A potential security vulnerability in the Intel® Ready Mode Technology may allow for escalation of privilege. Intel is not releasing updates to mitigate this potential vulnerability and has issued a Product Discontinuation notice for Intel® Ready Mode Technology.****
CVEID: CVE-2018-3698
Description: Improper file permissions in the installer for the Intel® Ready Mode Technology may allow an unprivileged user to potentially gain privileged access via local access.
CVSS Base Score: 4.8 Medium
CVSS Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
Intel® Ready Mode Technology – all versions.
Intel has issued a Product Discontinuation notice for Intel® Ready Mode Technology and recommends that users of the Intel® Ready Mode Technology uninstall it at their earliest convenience.
Intel would like to thank Marius Gabriel Mihai for reporting this issue and working with us on coordinated disclosure.