CVE-2018-12209

LOW

Intel Graphics Driver - Incorrect Permission Assignment

Title source: rule
STIX 2.1

Description

Insufficient access control in User Mode Driver in Intel(R) Graphics Driver for Windows* before versions 10.18.x.5059 (aka 15.33.x.5059), 10.18.x.5057 (aka 15.36.x.5057), 20.19.x.5063 (aka 15.40.x.5063) 21.20.x.5064 (aka 15.45.x.5064) and 24.20.100.6373 potentially enables an unprivileged user to read device configuration information via local access.

References (2)

Core 2
Core References

Scores

CVSS v3 3.3
EPSS 0.0010
EPSS Percentile 27.6%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Details

CWE
CWE-732
Status published
Products (23)
intel/graphics_driver 15.33.43.4425
intel/graphics_driver 15.33.45.4653
intel/graphics_driver 15.33.46.4885
intel/graphics_driver 15.36.26.4294
intel/graphics_driver 15.36.28.4332
intel/graphics_driver 15.36.31.4414
intel/graphics_driver 15.36.33.4578
intel/graphics_driver 15.36.34.4889
intel/graphics_driver 15.40.34.4624
intel/graphics_driver 15.40.36.4703
... and 13 more
Published Mar 14, 2019
Tracked Since Feb 18, 2026