CVE-2018-3635
HIGHIntel Rapid Storage Technology < 16.7 - Privilege Escalation via Installer Input Validation
Title source: llmDescription
Insufficient input validation in installer in Intel Rapid Store Technology (RST) before version 16.7 may allow an unprivileged user to potentially elevate privileges or cause an installer denial of service via local access.
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/105984
Vendor Advisory x_refsource_confirm
https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00153.html
Mailing List, Third Party Advisory mailing-list
x_refsource_fulldisc
http://seclists.org/fulldisclosure/2021/Mar/55
Scores
CVSS v3
7.8
EPSS
0.0006
EPSS Percentile
19.3%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-269
Status
published
Products (1)
intel/rapid_storage_technology
< 16.7
Published
Nov 14, 2018
Tracked Since
Feb 18, 2026