Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2018-12204 (GCVE-0-2018-12204)
Vulnerability from cvelistv5 – Published: 2019-03-14 20:00 – Updated: 2024-09-16 23:42
VLAI?
EPSS
Summary
Improper memory initialization in Platform Sample/Silicon Reference firmware Intel(R) Server Board, Intel(R) Server System and Intel(R) Compute Module may allow privileged user to potentially enable an escalation of privilege via local access.
Severity ?
No CVSS data available.
CWE
- Escalation of privilege
Assigner
References
| URL | Tags | ||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Intel Corporation | Intel Platform Sample / Silicon Reference firmware |
Affected:
Multiple versions.
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T08:30:59.236Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00191.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20190318-0002/"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03912en_us"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03929en_us"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03978en_us"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Intel Platform Sample / Silicon Reference firmware",
"vendor": "Intel Corporation",
"versions": [
{
"status": "affected",
"version": "Multiple versions."
}
]
}
],
"datePublic": "2019-03-12T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Improper memory initialization in Platform Sample/Silicon Reference firmware Intel(R) Server Board, Intel(R) Server System and Intel(R) Compute Module may allow privileged user to potentially enable an escalation of privilege via local access."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Escalation of privilege",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-01-16T03:06:03.000Z",
"orgId": "6dda929c-bb53-4a77-a76d-48e79601a1ce",
"shortName": "intel"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00191.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://security.netapp.com/advisory/ntap-20190318-0002/"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03912en_us"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03929en_us"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03978en_us"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secure@intel.com",
"DATE_PUBLIC": "2019-03-12T00:00:00",
"ID": "CVE-2018-12204",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Intel Platform Sample / Silicon Reference firmware",
"version": {
"version_data": [
{
"version_value": "Multiple versions."
}
]
}
}
]
},
"vendor_name": "Intel Corporation"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Improper memory initialization in Platform Sample/Silicon Reference firmware Intel(R) Server Board, Intel(R) Server System and Intel(R) Compute Module may allow privileged user to potentially enable an escalation of privilege via local access."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Escalation of privilege"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00191.html",
"refsource": "CONFIRM",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00191.html"
},
{
"name": "https://security.netapp.com/advisory/ntap-20190318-0002/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20190318-0002/"
},
{
"name": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03912en_us",
"refsource": "CONFIRM",
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03912en_us"
},
{
"name": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03929en_us",
"refsource": "CONFIRM",
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03929en_us"
},
{
"name": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03978en_us",
"refsource": "CONFIRM",
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03978en_us"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "6dda929c-bb53-4a77-a76d-48e79601a1ce",
"assignerShortName": "intel",
"cveId": "CVE-2018-12204",
"datePublished": "2019-03-14T20:00:00.000Z",
"dateReserved": "2018-06-11T00:00:00.000Z",
"dateUpdated": "2024-09-16T23:42:04.799Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CERTFR-2019-AVI-108
Vulnerability from certfr_avis - Published: 2019-03-13 - Updated: 2019-03-13
De multiples vulnérabilités ont été découvertes dans les produits Intel. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, un déni de service à distance et un déni de service.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Intel | N/A | Processeur Intel Celeron J4105 | ||
| Intel | N/A | Intel CSME versions 11.0 à 11.8.55 | ||
| Intel | N/A | Intel CSME versions 11.20 à 11.22.0 | ||
| Intel | N/A | Intel Data Center Manager SDK versions antérieures à 5.0.2 | ||
| Intel | N/A | Intel CSME versions 12.0 à 12.0.10 | ||
| Intel | N/A | Processeur Intel Celeron N4000 | ||
| Intel | N/A | Intel Accelerated Storage Manager RSTe versions 5.5 et antérieures | ||
| Intel | N/A | Intel Server Board | ||
| Intel | N/A | Intel Server System | ||
| Intel | N/A | Processeur Intel Core de 7ème génération | ||
| Intel | N/A | Intel Compute ModuleIntel Graphics Driver pour Windows versions antérieures à 10.18.x.5059 (aussi connu comme 15.33.x.5059), 10.18.x.5057 (aussi connu comme 15.36.x.5057), 20.19.x.5063 (aussi connu comme 15.40.x.5063) 21.20.x.5064 (aussi connu comme 15.45.x.5064) et 24.20.100.6373 | ||
| Intel | N/A | Intel CSME versions 11.10 à 11.11.55 | ||
| Intel | N/A | Intel Trusted Execution Engine versions 4.0 à 4.0.5 | ||
| Intel | N/A | Processeur Intel Core de 8ème génération | ||
| Intel | N/A | Processeur Intel Pentium Silver N5000 | ||
| Intel | N/A | Composant Intel Unite Solution software server version 3.2 à 3.3 | ||
| Intel | N/A | Processeur Intel Celeron N4100 | ||
| Intel | N/A | Intel Server Platform Services versions SPS 4.01.00.152.0 à SPS 4.01.02.173 | ||
| Intel | N/A | Intel Server Platform Services versions SPS 4.00.04.367 à SPS 4.00.04.382 | ||
| Intel | N/A | Processeur Intel Pentium Silver J5005 | ||
| Intel | N/A | Processeur Intel Celeron J4005 | ||
| Intel | N/A | Intel Trusted Execution Engine versions 3.0 à 3.1.50 |
References
| Title | Publication Time | Tags | ||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Processeur Intel Celeron J4105",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel CSME versions 11.0 \u00e0 11.8.55",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel CSME versions 11.20 \u00e0 11.22.0",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Data Center Manager SDK versions ant\u00e9rieures \u00e0 5.0.2",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel CSME versions 12.0 \u00e0 12.0.10",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Processeur Intel Celeron N4000",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Accelerated Storage Manager RSTe versions 5.5 et ant\u00e9rieures",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Server Board",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Server System",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Processeur Intel Core de 7\u00e8me g\u00e9n\u00e9ration",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Compute ModuleIntel Graphics Driver pour Windows versions ant\u00e9rieures \u00e0 10.18.x.5059 (aussi connu comme 15.33.x.5059), 