CVE-2018-12204

EPSS 0.4%

Vexday Risk Score

3Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS —EPSS 0.4%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

14 Mar 2019Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

Improper memory initialization in Platform Sample/Silicon Reference firmware Intel(R) Server Board, Intel(R) Server System and Intel(R) Compute Module may allow privileged user to potentially enable an escalation of privilege via local access.

Affected products

Intel Corporation · Intel Platform Sample / Silicon Reference firmware

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://security.netapp.com/advisory/ntap-20190318-0002/https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03912en_us https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03929en_us https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03978en_us https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00191.html