CVE-2018-12221
HIGHIntel Graphics Driver - Integer Overflow via Insufficient Input Validation
Title source: llmDescription
Insufficient input validation in Kernel Mode Driver in Intel(R) Graphics Driver for Windows* before versions 10.18.x.5059 (aka 15.33.x.5059), 10.18.x.5057 (aka 15.36.x.5057), 20.19.x.5063 (aka 15.40.x.5063) 21.20.x.5064 (aka 15.45.x.5064) and 24.20.100.6373 potentially enables an unprivileged user to cause an integer overflow via local access.
References (2)
Core 2
Core References
Patch, Vendor Advisory x_refsource_confirm
https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00189.html
Various Sources x_refsource_confirm
https://support.lenovo.com/us/en/product_security/LEN-25084
Scores
CVSS v3
7.8
EPSS
0.0006
EPSS Percentile
18.0%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-20
Status
published
Products (23)
intel/graphics_driver
15.33.43.4425
intel/graphics_driver
15.33.45.4653
intel/graphics_driver
15.33.46.4885
intel/graphics_driver
15.36.26.4294
intel/graphics_driver
15.36.28.4332
intel/graphics_driver
15.36.31.4414
intel/graphics_driver
15.36.33.4578
intel/graphics_driver
15.36.34.4889
intel/graphics_driver
15.40.34.4624
intel/graphics_driver
15.40.36.4703
... and 13 more
Published
Mar 14, 2019
Tracked Since
Feb 18, 2026