Incorrect File Permissions in Intel Processor Diagnostic Tool
CVE-2018-3667

7.8HIGH

Key Information:

Vendor
Intel
Vendor
CVE Published:
10 July 2018

Summary

The Intel Processor Diagnostic Tool version 4.1.0.24 has a security flaw due to incorrect permission settings for its installed files. This oversight may enable attackers to execute arbitrary code on the system, leading to potential privilege escalation. By exploiting this vulnerability, unauthorized users could gain elevated privileges, compromising the integrity and security of the affected system. It is essential for users to be aware of this vulnerability and apply recommended updates to mitigate the risks associated with it.

Affected Version(s)

Intel Processor Diagnostic Tool 4.1.0.24

References

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.