Privilege Escalation in Intel Extreme Tuning Utility
CVE-2018-12150

6.7MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Extreme Tuning Utility
Vendor: CVE Published:; 12 September 2018

What is CVE-2018-12150?

Intel Extreme Tuning Utility prior to version 6.4.1.21 has a vulnerability that enables authenticated users to escalate their privileges. This flaw may allow local attackers to execute arbitrary code or potentially access sensitive information with administrative rights. Users are encouraged to update to the latest version to mitigate the risks associated with this vulnerability.

Affected Version(s)

Intel(R) Extreme Tuning Utility Versions before 6.4.1.2.

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_CONFIRM

CVSS V3.1

Score:

6.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 12, 2018
Vulnerability Reserved
Jun 11, 2018