10.18.x.5057 (aussi connu comme 15.36.x.5057), 20.19.x.5063 (aussi connu comme 15.40.x.5063) 21.20.x.5064 (aussi connu comme 15.45.x.5064) et 24.20.100.6373",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel CSME versions 11.10 \u00e0 11.11.55",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Trusted Execution Engine versions 4.0 \u00e0 4.0.5",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Processeur Intel Core de 8\u00e8me g\u00e9n\u00e9ration",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Processeur Intel Pentium Silver N5000",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Composant Intel Unite Solution software server version 3.2 \u00e0 3.3",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Processeur Intel Celeron N4100",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Server Platform Services versions SPS 4.01.00.152.0 \u00e0 SPS 4.01.02.173",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Server Platform Services versions SPS 4.00.04.367 \u00e0 SPS 4.00.04.382",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Processeur Intel Pentium Silver J5005",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Processeur Intel Celeron J4005",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
},
{
"description": "Intel Trusted Execution Engine versions 3.0 \u00e0 3.1.50",
"product": {
"name": "N/A",
"vendor": {
"name": "Intel",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2018-12223",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12223"
},
{
"name": "CVE-2019-0108",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0108"
},
{
"name": "CVE-2018-12215",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12215"
},
{
"name": "CVE-2018-12188",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12188"
},
{
"name": "CVE-2018-12205",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12205"
},
{
"name": "CVE-2019-0103",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0103"
},
{
"name": "CVE-2018-12222",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12222"
},
{
"name": "CVE-2018-12212",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12212"
},
{
"name": "CVE-2018-12213",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12213"
},
{
"name": "CVE-2018-12202",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12202"
},
{
"name": "CVE-2018-12199",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12199"
},
{
"name": "CVE-2018-12221",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12221"
},
{
"name": "CVE-2019-0107",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0107"
},
{
"name": "CVE-2018-12191",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12191"
},
{
"name": "CVE-2018-12200",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12200"
},
{
"name": "CVE-2018-12204",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12204"
},
{
"name": "CVE-2018-12214",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12214"
},
{
"name": "CVE-2019-0105",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0105"
},
{
"name": "CVE-2018-18089",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18089"
},
{
"name": "CVE-2019-0109",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0109"
},
{
"name": "CVE-2018-12187",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12187"
},
{
"name": "CVE-2018-12219",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12219"
},
{
"name": "CVE-2019-0102",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0102"
},
{
"name": "CVE-2018-12192",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12192"
},
{
"name": "CVE-2018-12208",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12208"
},
{
"name": "CVE-2019-0101",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0101"
},
{
"name": "CVE-2018-12217",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12217"
},
{
"name": "CVE-2018-12189",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12189"
},
{
"name": "CVE-2018-12196",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12196"
},
{
"name": "CVE-2019-0135",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0135"
},
{
"name": "CVE-2018-12201",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12201"
},
{
"name": "CVE-2018-12211",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12211"
},
{
"name": "CVE-2019-0106",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0106"
},
{
"name": "CVE-2018-12203",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12203"
},
{
"name": "CVE-2018-12209",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12209"
},
{
"name": "CVE-2019-0112",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0112"
},
{
"name": "CVE-2019-0110",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0110"
},
{
"name": "CVE-2018-12185",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12185"
},
{
"name": "CVE-2019-0111",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0111"
},
{
"name": "CVE-2018-12218",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12218"
},
{
"name": "CVE-2018-12220",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12220"
},
{
"name": "CVE-2018-12216",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12216"
},
{
"name": "CVE-2018-12224",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12224"
},
{
"name": "CVE-2019-0104",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0104"
},
{
"name": "CVE-2018-12210",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12210"
},
{
"name": "CVE-2018-12198",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12198"
},
{
"name": "CVE-2018-18090",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18090"
},
{
"name": "CVE-2018-12190",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12190"
},
{
"name": "CVE-2018-18091",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18091"
}
],
"initial_release_date": "2019-03-13T00:00:00",
"last_revision_date": "2019-03-13T00:00:00",
"links": [],
"reference": "CERTFR-2019-AVI-108",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2019-03-13T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Intel.\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire, un d\u00e9ni de service \u00e0 distance et un d\u00e9ni\nde service.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Intel",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-00189 du 12 mars 2019",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00189.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-00231 du 12 mars 2019",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00231.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-00215 du 12 mars 2019",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00215.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-00185 du 12 mars 2019",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00185.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-00214 du 12 mars 2019",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00214.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Intel INTEL-SA-00191 du 12 mars 2019",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00191.html"
}
]
}
CVE-2018-12204
Vulnerability from fstec - Published: 12.03.2019
VLAI Severity ?
