CVE-2018-3635

Sažetak

Insufficient input validation in installer in Intel Rapid Store Technology (RST) before version 16.7 may allow an unprivileged user to potentially elevate privileges or cause an installer denial of service via local access.

Reference

http://seclists.org/fulldisclosure/2021/Mar/55
http://www.securityfocus.com/bid/105984
https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00153.html

CVSS

Base:	4.6
Impact:	6.4
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:L/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

26-03-2021 - 21:02

Objavljeno

14-11-2018 - 14:29