CVE-2018-12160

MEDIUM

Intel Data Center Migration Center Software <3.1 - Code Injection

Title source: llm

Description

DLL injection vulnerability in software installer for Intel Data Center Migration Center Software v3.1 and before may allow an authenticated user to potentially execute code using default directory permissions via local access.

References (1)

[Vendor Advisory] https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00170.html

Scores

CVSS v3 5.3

EPSS 0.0004

EPSS Percentile 11.2%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Classification

CWE

CWE-276 CWE-427

Status published

Affected Products (1)

intel/data_migration_software < 3.1

Timeline

Published Sep 12, 2018

Tracked Since Feb 18, 2026