Title
Уязвимость компонента Platform Sample/Silicon Reference серверного оборудования Intel(R) Server Board, Intel(R) Server System и Intel(R) Compute Module, связанная с недостатками разграничения доступа, позволяющая нарушителю выполнить произвольный код
Description
Уязвимость компонента Platform Sample/Silicon Reference серверного оборудования Intel(R) Server Board, Intel(R) Server System и Intel(R) Compute Module связана с недостатками разграничения доступа. Эксплуатация уязвимости может позволить нарушителю выполнить произвольный код
Severity ?
Vendor
Intel Corp.
Software Name
Intel Server Board, Intel Server System, Intel Compute Module
Software Version
- (Intel Server Board), - (Intel Server System), - (Intel Compute Module)
Possible Mitigations
Обновление программного обеспечения до более поздней версии
Reference
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00191.html
CWE
CWE-264
{
"CVSS 2.0": "AV:L/AC:H/Au:M/C:C/I:C/A:C",
"CVSS 3.0": "AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Intel Corp.",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "- (Intel Server Board), - (Intel Server System), - (Intel Compute Module)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u0434\u043e \u0431\u043e\u043b\u0435\u0435 \u043f\u043e\u0437\u0434\u043d\u0435\u0439 \u0432\u0435\u0440\u0441\u0438\u0438",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "12.03.2019",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "23.03.2021",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "29.03.2019",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2019-01213",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2018-12204",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0430\u0440\u0445\u0438\u0442\u0435\u043a\u0442\u0443\u0440\u044b",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Intel Server Board, Intel Server System, Intel Compute Module",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": null,
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0430 Platform Sample/Silicon Reference \u0441\u0435\u0440\u0432\u0435\u0440\u043d\u043e\u0433\u043e \u043e\u0431\u043e\u0440\u0443\u0434\u043e\u0432\u0430\u043d\u0438\u044f Intel(R) Server Board, Intel(R) Server System \u0438 Intel(R) Compute Module, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u0430\u043c\u0438 \u0440\u0430\u0437\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u0420\u0430\u0437\u0440\u0435\u0448\u0435\u043d\u0438\u044f, \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438 \u0438 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u043e\u043c (CWE-264)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0430 Platform Sample/Silicon Reference \u0441\u0435\u0440\u0432\u0435\u0440\u043d\u043e\u0433\u043e \u043e\u0431\u043e\u0440\u0443\u0434\u043e\u0432\u0430\u043d\u0438\u044f Intel(R) Server Board, Intel(R) Server System \u0438 Intel(R) Compute Module \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u0430\u043c\u0438 \u0440\u0430\u0437\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": "-",
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041d\u0430\u0440\u0443\u0448\u0435\u043d\u0438\u0435 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00191.html",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041c\u0438\u043a\u0440\u043e\u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u044b\u0439 \u043a\u043e\u0434",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-264",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 5,9)\n\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,1)"
}
GHSA-XG6V-VR2F-H5XX
Vulnerability from github – Published: 2022-05-13 01:49 – Updated: 2022-05-13 01:49
VLAI?
Details
Improper memory initialization in Platform Sample/Silicon Reference firmware Intel(R) Server Board, Intel(R) Server System and Intel(R) Compute Module may allow privileged user to potentially enable an escalation of privilege via local access.
Severity ?
6.7 (Medium)
{
"affected": [],
"aliases": [
"CVE-2018-12204"
],
"database_specific": {
"cwe_ids": [
"CWE-665"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2019-03-14T20:29:00Z",
"severity": "HIGH"
},
"details": "Improper memory initialization in Platform Sample/Silicon Reference firmware Intel(R) Server Board, Intel(R) Server System and Intel(R) Compute Module may allow privileged user to potentially enable an escalation of privilege via local access.",
"id": "GHSA-xg6v-vr2f-h5xx",
"modified": "2022-05-13T01:49:30Z",
"published": "2022-05-13T01:49:30Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12204"
},
{
"type": "WEB",
"url": "https://security.netapp.com/advisory/ntap-20190318-0002"
},
{
"type": "WEB",
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03912en_us"
},
{
"type": "WEB",
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03929en_us"
},
{
"type": "WEB",
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03978en_us"
},
{
"type": "WEB",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00191.html"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
GSD-2018-12204
Vulnerability from gsd - Updated: 2023-12-13 01:22Details
Improper memory initialization in Platform Sample/Silicon Reference firmware Intel(R) Server Board, Intel(R) Server System and Intel(R) Compute Module may allow privileged user to potentially enable an escalation of privilege via local access.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2018-12204",
"description": "Improper memory initialization in Platform Sample/Silicon Reference firmware Intel(R) Server Board, Intel(R) Server System and Intel(R) Compute Module may allow privileged user to potentially enable an escalation of privilege via local access.",
"id": "GSD-2018-12204"
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2018-12204"
],
"details": "Improper memory initialization in Platform Sample/Silicon Reference firmware Intel(R) Server Board, Intel(R) Server System and Intel(R) Compute Module may allow privileged user to potentially enable an escalation of privilege via local access.",
"id": "GSD-2018-12204",
"modified": "2023-12-13T01:22:30.062057Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secure@intel.com",
"DATE_PUBLIC": "2019-03-12T00:00:00",
"ID": "CVE-2018-12204",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Intel Platform Sample / Silicon Reference firmware",
"version": {
"version_data": [
{
"version_value": "Multiple versions."
