CVE Vulnerability

CVE-2018-12209

Insufficient access control in User Mode Driver in Intel(R) Graphics Driver for Windows* before versions 10.18.x.5059 (aka 15.33.x.5059), 10.18.x.5057 (aka 15.36.x.5057), 20.19.x.5063 (aka 15.40.x.5063) 21.20.x.5064 (aka 15.45.x.5064) and 24.20.100.6373 potentially enables an unprivileged user to read device configuration information via local access.

2.1 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 2.9

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

Scope

3.3 /10

CVSS v3.0 : LOW

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 1.4

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00189.html Patch Vendor Advisory
https://support.lenovo.com/us/en/product_security/LEN-25084
Configurations

Configuration 1

cpe:2.3:a:intel:graphics_driver:15.33.43.4425:*:*:*:*:windows:*:*
cpe:2.3:a:intel:graphics_driver:15.33.45.4653:*:*:*:*:windows:*:*
cpe:2.3:a:intel:graphics_driver:15.33.46.4885:*:*:*:*:windows:*:*
cpe:2.3:a:intel:graphics_driver:15.36.26.4294:*:*:*:*:windows:*:*
cpe:2.3:a:intel:graphics_driver:15.36.28.4332:*:*:*:*:windows:*:*
cpe:2.3:a:intel:graphics_driver:15.36.31.4414:*:*:*:*:windows:*:*
cpe:2.3:a:intel:graphics_driver:15.36.33.4578:*:*:*:*:windows:*:*
cpe:2.3:a:intel:graphics_driver:15.36.34.4889:*:*:*:*:windows:*:*
cpe:2.3:a:intel:graphics_driver:15.40.34.4624:*:*:*:*:windows:*:*
cpe:2.3:a:intel:graphics_driver:15.40.36.4703:*:*:*:*:windows:*:*
cpe:2.3:a:intel:graphics_driver:15.40.37.4835:*:*:*:*:windows:*:*
cpe:2.3:a:intel:graphics_driver:15.40.38.4963:*:*:*:*:windows:*:*
cpe:2.3:a:intel:graphics_driver:15.40.41.5058:*:*:*:*:windows:*:*
cpe:2.3:a:intel:graphics_driver:15.45.18.4664:*:*:*:*:windows:*:*
cpe:2.3:a:intel:graphics_driver:15.45.19.4678:*:*:*:*:windows:*:*
cpe:2.3:a:intel:graphics_driver:15.45.21.4821:*:*:*:*:windows:*:*
cpe:2.3:a:intel:graphics_driver:15.45.23.4860:*:*:*:*:windows:*:*
cpe:2.3:a:intel:graphics_driver:24.20.100.6025:*:*:*:*:windows:*:*
cpe:2.3:a:intel:graphics_driver:24.20.100.6094:*:*:*:*:windows:*:*
cpe:2.3:a:intel:graphics_driver:24.20.100.6136:*:*:*:*:windows:*:*
cpe:2.3:a:intel:graphics_driver:24.20.100.6194:*:*:*:*:windows:*:*
cpe:2.3:a:intel:graphics_driver:24.20.100.6229:*:*:*:*:windows:*:*
cpe:2.3:a:intel:graphics_driver:24.20.100.6286:*:*:*:*:windows:*:*
Information

Published : 2019-03-14 08:29

Updated : 2019-10-03 12:03

NVD link : CVE-2018-12209

Mitre link : CVE-2018-12209

Products Affected
No products.
CWE
CWE-732