CVE-2018-12168
HIGHIntel Computing Improvement Program < 2.2.0.03942 - Incorrect Permission Assignment
Title source: ruleDescription
Privilege escalation in file permissions in Intel Computing Improvement Program before version 2.2.0.03942 may allow an authenticated user to potentially execute code as administrator via local access.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00165.html
Scores
CVSS v3
7.8
EPSS
0.0003
EPSS Percentile
8.8%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-732
Status
published
Products (1)
intel/computing_improvement_program
< 2.2.0.03942
Published
Sep 12, 2018
Tracked Since
Feb 18, 2026