}
]
}
}
]
},
"vendor_name": "Intel Corporation"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Improper memory initialization in Platform Sample/Silicon Reference firmware Intel(R) Server Board, Intel(R) Server System and Intel(R) Compute Module may allow privileged user to potentially enable an escalation of privilege via local access."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Escalation of privilege"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00191.html",
"refsource": "CONFIRM",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00191.html"
},
{
"name": "https://security.netapp.com/advisory/ntap-20190318-0002/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20190318-0002/"
},
{
"name": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03912en_us",
"refsource": "CONFIRM",
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03912en_us"
},
{
"name": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03929en_us",
"refsource": "CONFIRM",
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03929en_us"
},
{
"name": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03978en_us",
"refsource": "CONFIRM",
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03978en_us"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:platform_sample_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:bbs7200ap:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:bbs7200apl:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600bpblc:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600bpblc24:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600tp24sr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600tp24str:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns7200aprl:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r1208wftys:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2208wf0zs:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2208wfqzs:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:bbs2600bpb:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:dbs2600cw2r:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:dbs2600cw2sr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600bpq:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600bpq24:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600bps:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600tpfr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600tpnr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r1208wt2gsr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r1208wttgsr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2208wt2ysr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2208wttyc1r:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2312wf0np:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2312wfqzs:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600stq:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600tpfr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600wttr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600wtts1r:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2208wftzs:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2308wftzs:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2308wttysr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600kptr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600stb:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600wfq:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600wft:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600wt2r:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:bbs2600stb:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:bbs2600stq:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600bpb:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600bpb24:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600kpr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600tp24r:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns7200apl:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns7200apr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r1304wt2gsr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r1304wttgsr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2224wftzs:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2224wttysr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600kpfr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600kpr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600tptr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600wfo:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:bbs2600bpq:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:bbs2600bps:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:dbs2600cwtr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:dbs2600cwtsr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600bps24:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600kpfr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600tpr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns7200ap:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r1304wf0ys:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r1304wftys:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2208wttysr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2224wfqzs:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2312wftzs:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2312wttysr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600tpnr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600tpr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s7200apr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:intel:silicon_reference_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:intel:bbs2600bpq:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:bbs2600bps:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:dbs2600cwtr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:dbs2600cwtsr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600bps24:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600kpfr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600tpr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:bbs2600bpb:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:dbs2600cw2r:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:dbs2600cw2sr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600bpq24:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600bps:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600tpfr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600tpnr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r1208wt2gsr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r1208wttgsr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:bbs7200ap:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:bbs7200apl:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600bpblc:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600bpblc24:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600bpq:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600tp24sr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600tp24str:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns7200aprl:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r1208wftys:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2208wfqzs:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2208wftzs:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2308wftzs:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2308wttysr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600kptr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600stb:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600wft:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600wt2r:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2208wt2ysr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2208wttyc1r:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2312wf0np:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2312wfqzs:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600stq:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600tpfr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600wttr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600wtts1r:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns7200ap:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r1304wf0ys:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r1304wftys:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2208wttysr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2224wfqzs:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2312wftzs:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2312wttysr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600tpnr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600tpr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600tptr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s7200apr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:bbs2600stb:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:bbs2600stq:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600bpb:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600bpb24:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600kpr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns2600tp24r:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns7200apl:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:hns7200apr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r1304wt2gsr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r1304wttgsr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2208wf0zs:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2224wftzs:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:r2224wttysr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600kpfr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600kpr:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600wfo:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
},
{
"cpe23Uri": "cpe:2.3:h:intel:s2600wfq:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secure@intel.com",
"ID": "CVE-2018-12204"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Improper memory initialization in Platform Sample/Silicon Reference firmware Intel(R) Server Board, Intel(R) Server System and Intel(R) Compute Module may allow privileged user to potentially enable an escalation of privilege via local access."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-665"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00191.html",
"refsource": "CONFIRM",
"tags": [
"Vendor Advisory"
],
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00191.html"
},
{
"name": "https://security.netapp.com/advisory/ntap-20190318-0002/",
"refsource": "CONFIRM",
"tags": [],
"url": "https://security.netapp.com/advisory/ntap-20190318-0002/"
},
{
"name": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03912en_us",
"refsource": "CONFIRM",
"tags": [],
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03912en_us"
},
{
"name": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03929en_us",
"refsource": "CONFIRM",
"tags": [],
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03929en_us"
},
{
"name": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03978en_us",
"refsource": "CONFIRM",
"tags": [],
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03978en_us"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.2,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 0.8,
"impactScore": 5.9
}
},
"lastModifiedDate": "2019-10-03T00:03Z",
"publishedDate": "2019-03-14T20:29Z"
}
}
}
CNVD-2020-18594
Vulnerability from cnvd - Published: 2020-03-22
VLAI Severity ?
