Insufficient Input Validation in Intel Graphics Driver for Windows
CVE-2018-12211

6.5MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Graphics Driver For Windows
Vendor: CVE Published:; 14 March 2019

Summary

The Intel Graphics Driver for Windows suffers from insufficient input validation in its User Mode Driver component. This issue allows an unprivileged local user to exploit the vulnerability, potentially leading to a denial of service condition. The affected versions include multiple release iterations prior to specified updates, emphasizing the necessity for timely software maintenance and updates to mitigate risks associated with local system security.

Affected Version(s)

Intel(R) Graphics Driver for Windows Multiple versions.

References

https://www.intel.com/content/www/us/en/security-center/a...

x_refsource_CONFIRM

https://support.lenovo.com/us/en/product_security/LEN-25084

x_refsource_CONFIRM

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Mar 14, 2019
Vulnerability Reserved
Jun 11, 2018