jw6x: Insufficient input validation in Kernel Mode Driver in Intel(R) Graphics Driver for Windows* before versions 102022-05-14
CVEList
CVE-2018-12221: Insufficient input validation in Kernel Mode Driver in Intel(R) Graphics Driver for Windows* before versions 102019-03-14
CVE-2018-12221 — Improper Input Validation | cvebase