Title
多款Intel产品权限许可和访问控制问题漏洞
Description
Intel Server Board等都是美国英特尔(Intel)公司的产品。Intel Server Board是一款服务器主板。Intel Server System是一款服务器阵列卡。Intel Compute Module是一款计算模块。
多款Intel产品存在权限许可和访问控制问题漏洞。攻击者可利用该漏洞执行任意代码。
Severity
高
Patch Name
多款Intel产品权限许可和访问控制问题漏洞的补丁
Patch Description
Intel Server Board等都是美国英特尔(Intel)公司的产品。Intel Server Board是一款服务器主板。Intel Server System是一款服务器阵列卡。Intel Compute Module是一款计算模块。
多款Intel产品存在权限许可和访问控制问题漏洞。攻击者可利用该漏洞执行任意代码。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
厂商已发布了漏洞修复程序,请及时关注更新: https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00191.html
Reference
https://nvd.nist.gov/vuln/detail/CVE-2018-12204
Impacted products
| Name | ['Intel Server Board 无', 'Intel Server System', 'Intel Compute Module'] |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2018-12204",
"cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12204"
}
},
"description": "Intel Server Board\u7b49\u90fd\u662f\u7f8e\u56fd\u82f1\u7279\u5c14\uff08Intel\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002Intel Server Board\u662f\u4e00\u6b3e\u670d\u52a1\u5668\u4e3b\u677f\u3002Intel Server System\u662f\u4e00\u6b3e\u670d\u52a1\u5668\u9635\u5217\u5361\u3002Intel Compute Module\u662f\u4e00\u6b3e\u8ba1\u7b97\u6a21\u5757\u3002\n\n\u591a\u6b3eIntel\u4ea7\u54c1\u5b58\u5728\u6743\u9650\u8bb8\u53ef\u548c\u8bbf\u95ee\u63a7\u5236\u95ee\u9898\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002",
"formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00191.html",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2020-18594",
"openTime": "2020-03-22",
"patchDescription": "Intel Server Board\u7b49\u90fd\u662f\u7f8e\u56fd\u82f1\u7279\u5c14\uff08Intel\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002Intel Server Board\u662f\u4e00\u6b3e\u670d\u52a1\u5668\u4e3b\u677f\u3002Intel Server System\u662f\u4e00\u6b3e\u670d\u52a1\u5668\u9635\u5217\u5361\u3002Intel Compute Module\u662f\u4e00\u6b3e\u8ba1\u7b97\u6a21\u5757\u3002\r\n\r\n\u591a\u6b3eIntel\u4ea7\u54c1\u5b58\u5728\u6743\u9650\u8bb8\u53ef\u548c\u8bbf\u95ee\u63a7\u5236\u95ee\u9898\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "\u591a\u6b3eIntel\u4ea7\u54c1\u6743\u9650\u8bb8\u53ef\u548c\u8bbf\u95ee\u63a7\u5236\u95ee\u9898\u6f0f\u6d1e\u7684\u8865\u4e01",
"products": {
"product": [
"Intel Server Board \u65e0",
"Intel Server System",
"Intel Compute Module"
]
},
"referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2018-12204",
"serverity": "\u9ad8",
"submitTime": "2019-03-18",
"title": "\u591a\u6b3eIntel\u4ea7\u54c1\u6743\u9650\u8bb8\u53ef\u548c\u8bbf\u95ee\u63a7\u5236\u95ee\u9898\u6f0f\u6d1e"
}
FKIE_CVE-2018-12204
Vulnerability from fkie_nvd - Published: 2019-03-14 20:29 - Updated: 2024-11-21 03:44
Severity ?
Summary
Improper memory initialization in Platform Sample/Silicon Reference firmware Intel(R) Server Board, Intel(R) Server System and Intel(R) Compute Module may allow privileged user to potentially enable an escalation of privilege via local access.
