exploitDog

CVE-2018-12160

Опубликовано: 12 сент. 2018

Источник: nvd

CVSS3: 5.3

CVSS2: 4.6

EPSS Низкий

Описание

DLL injection vulnerability in software installer for Intel Data Center Migration Center Software v3.1 and before may allow an authenticated user to potentially execute code using default directory permissions via local access.

Ссылки

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00170.html
Vendor Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00170.html
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:intel:data_migration_software:*:*:*:*:*:*:*:*

Версия до 3.1 (включая)

EPSS

Процентиль: 11%

0.00038

Низкий

5.3 Medium

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-276

Связанные уязвимости

GHSA-wgg2-9vvc-4wxr

CVSS3: 5.3

github

больше 3 лет назад

DLL injection vulnerability in software installer for Intel Data Center Migration Center Software v3.1 and before may allow an authenticated user to potentially execute code using default directory permissions via local access.

EPSS

Процентиль: 11%

0.00038

Низкий

5.3 Medium

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-276