CVE-2018-3635

EUVD-2018-15489
Insufficient input validation in installer in Intel Rapid Store Technology (RST) before version 16.7 may allow an unprivileged user to potentially elevate privileges or cause an installer denial of service via local access.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 19%
Affected Products (NVD)
VendorProductVersion
intelrapid_storage_technology
𝑥
< 16.7
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://seclists.org/fulldisclosure/2021/Mar/55
http://www.securityfocus.com/bid/105984
https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00153.html
http://seclists.org/fulldisclosure/2021/Mar/55
http://www.securityfocus.com/bid/105984
https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00153.html