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:platform_sample_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1CDA75B0-0DB9-4E0E-BF2C-724572FFB46F",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:bbs2600bpb:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B49A0E57-126A-4C60-A748-5D357E7B4670",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:bbs2600bpq:-:*:*:*:*:*:*:*",
"matchCriteriaId": "34BB3CD5-DF01-40A8-9906-5C5B306C1B85",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:bbs2600bps:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8B3CC4D7-1756-44DB-814D-57106E6826C6",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:bbs2600stb:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7819ABC6-800C-4141-A31F-14CBE788EF62",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:bbs2600stq:-:*:*:*:*:*:*:*",
"matchCriteriaId": "106C758A-F23A-48B3-8360-A10212AF50E3",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:bbs7200ap:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4D299D95-DA1B-4EB0-B424-367223B1728C",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:bbs7200apl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FD07AA71-7FDA-4FF9-AFE9-E5F4797FAC63",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:dbs2600cw2r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "41FC06AE-A60D-4A9D-9EC9-5E0B55098CFC",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:dbs2600cw2sr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CAEE9115-02E3-451B-B102-32DD51CB890B",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:dbs2600cwtr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "90B4B99C-FCA8-496A-9673-F665C909D578",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:dbs2600cwtsr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5CB91448-FA68-4D4F-9432-F38ACD8C6591",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600bpb:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4F08CC45-9AC9-4A00-83B9-F9D4970B0DE8",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600bpb24:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7F002684-C456-40F0-AA2A-97C79AE5EECA",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600bpblc:-:*:*:*:*:*:*:*",
"matchCriteriaId": "796E437A-B972-4D30-B0A4-53366693C7DF",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600bpblc24:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0D9CC284-540E-492A-A0E6-A193DEAD3102",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600bpq:-:*:*:*:*:*:*:*",
"matchCriteriaId": "24786B0E-36AC-4DBD-8778-DC836CF81CB1",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600bpq24:-:*:*:*:*:*:*:*",
"matchCriteriaId": "613CDC12-2D3E-4BF3-AE2D-DCDEBEAED03D",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600bps:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F9EADDC0-0AAE-4445-9764-1C54E3898FFD",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600bps24:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E09B1290-FAD0-4869-A1FA-A4D12BB602CD",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600kpfr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4561DCAF-5A12-4A35-93A0-8F097D22F275",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600kpr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B2A50B12-5F1A-4F42-807A-EE73668C9690",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600tp24r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "12F99059-4FE6-49AB-AA9D-4890C2D747FC",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600tp24sr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AD725F8F-76BC-4A20-A02D-0A68B67CA401",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600tp24str:-:*:*:*:*:*:*:*",
"matchCriteriaId": "635E397E-BB32-4C2F-A19F-7C1219A726D3",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600tpfr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6507AB9B-5925-4F6C-9641-9806A226B3CC",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600tpnr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F01C4D33-AED6-427D-8631-E4763410C93F",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600tpr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0B69B157-19C4-4CF4-8762-97030DD01A15",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns7200ap:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AE3E826A-6B5B-4445-9D09-0D3C65276259",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns7200apl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7F95ADEA-F861-45B2-AE47-390C311FC97F",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns7200apr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "254CB73B-6A91-408F-A3C9-D3259BC2EF9F",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns7200aprl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6BCA0A87-6776-4711-8692-03C0DFD01779",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r1208wftys:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F1DD69C7-9E7C-4569-9971-A06F77028BB7",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r1208wt2gsr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F3F0A597-424D-47D0-BEA5-C92952331B65",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r1208wttgsr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "ABA90242-9E50-4B94-ACCC-9DAC55170A90",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r1304wf0ys:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0DEF6206-E94C-4C16-8D91-AD776D62F79F",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r1304wftys:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0A47AC30-315C-4E4B-BBBB-305FA5131281",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r1304wt2gsr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4ADAC3B8-CBDC-4AF5-9C16-D90E6E4D1D5B",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r1304wttgsr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2FD433E7-99ED-4354-BC25-577F65A387D2",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2208wf0zs:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EF575955-C7E1-4DD6-8AAE-5930EDFEDA93",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2208wfqzs:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3B83196F-06BD-41D6-A6B8-C7ABD25CA238",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2208wftzs:-:*:*:*:*:*:*:*",
"matchCriteriaId": "30E49457-D38D-4145-81F2-7FA4D463CD24",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2208wt2ysr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0DF49DB1-997F-4FF3-989F-7CCC3D328C33",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2208wttyc1r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3087F420-9904-4FA8-9D29-433A3F7838B9",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2208wttysr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5C15931E-37B8-420E-8252-2311329DD187",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2224wfqzs:-:*:*:*:*:*:*:*",
"matchCriteriaId": "13C6540A-C5E4-46E5-BB7C-E4C53904AE68",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2224wftzs:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D952C1D5-581F-4ADC-8DB5-3682DC8588CA",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2224wttysr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2B3FEDE2-915F-4691-B3A5-14EE27D95167",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2308wftzs:-:*:*:*:*:*:*:*",
"matchCriteriaId": "31EF6A93-7FDE-43A7-BB5D-1DD52318F60D",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2308wttysr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "717726C8-2648-4A98-8B9A-5999F68AEC6A",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2312wf0np:-:*:*:*:*:*:*:*",
