CVE-2018-12202

Privilege escalation vulnerability in Platform Sample/ Silicon Reference firmware for 8th Generation Intel(R) Core Processor, 7th Generation Intel(R) Core Processor may allow privileged user to potentially leverage existing features via local access.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.7 MEDIUM
LOCAL
LOW
HIGH
CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
intelCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 37%
VendorProductVersion
intelplatform_sample_firmware
-
intelplatform_sample_firmware
-
intelsilicon_reference_firmware
-
intelsilicon_reference_firmware
-
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
intel-microcode
disco
not-affected
cosmic
Fixed 3.20190514.0ubuntu0.18.10.1
released
bionic
Fixed 3.20190514.0ubuntu0.18.04.2
released
xenial
Fixed 3.20190514.0ubuntu0.16.04.1
released
trusty
Fixed 3.20190514.0ubuntu0.14.04.1
released
References
https://security.netapp.com/advisory/ntap-20190318-0002/
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03912en_us
https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00191.html
https://security.netapp.com/advisory/ntap-20190318-0002/
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03912en_us
https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00191.html