CVE-2018-12152
HIGHIntel Graphics Drivers <10.18.x.5056-20.19.x.5058 - RCE
Title source: llmDescription
Pointer corruption in Unified Shader Compiler in Intel Graphics Drivers before 10.18.x.5056 (aka 15.33.x.5056), 10.18.x.5057 (aka 15.36.x.5057) and 20.19.x.5058 (aka 15.40.x.5058) may allow an unauthenticated remote user to potentially execute arbitrary WebGL code via local access.
References (6)
Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/105582
Mitigation, Vendor Advisory x_refsource_confirm
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00166.html
Mailing List mailing-list
x_refsource_fulldisc
http://seclists.org/fulldisclosure/2019/Oct/56
Mailing List mailing-list
x_refsource_fulldisc
http://seclists.org/fulldisclosure/2019/Oct/55
Vendor Advisory x_refsource_confirm
https://support.apple.com/kb/HT210634
Vendor Advisory x_refsource_confirm
https://support.apple.com/kb/HT210722
Scores
CVSS v3
7.8
EPSS
0.0176
EPSS Percentile
82.9%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-119
Status
published
Products (15)
intel/graphics_driver
15.33.43.4425
intel/graphics_driver
15.33.45.4653
intel/graphics_driver
15.33.46.4885
intel/graphics_driver
15.33.47.5059
intel/graphics_driver
15.36.26.4294
intel/graphics_driver
15.36.28.4332
intel/graphics_driver
15.36.31.4414
intel/graphics_driver
15.36.33.4578
intel/graphics_driver
15.36.34.4889
intel/graphics_driver
15.36.35.5057
... and 5 more
Published
Oct 10, 2018
Tracked Since
Feb 18, 2026