"matchCriteriaId": "98B6DF59-DF1E-4D9C-B574-37DC398B16AB",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2312wfqzs:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6982CB5F-4448-48D4-BD3A-782874AB2304",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2312wftzs:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B14E3D1D-B614-458D-8F78-E25CC89B311E",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2312wttysr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4CE3087A-A327-46B9-BE16-4C1A57FAEE3F",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600kpfr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4D9C9254-43DE-4DC9-A246-75C76B4C45B3",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600kpr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "540DFDF8-E420-45E9-8E81-BAE9EAE3D1C8",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600kptr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "40EE02E9-BE39-425A-82CB-1BD4C5D9B899",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600stb:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A08E8AD9-CA53-4F39-820E-D4A4D2D319EB",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600stq:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6DDFAF1C-E386-4F35-8A81-492713F10A92",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600tpfr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EDF6DBFD-8223-4EAC-B6B0-F721C91727A2",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600tpnr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C911A0CB-EF89-4295-9761-AAF687E2F8CA",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600tpr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8A2DBEFE-CFBF-4424-A12B-C3A4C49E594C",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600tptr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1B737A9A-A013-4AFB-A355-6FF96AACBAA1",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600wfo:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4CDAD0D9-C4DD-42B5-AC7F-4C53F406B762",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600wfq:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F105271A-9DC1-42CE-9D19-E4A55BE1F04E",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600wft:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D4BEA962-CEFF-429C-BB64-1C3FEA98FCE9",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600wt2r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "12161640-C1D6-49A7-840C-5E3DCC0B5707",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600wttr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0D97AAF4-938D-4B28-BEF1-D5F978AE3B7D",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600wtts1r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F1993088-729D-477E-9210-E49432177C57",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s7200apr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F73E6B49-70E1-4FC0-9349-9EAFA9B622BA",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:intel:silicon_reference_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EB336210-AC71-4DFA-878F-647EC94DF495",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:bbs2600bpb:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B49A0E57-126A-4C60-A748-5D357E7B4670",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:bbs2600bpq:-:*:*:*:*:*:*:*",
"matchCriteriaId": "34BB3CD5-DF01-40A8-9906-5C5B306C1B85",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:bbs2600bps:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8B3CC4D7-1756-44DB-814D-57106E6826C6",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:bbs2600stb:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7819ABC6-800C-4141-A31F-14CBE788EF62",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:bbs2600stq:-:*:*:*:*:*:*:*",
"matchCriteriaId": "106C758A-F23A-48B3-8360-A10212AF50E3",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:bbs7200ap:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4D299D95-DA1B-4EB0-B424-367223B1728C",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:bbs7200apl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FD07AA71-7FDA-4FF9-AFE9-E5F4797FAC63",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:dbs2600cw2r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "41FC06AE-A60D-4A9D-9EC9-5E0B55098CFC",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:dbs2600cw2sr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CAEE9115-02E3-451B-B102-32DD51CB890B",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:dbs2600cwtr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "90B4B99C-FCA8-496A-9673-F665C909D578",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:dbs2600cwtsr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5CB91448-FA68-4D4F-9432-F38ACD8C6591",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600bpb:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4F08CC45-9AC9-4A00-83B9-F9D4970B0DE8",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600bpb24:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7F002684-C456-40F0-AA2A-97C79AE5EECA",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600bpblc:-:*:*:*:*:*:*:*",
"matchCriteriaId": "796E437A-B972-4D30-B0A4-53366693C7DF",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600bpblc24:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0D9CC284-540E-492A-A0E6-A193DEAD3102",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600bpq:-:*:*:*:*:*:*:*",
"matchCriteriaId": "24786B0E-36AC-4DBD-8778-DC836CF81CB1",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600bpq24:-:*:*:*:*:*:*:*",
"matchCriteriaId": "613CDC12-2D3E-4BF3-AE2D-DCDEBEAED03D",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600bps:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F9EADDC0-0AAE-4445-9764-1C54E3898FFD",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600bps24:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E09B1290-FAD0-4869-A1FA-A4D12BB602CD",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600kpfr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4561DCAF-5A12-4A35-93A0-8F097D22F275",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600kpr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B2A50B12-5F1A-4F42-807A-EE73668C9690",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600tp24r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "12F99059-4FE6-49AB-AA9D-4890C2D747FC",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600tp24sr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AD725F8F-76BC-4A20-A02D-0A68B67CA401",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600tp24str:-:*:*:*:*:*:*:*",
