CVE-2018-12217
LOWIntel Graphics Driver - Incorrect Permission Assignment
Title source: ruleDescription
Insufficient access control in Kernel Mode Driver in Intel(R) Graphics Driver for Windows* before versions 10.18.x.5059 (aka 15.33.x.5059), 10.18.x.5057 (aka 15.36.x.5057), 20.19.x.5063 (aka 15.40.x.5063) 21.20.x.5064 (aka 15.45.x.5064) and 24.20.100.6373 potentially enables a privileged user to read device configuration information via local access.
References (2)
Core 2
Core References
Patch, Vendor Advisory x_refsource_confirm
https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00189.html
Various Sources x_refsource_confirm
https://support.lenovo.com/us/en/product_security/LEN-25084
Scores
CVSS v3
2.3
EPSS
0.0011
EPSS Percentile
28.9%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N
Details
CWE
CWE-732
Status
published
Products (23)
intel/graphics_driver
15.33.43.4425
intel/graphics_driver
15.33.45.4653
intel/graphics_driver
15.33.46.4885
intel/graphics_driver
15.36.26.4294
intel/graphics_driver
15.36.28.4332
intel/graphics_driver
15.36.31.4414
intel/graphics_driver
15.36.33.4578
intel/graphics_driver
15.36.34.4889
intel/graphics_driver
15.40.34.4624
intel/graphics_driver
15.40.36.4703
... and 13 more
Published
Mar 14, 2019
Tracked Since
Feb 18, 2026