A potential security vulnerability in the Intel® Driver & Support Assistant may allow information disclosure.** **Intel is releasing Driver & Support Assistant updates to mitigate this potential vulnerability.
CVEID: CVE-2018-3621
Description: Insufficient input validation in the Intel® Driver & Support Assistant before 3.6.0.4 may allow an unauthenticated user to potentially enable information disclosure via adjacent access.
CVSS Base Score: 4.6 Medium
CVSS Vector: CVSS:3.0/AV:A/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L
Intel® Driver & Support Assistant before 3.6.0.4
Intel recommends that users of Intel® Driver & Support Assistant update to 3.6.0.4 or later.
Updates are available for download at this location: <https://downloadcenter.intel.com/download/24345/Intel -Driver-Support-Assistant>
Intel would like to thank Clément Notin for reporting this issue and working with us on coordinated disclosure.