"matchCriteriaId": "635E397E-BB32-4C2F-A19F-7C1219A726D3",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600tpfr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6507AB9B-5925-4F6C-9641-9806A226B3CC",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600tpnr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F01C4D33-AED6-427D-8631-E4763410C93F",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns2600tpr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0B69B157-19C4-4CF4-8762-97030DD01A15",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns7200ap:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AE3E826A-6B5B-4445-9D09-0D3C65276259",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns7200apl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7F95ADEA-F861-45B2-AE47-390C311FC97F",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns7200apr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "254CB73B-6A91-408F-A3C9-D3259BC2EF9F",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:hns7200aprl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6BCA0A87-6776-4711-8692-03C0DFD01779",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r1208wftys:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F1DD69C7-9E7C-4569-9971-A06F77028BB7",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r1208wt2gsr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F3F0A597-424D-47D0-BEA5-C92952331B65",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r1208wttgsr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "ABA90242-9E50-4B94-ACCC-9DAC55170A90",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r1304wf0ys:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0DEF6206-E94C-4C16-8D91-AD776D62F79F",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r1304wftys:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0A47AC30-315C-4E4B-BBBB-305FA5131281",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r1304wt2gsr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4ADAC3B8-CBDC-4AF5-9C16-D90E6E4D1D5B",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r1304wttgsr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2FD433E7-99ED-4354-BC25-577F65A387D2",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2208wf0zs:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EF575955-C7E1-4DD6-8AAE-5930EDFEDA93",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2208wfqzs:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3B83196F-06BD-41D6-A6B8-C7ABD25CA238",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2208wftzs:-:*:*:*:*:*:*:*",
"matchCriteriaId": "30E49457-D38D-4145-81F2-7FA4D463CD24",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2208wt2ysr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0DF49DB1-997F-4FF3-989F-7CCC3D328C33",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2208wttyc1r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3087F420-9904-4FA8-9D29-433A3F7838B9",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2208wttysr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5C15931E-37B8-420E-8252-2311329DD187",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2224wfqzs:-:*:*:*:*:*:*:*",
"matchCriteriaId": "13C6540A-C5E4-46E5-BB7C-E4C53904AE68",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2224wftzs:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D952C1D5-581F-4ADC-8DB5-3682DC8588CA",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2224wttysr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2B3FEDE2-915F-4691-B3A5-14EE27D95167",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2308wftzs:-:*:*:*:*:*:*:*",
"matchCriteriaId": "31EF6A93-7FDE-43A7-BB5D-1DD52318F60D",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2308wttysr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "717726C8-2648-4A98-8B9A-5999F68AEC6A",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2312wf0np:-:*:*:*:*:*:*:*",
"matchCriteriaId": "98B6DF59-DF1E-4D9C-B574-37DC398B16AB",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2312wfqzs:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6982CB5F-4448-48D4-BD3A-782874AB2304",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2312wftzs:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B14E3D1D-B614-458D-8F78-E25CC89B311E",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:r2312wttysr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4CE3087A-A327-46B9-BE16-4C1A57FAEE3F",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600kpfr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4D9C9254-43DE-4DC9-A246-75C76B4C45B3",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600kpr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "540DFDF8-E420-45E9-8E81-BAE9EAE3D1C8",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600kptr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "40EE02E9-BE39-425A-82CB-1BD4C5D9B899",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600stb:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A08E8AD9-CA53-4F39-820E-D4A4D2D319EB",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600stq:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6DDFAF1C-E386-4F35-8A81-492713F10A92",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600tpfr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EDF6DBFD-8223-4EAC-B6B0-F721C91727A2",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600tpnr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C911A0CB-EF89-4295-9761-AAF687E2F8CA",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600tpr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8A2DBEFE-CFBF-4424-A12B-C3A4C49E594C",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600tptr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1B737A9A-A013-4AFB-A355-6FF96AACBAA1",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600wfo:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4CDAD0D9-C4DD-42B5-AC7F-4C53F406B762",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600wfq:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F105271A-9DC1-42CE-9D19-E4A55BE1F04E",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600wft:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D4BEA962-CEFF-429C-BB64-1C3FEA98FCE9",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600wt2r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "12161640-C1D6-49A7-840C-5E3DCC0B5707",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600wttr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0D97AAF4-938D-4B28-BEF1-D5F978AE3B7D",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s2600wtts1r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F1993088-729D-477E-9210-E49432177C57",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:intel:s7200apr:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F73E6B49-70E1-4FC0-9349-9EAFA9B622BA",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Improper memory initialization in Platform Sample/Silicon Reference firmware Intel(R) Server Board, Intel(R) Server System and Intel(R) Compute Module may allow privileged user to potentially enable an escalation of privilege via local access."
},
{
"lang": "es",
"value": "La inicializaci\u00f3n inadecuada en Platform Sample/Silicon Reference firmware Intel(R) Server Board, Intel(R) Server System and Intel(R) Compute Module) puede permitir que el usuario privilegiado habilite potencialmente una escalada de privilegios a trav\u00e9s del acceso local."
}
],
"id": "CVE-2018-12204",
"lastModified": "2024-11-21T03:44:44.900",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.2,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 0.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2019-03-14T20:29:00.770",
"references": [
{
"source": "secure@intel.com",
"url": "https://security.netapp.com/advisory/ntap-20190318-0002/"
},
{
"source": "secure@intel.com",
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03912en_us"
},
{
"source": "secure@intel.com",
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03929en_us"
},
{
"source": "secure@intel.com",
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03978en_us"
},
{
"source": "secure@intel.com",
"tags": [
"Vendor Advisory"
],
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00191.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://security.netapp.com/advisory/ntap-20190318-0002/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03912en_us"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03929en_us"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US\u0026docId=emr_na-hpesbhf03978en_us"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00191.html"
}
],
"sourceIdentifier": "secure@intel.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-665"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…