Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveIntelCVE-2018-12224
HistoryMar 14, 2019 - 8:29 p.m.

CVE-2018-12224

2019-03-1420:29:01
CWE-200
intel
web.nvd.nist.gov
50
cve-2018-12224
buffer leakage
igdkm64.sys
intel
graphics driver
windows
information disclosure
local access

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

CVSS3

3.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

AI Score

5

Confidence

Low

EPSS

0

Percentile

12.6%

JSON

Buffer leakage in igdkm64.sys in Intelยฎ Graphics Driver for Windows* before versions 10.18.x.5059 (aka 15.33.x.5059), 10.18.x.5057 (aka 15.36.x.5057), 20.19.x.5063 (aka 15.40.x.5063) 21.20.x.5064 (aka 15.45.x.5064) and 24.20.100.6373 may allow an authenticated user to potentially enable information disclosure via local access.

Affected configurations

Nvd
Node
intelgraphics_driverMatch15.33.43.4425
OR
intelgraphics_driverMatch15.33.45.4653
OR
intelgraphics_driverMatch15.33.46.4885
OR
intelgraphics_driverMatch15.36.26.4294
OR
intelgraphics_driverMatch15.36.28.4332
OR
intelgraphics_driverMatch15.36.31.4414
OR
intelgraphics_driverMatch15.36.33.4578
OR
intelgraphics_driverMatch15.36.34.4889
OR
intelgraphics_driverMatch15.40.34.4624
OR
intelgraphics_driverMatch15.40.36.4703
OR
intelgraphics_driverMatch15.40.37.4835
OR
intelgraphics_driverMatch15.40.38.4963
OR
intelgraphics_driverMatch15.40.41.5058
OR
intelgraphics_driverMatch15.45.18.4664
OR
intelgraphics_driverMatch15.45.19.4678
OR
intelgraphics_driverMatch15.45.21.4821
OR
intelgraphics_driverMatch15.45.23.4860
OR
intelgraphics_driverMatch24.20.100.6025
OR
intelgraphics_driverMatch24.20.100.6094
OR
intelgraphics_driverMatch24.20.100.6136
OR
intelgraphics_driverMatch24.20.100.6194
OR
intelgraphics_driverMatch24.20.100.6229
OR
intelgraphics_driverMatch24.20.100.6286
AND
microsoftwindowsMatch-
VendorProductVersionCPE
intelgraphics_driver15.33.43.4425cpe:2.3:a:intel:graphics_driver:15.33.43.4425:*:*:*:*:*:*:*
intelgraphics_driver15.33.45.4653cpe:2.3:a:intel:graphics_driver:15.33.45.4653:*:*:*:*:*:*:*
intelgraphics_driver15.33.46.4885cpe:2.3:a:intel:graphics_driver:15.33.46.4885:*:*:*:*:*:*:*
intelgraphics_driver15.36.26.4294cpe:2.3:a:intel:graphics_driver:15.36.26.4294:*:*:*:*:*:*:*
intelgraphics_driver15.36.28.4332cpe:2.3:a:intel:graphics_driver:15.36.28.4332:*:*:*:*:*:*:*
intelgraphics_driver15.36.31.4414cpe:2.3:a:intel:graphics_driver:15.36.31.4414:*:*:*:*:*:*:*
intelgraphics_driver15.36.33.4578cpe:2.3:a:intel:graphics_driver:15.36.33.4578:*:*:*:*:*:*:*
intelgraphics_driver15.36.34.4889cpe:2.3:a:intel:graphics_driver:15.36.34.4889:*:*:*:*:*:*:*
intelgraphics_driver15.40.34.4624cpe:2.3:a:intel:graphics_driver:15.40.34.4624:*:*:*:*:*:*:*
intelgraphics_driver15.40.36.4703cpe:2.3:a:intel:graphics_driver:15.40.36.4703:*:*:*:*:*:*:*
Rows per page:
1-10 of 241

CNA Affected

[
  {
    "product": "Intel(R) Graphics Driver for Windows",
    "vendor": "Intel Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "Multiple versions."
      }
    ]
  }
]

Related

prion 1
cvelist 1
nvd 1
lenovo 2
hp 1
intel 1
prion
prion
Information disclosure
2019-03-14 20:29:00
cvelist
cvelist
CVE-2018-12224
2019-03-14 20:00:00
nvd
nvd
CVE-2018-12224
2019-03-14 20:29:01
lenovo
lenovo
Intel Graphics Driver for Windows Vulnerabilities - Lenovo Support US
2019-03-14 00:05:18
Intel Graphics Driver for Windows Vulnerabilities - Lenovo Support US
2019-03-14 00:05:18
hp
hp
HPSBHF03608 rev. 3 - Intel Graphics Drivers Security Updates
2019-03-13 00:00:00
intel
intel
Intelยฎ Graphics Driver for Windows* 2018.4 QSR Advisory
2021-10-01 00:00:00

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

CVSS3

3.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

AI Score

5

Confidence

Low

EPSS

0

Percentile

12.6%

JSON
Related for CVE-2018-12224
prion1cvelist1nvd1lenovo2hp1intel1