CVE-2018-12160
MEDIUMIntel Data Center Migration Center Software <3.1 - Code Injection
Title source: llmDescription
DLL injection vulnerability in software installer for Intel Data Center Migration Center Software v3.1 and before may allow an authenticated user to potentially execute code using default directory permissions via local access.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00170.html
Scores
CVSS v3
5.3
EPSS
0.0004
EPSS Percentile
11.6%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Details
CWE
CWE-276
CWE-427
Status
published
Products (1)
intel/data_migration_software
< 3.1
Published
Sep 12, 2018
Tracked Since
Feb 18, 2026