CVE-2018-12193 - Insufficient access control in driver stack for Intel QuickAssist Technology for Linux before versio

CVE-2018-12193

Summary

Insufficient access control in driver stack for Intel QuickAssist Technology for Linux before version 4.2 may allow an unprivileged user to potentially disclose information via local access.

References

https://cdrdv2.intel.com/v1/dl/getContent/685356

Vulnerable Configurations

cpe:2.3:a:intel:quickassist_technology:1.7.l.4.10.0:*:*:*:*:linux:*:*
cpe:2.3:a:intel:quickassist_technology:1.7.l.4.10.0:*:*:*:*:linux:*:*

CVSS

Base:	2.1 (as of 16-12-2021 - 18:49)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	NONE	NONE

cvss-vector via4

AV:L/AC:L/Au:N/C:P/I:N/A:N

refmap via4

confirm

https://01.org/security/advisories/intel-oss-10005

Last major update

16-12-2021 - 18:49

Published

10-10-2018 - 18:29

Last modified

16-12-2021 - 18:49