Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
intelIntel Security CenterINTEL:INTEL-SA-00170
HistorySep 11, 2018 - 12:00 a.m.

Intel® Data Migration Software Improper Permissions Advisory

2018-09-1100:00:00
Intel Security Center
www.intel.com
9

EPSS

0

Percentile

12.6%

JSON

Summary:

A potential security vulnerability in Intel® Data Migration Software may allow Escalation of Privilege**.**Intel is releasing Intel® Data Migration Software updates to mitigate this potential vulnerability.

Vulnerability Details

CVEID:** CVE-2018-12160**

Description: DLL injection vulnerability in software installer for Intel® Data Center Migration Center Software v3.1 and before may allow an authenticated user to potentially execute code using default directory permissions via local access.

CVSS Base Score:** 5.3 Medium**

CVSS Vector: CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L

Affected Products:

Intel® Data Migration Software v3.1 and before.****

Recommendations:

Intel recommends that users of Intel® Data Migration Software update to the latest version.

Updates are available for download at this location: <https://downloadcenter.intel.com/product/80098/Intel-Data-Migration-Software&gt;

Acknowledgements:****

Intel would like to thank Marius Gabriel Mihai for reporting this issue and working with us on coordinated disclosure.

Related

cve 1
nvd 1
cvelist 1
prion 1
cve
cve
CVE-2018-12160
2018-09-12 19:29:01
nvd
nvd
CVE-2018-12160
2018-09-12 19:29:01
cvelist
cvelist
CVE-2018-12160
2018-09-12 19:00:00
prion
prion
Design/Logic Flaw
2018-09-12 19:29:00

EPSS

0

Percentile

12.6%

JSON
Related for INTEL:INTEL-SA-00170
cve1nvd1cvelist1prion1